ACT-IAC March 2016

Download Report

Transcript ACT-IAC March 2016

United States
Department
of Agriculture
ACT-IAC
March 17, 2016
Chief Information Officer
Jonathan Alboum
USDA is an equal opportunity provider, employer, and lender. To file a complaint of discrimination, write: USDA, Director, Office of Civil
Rights, 1400 Independence Avenue, SW, Washington, DC 20250-9410 or call (800) 795-3272 (voice), or (202) 720-6382 (TDD).
United States
Department
of Agriculture
A Diverse Mission & Portfolio
Through 17 agencies and 17 offices, USDA:
•
Helps keep America's farmers and
marketing of U.S. agricultural products
weather and market uncertainties via
and ensures the health and care of
commodity, credit, conservation,
animals and plants.
•
Supports a safe, sustainable,
programs.
competitive U.S. food and fiber system,
Works to end hunger and improve
as well as strong communities,
health in the U.S. through domestic
families, and youth through integrated
nutrition assistance programs and
research, analysis and education.
science-based dietary guidance, policy
•
Facilitates domestic and international
ranchers in business despite the
disaster, and emergency assistance
•
•
•
Helps improve the rural economy and
and education.
quality of life through financial
Ensures that the Nation's commercial
programs that support essential public
supply of meat, poultry, and egg
facilities and services. Promotes
products is safe, wholesome, and
economic development by providing
properly labeled and packaged.
loans to businesses.
United States
Department
of Agriculture
Office of the Chief Information Officer
CIO
Jonathan Alboum
Enterprise Management
Enterprise Program MGMT
Services
Director
Cliff Gonzales
Cybersecurity
Chief Information
Security Officer (CISO),
Chris Lowe
Agriculture
Security
Operations
Center
Enterprise MGMT
Executive Officer,
Sue E. Bussells
Enterprise Business MGMT
Services Admin Officer,
Chris Wren
CIO Special Assistant Ted Kaouk
Operations & Infrastructure
Deputy CIO,
Richard Coffee(Acting)
Policy & Planning
Deputy CIO,
Joyce M. Hunter
Enterprise
Geospatial
MGMT
Director,
Stephen
Lowe
Information
Resource
MGMT
Associate
CIO,
Claudette
Millsap
(Acting)
Policy, EGVMT & Fair
Information
Practices
Associate CIO,
Ray Payton
IT Workforce
Planning
Director
Jerome
Davin
Client Tech
Services
Associate
CIO,
Nancy
Reeves-Flores
Data Center
Operations
Associate CIO,
Richard Coffee
Enterprise
Network
Services
Director,
John Donovan
United States
Department
of Agriculture
The Federated Environment within USDA
• Without a sense of larger identity, the environment has a
tendency to become “stove-piped,” with a lack of cohesion
and collaboration between USDA agencies
• Agencies and Offices would naturally tend to operate as
individual entities rather than coordinating across functional
areas
4
United States
Department
of Agriculture
CIO Council
Composition
•
Chaired by Dept CIO
with 25 voting members
•
Chaired by Elected
Vice-Chair with Dept CIO
and 4 elected
Bureau-level officers
•
Chaired by CIO or expert
with interested Bureau SMEs
CIO Council
Advisory
Board
CIO Council
Workgroups
Function
•
Senior enterprise IT Officials that
meet monthly to advise the
Department CIO
•
Council Executive Officers meet
weekly for routine governance
issues and to plan CIOC agendas
•
Issue-specific workgroups
established by, and reporting to,
the Council
United States
Department
of Agriculture
USDA FY16 IT Priorities
United States
Department
of Agriculture
Cybersecurity
• USDA launched an anti-phishing campaign to identify strategies to
counter phishing attacks. Although employees are trained to recognize
and respond to phishing emails, technical safeguards are also needed to
render email phishing attacks less effective. Testing the use of warning
messages at the beginning of FY16 demonstrated that the click rate of
phishing attempts could be reduced through the use of warning
messages.
• USDA developed a cybersecurity scorecard for component agencies that
represents key hygiene factors such as public-facing critical
vulnerabilities, the status of system Authorizations To Operate (ATO),
and Personal Identity Verification (PIV) card compliance numbers.
• USDA has begun implementing a means of detecting cyber security
incidents and attacks that traditional “signature-based” tools can’t
achieve, by identifying trends and correlating Big Data from different
sources.
7
United States
Department
of Agriculture
Federal Information
Technology Acquisition Reform Act (FITARA)
FITARA outlines specific requirements related to:
• Chief Information Officer (CIO) Authority Enhancements
• Enhanced Transparency and Improved Risk Management in IT
Investments
• Portfolio Review
• Expansion of Training and Use of Information Technology Cadres
• Federal Data Center Consolidation Initiative (FDCCI)
• Maximizing the Benefit of the Federal Strategic Sourcing Initiative (SSI)
• Government-wide Software Purchasing Program
8
United States
Department
of Agriculture
Federal Information
Technology Acquisition Reform Act (FITARA)
• USDA’s Common Baseline Plan submitted August 2015, Implementation
Plan submitted November 2015. USDA was the first agency to have its
plan approved by OMB.
• USDA is preparing for the April 2016 update submission of the Baseline
Plan and OMB assessment by:
-
Reviewing existing policies, processes and procedures
Identifying where changes are required for policies
Identifying where the CIO can be inserted into existing processes
and procedures
Validating where oversight support is needed to ensure compliance
9
United States
Department
of Agriculture
IT Network Modernization
•
Developing a comprehensive network modernization plan that fully
supports the integration of the field based-agencies and HQ customers
networking requirements, while improving overall network reliability for
customers
•
Determining feasibility of collapsing 17 agency networks
•
FY 2016: Prepare for GSA NS2020 Acquisition
-Continue technical refinement of the SOO
-Prepare various Task Order Requests under GSA’s new NS2020
Contract
• FY 2017: Begin Transition and Modernization of USDA’s Wide Area
Network (WAN) – January 2017
10
United States
Department
of Agriculture
Cloud Strategy
• Established a Cloud Strategy and Policy Office (CSPO). CSPO has the
responsibility to coordinate and align agency and staff office initiatives to
improve mission effectiveness through Infrastructure, Platform, and
Software as a Service (IaaS, PaaS and SaaS) solutions
• Coordinated with component agencies to elicit their concerns and issues
and build trust
• Developing a USDA cloud computing strategy in a collaborative effort
with USDA component agencies and offices. the goal: an agile, flexible,
secure, and cost-effective service environment that can rapidly respond to
changing mission needs
11