2
IT Solutions Life Cycle Management Office of Information Technology What is “IT Solutions Life Cycle Management (ITSLCM)?” The ITSLCM is a governance-based framework designed to manage IT programs and projects. The Framework provides a holistic infrastructure that applies to the management, governance, support, and implementation of all IT programs and solutions within PBGC. The Framework supports PBGC’s efforts in planning for, selecting, acquiring, implementing, managing, and monitoring information technology from developing new solutions, to modernizing, enhancing, maintaining, and operating existing solutions, and through the disposition of the solutions. Why is the ITSLCM required? The PBGC IT Management Directive (IM 05-07) and ITSLCM Framework incorporate federal mandates and requirements related to Enterprise Architecture (EA), Capital Planning & Investment Control (CPIC, or IT Portfolio Management [ITPfM] within PBGC), Cybersecurity and Privacy controls, Acquisition, and Program and Project Management. ITSLCM is designed to integrate federal requirements from across functional areas. By following the Framework (see Fig.1), PBGC stays within compliance of federal mandates and agency requirements. PBGC’s IT Management Directive (IM 05-7) applies to all PBGC Information Technology, throughout its lifecycle, regardless of the source of funding or resources owned and operated on behalf of PBGC. The Directive, effective 9-30-2016, establishes the policy that all IT programs will comply with the ITSLCM, including control gates, IT standards, and artifacts. The ITSLCM also helps to ensure that IT Projects and Programs are following Federal and industry best practices, regardless of funding sources or resources. June 2017 5 Tiers of Governance The IT Management Directive outlines the 5 Tiers of Governance for managing scope, cost, schedule, risks, and issues. The ITSLCM Framework aligns with this governance model. The Framework provides guidance on the activities, standards, deliverables and reviews needed within each phase to align with the 5 Tier Governance, including who is responsible for completing each activity based on their role. Tiers 1 and 2 form the foundation of IT governance at PBGC, meaning the IT and Business Project and Program Managers, closest to the activities actively manage all aspects of IT Projects and Programs. Tier 3 requires the CIO and CXO to review the status of IT projects, IT programs, risks, and issues. Tier 4 oversight is provided by corporate-level governance boards such as the IT Portfolio Review Board (ITPRB), the Executive Management Committee, and Budget Planning and Integration Team. Tier 5 involves external oversight from OMB which is above and beyond the solid internal oversight provided by Tiers 1 through 4. Where can PBGC staff learn more about ITSLCM? There are several resources staff can leverage to learn more about the ITSLCM that are accessible on the Intranet (http://intranet/it/itslcm). TMS: It is recommended that PBGC employees complete the ITSLCM related training courses available in TMS. Handbook: Detailed information on the components of the ITSLCM can be found in the ITSLCM Handbook on the Intranet. Knowledge Sharing Site: The PMO maintains the IT Project Management Knowledge Sharing site for PBGC employees involved in or interested in IT project and program management. ITSLCM users can connect with the PMO and other IT project and program managers via the Knowledge Sharing site to further their understanding of the ITSLCM Framework and its implementation at PBGC. For all other questions please contact: [email protected] How does PBGC benefit from the ITSLCM? Communication – Business and IT roles are identified as partners to work collaboratively throughout a program’s life cycle. Simplification – Deliverables and artifacts are carefully selected to capture outcomes of tasks performed and bring value. IT Program Management artifacts can be leveraged by project managers to avoid creation of unnecessary documents. Flexibility – Enables use of various development methodologies (e.g., Iterative, Agile) and types of solutions (e.g., Cloud, COTS, Hosted, or new or enhanced solutions.) Clarity – “Streams” establish logical groupings of related tasks to be performed by the experts of the respective stream. Transparency – Clear communication of budget, risk, and schedule from the program level through individual projects. Compliance – Facilitates compliance with federal IT laws and mandates, regulations, and PBGC IT Standards. Who contributes to the ITSLCM? While the PMO is responsible for maintaining, updating, and providing training on the ITSLCM, they must leverage available assistance from key partners to provide input into the ITSCLM Framework and the requirements that govern it. This assistance is critical to ensuring the successful development and implementation of an IT solution. Among these key partners are the Enterprise Architecture Division (EAD), IT Portfolio Division (ITPD), Infrastructure (ITIOD), the Enterprise Cybersecurity Division (ECD), and the Privacy Office. Throughout the Framework, users will find tasks, gates, reviews, deliverables, and standards and guidance that help to ensure PBGC’s IT projects and programs are compliant with Federal and agency requirements in each of these areas. The PMO provides guidance on IT program/project management policies, processes, procedures, standards and guidelines for practitioners and stakeholders to facilitate compliance with PBGC and federal mandates. Tier 5 - OMB Tier 4 - PBGC Governance Boards Tier 3 - Steering/Oversight Committees Tier 2 - Program Management (IT and Business) Tier 1 - Project Management (IT and Business)
