Title 4—ADMINISTRATION [41 Pa.B. 5345]
[Saturday, October 8, 2011]PART I. GOVERNOR'S OFFICE [ 4 PA. CODE CHS. 6 AND 7a ] [ EXECUTIVE ORDER NO. 2011-05 ] Enterprise Information Technology Governance July 27, 2011
Whereas, commonwealth agencies under the governor's jurisdiction (enterprise) invest significant financial resources in obtaining, creating and supporting infrastructure and systems for the commonwealth's information technology (IT); and
Whereas, it is essential that the commonwealth utilize a central IT organization to govern, evaluate, coordinate and improve enterprise and agency IT planning, research, project prioritization, investment, and effectiveness; and
Whereas, The Administrative Code of 1929 requires administrative departments and several independent and departmental administrative boards to coordinate their work and activities with other departments, boards, and commissions; and
Whereas, IT investments and development efforts should be prioritized and coordinated across enterprise agencies to maximize efficiency and cost effectiveness, by enhancing information sharing and system compatibility through standardization, reducing expenditures for research and development, and enabling volume hardware and software purchases; and
Whereas, the Governor's Office of Administration (OA) and the Department of General Services have confirmed that an integrated IT strategy will improve organizational efficiency, streamline data collection and data sharing, and enhance the security of commonwealth IT infrastructure against the increasing risks posed by cyber attacks.
Now, Therefore, I, Tom Corbett, Governor of the Commonwealth of Pennsylvania, by virtue of the authority vested in me by the Constitution of the Commonwealth of Pennsylvania and other laws do hereby establish an enterprise IT governance structure within the Governor's Office of Administration, and order and direct as follows.
Governor
Fiscal Note: 2011-05. No fiscal impact; (8) recommends adoption.
Annex A TITLE 4. ADMINISTRATION PART I. GOVERNOR'S OFFICE CHAPTER 6. ADDITIONAL COUNCILS AND COMMITTEES Subchapter Q. (Reserved) §§ 6.241—6.248. (Reserved).
CHAPTER 7a. ADDITIONAL MISCELLANEOUS PROVISIONS Subchapter F. ENTERPRISE INFORMATION TECHNOLOGY GOVERNANCE Sec.
7a.71. Powers and duties. 7a.72. Responsibilities. 7a.73. Effective date. 7a.74. Termination date. 7a.75. Rescission. § 7a.71. Powers and duties.
(a) With regard to information technology (IT) for agencies under the Governor's jurisdiction, the Governor's Office of Administration, Office for Information Technology (OA/OIT) will have responsibility for the following:
(1) Developing and recommending to the Secretary of Administration priorities and strategic plans.
(2) Consolidating infrastructure and support services.
(3) Directing IT investments, procurement and policy.
(4) Working to ensure that agencies comply with direction from OA/OIT regarding the provisions in this subsection.
(b) OA/OIT shall make recommendations to the Secretary of Administration regarding major changes to staffing and enterprise IT operational matters and otherwise has the authority to make enterprise decisions regarding the following:
(1) Restructuring and operational matters related to IT consolidation.
(2) Delivery of shared services.
(3) Monitoring of project performance.
(4) Other responsibilities within the scope of this subchapter.
§ 7a.72. Responsibilities.
The Office of Administration, through the Office for Information Technology (OA/OIT), will be responsible for the following:
(1) Governance and strategic planning. OA/OIT shall create:
(i) Annual enterprise information technology (IT) strategic plans including appropriate IT priorities, coordination and monitoring of resource use and expenditures, performance review measures, procurement and other governance and planning measures. OA/OIT shall review and approve individual agency IT strategic plans. OA/OIT shall consult with the Governor's Office of the Budget on budgetary matters relating to IT planning and procurement.
(ii) An advisory structure, which may include agency Chief Information Officers (CIO), to advise OA/OIT regarding overall technology governance.
(2) Portfolio and project management, business process review. OA/OIT shall:
(i) Establish an IT portfolio management process for overall monitoring of IT program objectives, project alignment, budgets and expenditures.
(ii) Identify common IT business functions within agencies, make recommendations for consolidation and integration and facilitate the use of common technology.
(iii) Expand enterprise and agency use of project management methodologies and principles on IT projects, including measures to review project delivery and quality.
(iv) Ensure agency compliance with the completion of required business process reviews as part of an agency or enterprise IT project.
(3) IT procurement and contract management. A procurement organization within OA/OIT shall issue and support IT procurements for hardware, software and services. The procurement organization shall:
(i) Negotiate, approve, issue and oversee IT solicitations, contracts contract amendments, renewals, work orders and change orders.
(ii) Determine appropriate technology and procurement methodology.
(4) IT human resource management.
(i) OA/OIT shall establish a direct reporting relationship of each executive agency CIO to the Commonwealth CIO.
(ii) The Commonwealth CIO will be responsible for final approval of agency IT senior management appointments. In consultation with each executive agency, the Commonwealth CIO will conduct performance reviews of executive agency CIOs.
(5) IT enterprise standards. OA/OIT shall:
(i) Establish an enterprise architecture framework and deploy enterprise-wide IT to do the following:
(A) Establish policies, processes and product standards.
(B) Perform technical reviews of agency systems.
(C) Review and make determinations of requests for exceptions to IT standards.
(ii) Develop and implement enterprise-wide efforts to standardize data elements and determine data ownership assignments.
(iii) Create and maintain a comprehensive enterprise IT inventory.
(iv) Monitor agency policy and standards compliance through an architectural review process and audits.
(6) IT consolidation and services. OA/OIT shall:
(i) Recommend and conduct the consolidation of agency IT services including infrastructure, personnel, operations and support services.
(ii) Establish and facilitate a process for the regular identification of IT shared services.
(iii) When consolidation occurs, develop and maintain service level agreements with client agencies to ensure that quality products and services are delivered.
(7) Telecommunications and geospatial technologies governance. To the extent that the following is not already incorporated in the enterprise annual strategic plan, OA/OIT shall establish a process for the development and implementation of:
(i) Enterprise telecommunications policy, services, infrastructure and also review and authorize requests for enhanced services.
(ii) IT services for geospatial technologies.
§ 7a.73. Effective date.
This subchapter takes effect immediately.
§ 7a.74. Termination date.
This subchapter will remain in effect unless revised or rescinded by the Governor.
§ 7a.75. Rescission.
Executive Order 2004-08 as Amended is rescinded.
[Pa.B. Doc. No. 11-1717. Filed for public inspection October 7, 2011, 9:00 a.m.]