IT Dashboard: Agencies Need to Fully Consider Risks When Rating Their Major Investments

Abstract

Agencies determined investments Chief Information Officer (CIO) ratings using a variety of processes, which included the Office of Management and Budgets (OMB) six suggested factors (including risk management, requirements management, and historical performance). Specifically, all 17 selected agencies incorporated at least two of OMBs factors into their risk rating processes and 9 used all of the factors. However, agencies interpretations of these factors varied. For example, most agencies considered active risks, such as funding cuts or staffing changes, when rating investments, but others only evaluated compliance with the agencys risk management processes. Further, 13 agencies required monthly updates to CIO ratings as does OMB (as of June 2015), 1 agency scheduled its reviews based on risk, and 3 agencies required updates less often than on a monthly basis.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jun 01, 2016
Accession Number
AD1151835

Entities

Organizations

  • United States Government Accountability Office

Tags

Communities of Interest

  • Biomedical
  • Human Systems

DTIC Thesaurus Topics

  • Accountability
  • Accounting
  • Acquisition
  • Best Practices
  • Business Administration
  • Commerce
  • Congress
  • Department Of Homeland Security
  • Department Of State
  • Department Of Veterans Affairs
  • Electronic Mail
  • Federal Budgets
  • Governments
  • Homeland Security
  • Information Systems
  • Investments
  • Law
  • Management Personnel
  • Personnel Management
  • Radio Equipment
  • Risk
  • Risk Analysis
  • Risk Management
  • Small Business
  • Social Media
  • United States Government

Readers

  • Defense Acquisition Program Management