GTA Board of Directors

1
GTA Board of Directors
March 20, 2008
2
Agenda

• Financial Update
• IT Outsourcing Update
• Organizational Update
• Service Management Organization
• Technology Planning
• Security Policies
• Wireless Communities Georgia
• GTA Legislative

3

• Financial Update

4
GTAs Financial Situation
5
Changes to Revenue Projections

• Mainframe revenue
• 5.1 million above projection due to increased
  utilization
• Telecommunications revenue
• Basic service ? 2.6 million above projection due
  to Georgia Tech, GSU and DTAE VoIP implementation
  delays
• Data circuits ? 2.4 million above projection due
  to improving billing accuracy and replacing an
  obsolete network
• 1.5 million from Urban Area Security Initiative
  grant added to telecommunications revenue
• Data sales revenue
• 1.3 million above projection due to greater
  number of MVR transactions and 1 average rate
  increase
• Non-operating income
• Interest revenue ? 1.1 million above projection
  due to delay in implementing Streamlined Banking

6

• IT Outsourcing Update

7
Procurement Team Quickly Settled In

• Agencies, GTA worked together to select team
  members
• More than 250 people from 12 agencies attended
  kickoff meeting on January 30
• Team onsite at GTA three days each week
• Team will ensure agency business needs are
  addressed
• HR sub-team will recommend approach to
  employment, retirement issues
• About 80 people serving on various teams

• Infrastructure
• Managed network services
• Local services

• Finance
• Data collection
• Human resources

8
RFQC Issued 10 Days Early

• Early completion shows teams focus and
  dedication
• RFQC requested proposals for two streams
• Infrastructure data centers, mainframes,
  servers, PCs, laptops
• Managed network services states wide area
  network
• Qualifying service providers to be announced by
  April 7
• Only qualifying vendors can respond to upcoming
  RFPs

9
Transformation Will Affect All Agencies

• Key business processes will change
• Even agencies not initially transitioning will be
  affected
• Enterprise agencies working with GTA to ensure
  success
• Office of Planning and Budget
• Administrative Services
• State Personnel Administration

• Procurement
• Billing
• Budgeting

• Planning
• Asset management

10
Next Steps

• Release RFPs, conduct competitive bidding April
  October 2008
• Transition to external service providers
  November 2008 March 2009
• Current information always available at
  www.gta.georgia.gov/transformation

11

• Organizational Update

12
GTA Continues Its Own Transformation

• Reduction in Force took place January 9
• Affected 46 positions in Enterprise Technology
  Planning and Administration
• Eliminated functions and reduced overhead by 4.5
  million annually
• Has not affected services to agencies
• Shows GTAs commitment to transforming itself and
  states IT enterprise

13
GTAs Business Model
Services for Georgians
14

• Service Management Organization

15
Why Do We Need an SMO?

• Provide a disciplined approach to managing the
  external service provider(s)
• Advance the maturity of the state in using
  external service providers
• Ensure the provider delivers to the contract
• Provide a uniform escalation point for vendor
  relationship and delivery issues

16
GTA SMO Landscape / Framework
17
SMO Components
SMO Criteria

• Drivers
• Objectives
• Principles
• Critical Success Factors
• Metrics

18

• Technology Planning

19
Enterprise Strategic Planning

• Partnered with OPB to roll out new integrated
  strategic planning process
• Agency IT plans will be gathered as part of their
  input to the OPB-owned strategic planning process
• Assist with the alignment of agency strategic
  goals to state strategic goals

20
Policies, Standards and Guidelines

• Streamline the PSG issuance process using
  existing industry or federal standards and
  guidelines
• Standards to be issued as guidelines initially to
  allow for impact analysis
• Standards and guidelines to apply to all aspects
  of IT in state government

21
Enterprise Project Management

• Enterprise Portfolio Management
• New streamlined Agency Project Request (APR)
  process
• Enterprise Critical Project Reviews
• Projects costing more than 5 million
• Project Assurance (IVV)
• Projects costing more than 1 million
• Knowledge Management
• Project management education and training
• PMO forum

22
Enterprise Governance
"The processes which ensure the effective and
efficient use of IT in enabling an organization
to achieve its goals. ? Gartner
23

• Information Security Policies
• and Standards

24
Governors Executive Order

• Requires agencies to report annually on their
  information security programs
• Establishes single report standard
• Ensures greater transparency into agency security
  operations
• Agencies submit reports to GTA by July 31
• GTA compiles agency information, issues state
  report by October 31

25
New Information Security Policies

• Board asked to replace existing policies
• Subcommittee appointed to review proposed
  policies and make recommendations
• Rod Knowles
• Doug Lewis
• Pete Wellborn, Chair

26
New Policies

• Access Control
• Accountability of Assets
• Appropriate Use of Information Technology
  Resources
• Business Continuity and Disaster Recovery
• Change Management
• Computer Security Incident Management
• Data and Asset Categorization
• Enterprise Information Security Charter
• Information Security - Risk Management
• Media Controls
• Network Security - Information Flow
• Network Security Controls
• Outsourced Facilities Management

• Password Authentication
• Personnel Security
• Physical and Environmental Security
• Protection from Malicious Software
• Public Access Systems
• Reliance on Electronic Records
• Remote Access
• Security Awareness Program
• Security Controls Review and Assessments
• Security Log Management
• Separation of Production and Test Environments
• Systems and Development Lifecycle
• Third-Party Access
• Use of Cryptography

27
New Technology Security Standards

• 40 new standards support new policies
• O.C.G.A. 50-25-4(a)(21) requires their use by all
  agencies
• New reporting standard tracks agency compliance
• GTA issues reporting requirements in March
• Agencies report back to GTA in July
• GTA publishes statewide report on information
  security in October

28

• Wireless Communities Georgia

29
Wireless Communities Georgia

• Governors program provided 1 million for 2008
• Three communities awarded funding on January 16
• Savannah 600,000
• Statesboro 322,298
• Hapeville 299,354
• 221,652 carried over from 2007
• Dublin became second community to launch wireless
  network under WCG on February 27

30

• GTA Legislation

31
SB 525 Simplifies IT Reporting

• Clearly establishes GTAs authority to require
  reports and set reporting standards
• Sets requirements for a comprehensive state IT
  plan
• Closely aligns IT plan with OPB strategic
  planning
• IT plan submitted to Governor, General Assembly
  and GTA Board annually on October 1
• Bill passed Senate on March 4, currently pending
  in House

32
(No Transcript)