GENERAL SERVICES ADMINISTRATION
Washington, DC 20405
SUBJECT: GSA Information Technology (IT) Governance
1. Purpose. The purpose of this order to establish a broad IT governance framework within GSA. IT governance specifies the decision rights and accountability framework to encourage desirable behavior in the use of IT. GSA will use this framework to manage its overall IT portfolio.
2. Background. Historically, GSA has had separate governance structures and processes for IT management. These governance structures were redundant, had overlapping responsibilities, and were inconsistent. Furthermore, operational level governance actions were embedded in the Capital Planning and Investment Control and the Enterprise Architecture directives. This order focuses solely on IT governance in a single document to provide clarity in IT decision making and accountability.
a. Establish a streamlined enterprise-level IT governance structure in which organizational and position roles and responsibilities are clear.
b. Implement an IT governance process that is visible and performance based.
c. Establish a decision making process that is appropriate for enterprise-wide functions and that supports Services and Staff Office (SSO) level IT operations and management decisions as appropriate.
d. Establish a governance process that supports the agency decision making processes for IT investments.
4. Applicability. This order applies to all GSA Service and Staff Offices (SSOs) including the Regional Offices. This order applies to IT decision-making throughout GSA.
5. IT Governance Guiding Principles.
a. Ensure IT decisions support business needs.
b. Ensure IT delivers best value.
c. Optimize IT investments.
d. Make risk-based IT decisions.
e. Manage and monitor strategic IT resources.
f. Learn from prior experience.
6. Organizational Governance Roles and Responsibilities.
a. Business Systems Council (BSC). The BSC reviews, approves, and makes final decisions on matters related to the intersection of GSA���s strategy, business and technology.
(2) Responsibilities. The BSC responsibilities are to:
b. IT Executive Council (ITEC). The ITEC reviews, makes decisions and recommendations on agency-wide technical issues and the strategic use of IT. Strategic planning, IT portfolio management, and enterprise architecture guide the decision-making process.
(2) Responsibilities. The ITEC responsibilities are:
(3) Committees. The ITEC sponsors, by charter, five standing committees for which it has oversight responsibility. It may add or terminate committees or task forces based on specific needs or requirements.
c. Heads of SSOs. Heads of SSOs are responsible for establishing and assuring internal IT governance and procedures that are synchronized with the enterprise level IT governance as described in this directive.
a. The Clinger-Cohen Act of 1996 (Pub. L. 104-106, Division E).
b. OMB Circular A-11, Preparation, Submission and Execution of the Budget.
c. OMB Circular A-130, Management of Federal Information Resources.
d. E-Government Act of 2002
e. Paperwork Reduction Act of 1995
f. Federal Information Security Management Act ��� Title 3 of the E-GOV Act of 2002.
g. Government Performance and Results Act of 1993
h. Services Acquisition Reform Act of 2003
i. Chief Financial Officers Act of 1990.
Chief Information Officer