Panel examines high-risk technology projects

Despite misgivings about releasing the data, the White House Office of Management and Budget will provide a list of the government's high-risk information technology projects to Congress next week, an OMB administrator said during a hearing Thursday.

Each quarter, agencies evaluate and report to OMB on the performance of high-risk projects, or those requiring "special attention from the highest level of agency management and oversight authorities," said Karen Evans, the office's e-government and IT administrator. However, she told the Senate Homeland Security and Governmental Affairs Subcommittee on Federal Financial Management, Government Information, and International Security that some projects with significant cost overruns are not on the list.

OMB must evaluate major IT investments under a 1996 law that requires agencies to develop clear strategies for such expenditures. A 2002 e-government law and a 2004 IT management framework published by the Government Accountability Office provide further guidance.

Evans said a suggestion given at the hearing for agency inspector generals to provide random checks on projects was a good one.

Subcommittee Chairman Tom Coburn, R-Okla., said he is concerned about the government getting its money's worth for IT spending. For example, he said unqualified managers are running projects. Sen. Frank Lautenberg, D-N.J., noted that wasting money is a disgrace.

David Powner, the GAO's director for information technology issues, said in his statement that more than $12 billion in estimated IT expenditures for fiscal 2007 have been identified as either being poorly planned or performing badly. OMB's management watch list may be undermined by inaccurate and unreliable data, and the criteria for identifying high-risk projects has not been consistently applied, GAO said in a statement.

Agencies need to improve the accuracy and reliability of the information they provide on some IT projects, Powner said.

Coburn said he will be sending a letter to the agencies for detailed lists of their IT projects and cost overruns. He said the recommendations in the GAO's report on the management watch list are necessary to maintain fiscal responsibility in IT spending.

Evans said after the hearing that she is concerned that by publicizing the management watch list, its purpose will be distorted. By compiling a list of projects that need special attention, she is worried that agencies will not provide "good quality information" in an attempt to avoid being on the list.

Stay up-to-date with federal news alerts and analysis — Sign up for GovExec's email newsletters.
Close [ x ] More from GovExec

Thank you for subscribing to newsletters from
We think these reports might interest you:

  • Sponsored by G Suite

    Cross-Agency Teamwork, Anytime and Anywhere

    Dan McCrae, director of IT service delivery division, National Oceanic and Atmospheric Administration (NOAA)

  • Data-Centric Security vs. Database-Level Security

    Database-level encryption had its origins in the 1990s and early 2000s in response to very basic risks which largely revolved around the theft of servers, backup tapes and other physical-layer assets. As noted in Verizon’s 2014, Data Breach Investigations Report (DBIR)1, threats today are far more advanced and dangerous.

  • Federal IT Applications: Assessing Government's Core Drivers

    In order to better understand the current state of external and internal-facing agency workplace applications, Government Business Council (GBC) and Riverbed undertook an in-depth research study of federal employees. Overall, survey findings indicate that federal IT applications still face a gamut of challenges with regard to quality, reliability, and performance management.

  • PIV- I And Multifactor Authentication: The Best Defense for Federal Government Contractors

    This white paper explores NIST SP 800-171 and why compliance is critical to federal government contractors, especially those that work with the Department of Defense, as well as how leveraging PIV-I credentialing with multifactor authentication can be used as a defense against cyberattacks

  • Toward A More Innovative Government

    This research study aims to understand how state and local leaders regard their agency’s innovation efforts and what they are doing to overcome the challenges they face in successfully implementing these efforts.

  • From Volume to Value: UK’s NHS Digital Provides U.S. Healthcare Agencies A Roadmap For Value-Based Payment Models

    The U.S. healthcare industry is rapidly moving away from traditional fee-for-service models and towards value-based purchasing that reimburses physicians for quality of care in place of frequency of care.

  • GBC Flash Poll: Is Your Agency Safe?

    Federal leaders weigh in on the state of information security


When you download a report, your information may be shared with the underwriters of that document.