DHS struggles to manage billions in IT investments, GAO finds

Department management "inconsistent" on major IT projects, official says

The Homeland Security Department continues to show weaknesses in its management of major information technology investments that total more than $6 billion a year, according to testimony by an official of the Government Accountability Office.

Since it began operating in 2003, the department has had difficulties in strengthening its IT workforce and in defining and applying effective IT acquisition management policies and procedures, Randolph Hite, director of IT architecture and systems issues at GAO, told a House subcommittee today.

Even when IT acquisition policies have been created, DHS officials have not always followed the rules, Hite said. For example, GAO reviews have shown that DHS does not always conduct executive-level reviews at key milestone points of its major acquisitions. Other problems include inconsistent and ineffective use of cost and schedule estimates, requirements development, test management, performance measurement, workforce management, identification and mitigation of risk and contract tracking and oversight, he said.

“Because of these weaknesses, major IT programs aimed at delivering important mission capabilities have not lived up to expectations,” Hite told the House Government Oversight and Reform Committee's Government Management Subcommittee.

In fiscal 2009, the department managed 279 major IT investments that totaled $6.2 billion, he said. Those investments include Customs and Border Protection’s Automated Commercial Environment electronic trade data portal and the Secure Border Initiative Network (SBInet) border surveillance system. They also included DHS-wide IT infrastructure, the Coast Guard’s Rescue 21 communications system, the Transportation Security Administration’s Secure Flight program and National Protection and Programs Directorate’s U.S. Visitor and Immigrant Status Indicator Technology (US-VISIT).

DHS has stayed on GAO's high-risk list since the Bush administration created DHS, and GAO still considers that department highly vulnerable to management challenges because of the difficulties of integrating the agencies and achieving the department’s missions, Hite said.

GAO has made several reports recommending improvements to DHS’ IT acquisitions process, and the department has implemented some of the advice. The department completed 14 acquisition reviews in 2008, and 18 reviews in 2009, including reviews of SBInet, US-VISIT, and Secure Flight. Seven additional reviews are scheduled for completion by Sept. 30.

To support acquisition oversight, the chief procurement officer has identified a need for 58 additional positions. DHS’s fiscal year 2010 budget request included 10 additional full time equivalent positions for acquisition oversight support.

However, the department still is not carrying out all recommended acquisition and investment management program practices, Hite said. "Without proper management controls in place, it is unlikely that investment oversight decisions will be made consistently and will best support mission needs," he said.

DHS officials said they established the Acquisition Program Management Division in the Office of the Chief Procurement Officer last year to deal with procurement-related management issues. The department also issued a new departmental directive and related guidance in November 2008 to provide a framework for management, support and review of programs, including IT acquisitions.

About the Author

Alice Lipowicz is a staff writer covering government 2.0, homeland security and other IT policies for Federal Computer Week.

Reader Comments

Fri, Oct 9, 2009 John Weiler, IT-AAC.org Alexandria, VA

I guess Randy Hite is getting writer's cramp. This is a story that he has been telling for the last 7 years across DoD and DHS. What needs to change are the core processes by which DHS uses to validate the goodness of requirements, capabilities gaps and contractor solution offerings. Steve Cooper tried to fix this problem day one, but was undermined by a crushing bureaucracy and political appointees in the pocket of its major suppliers. We call this the revolving door. If DHS followed the Clinger Cohen Act mandates; streamline IT Acquisition, leverage industry best practices, favor COTS over customer development, perform business process re-engineering, many of these symptoms would disappear. IV&V could help if there were any measures of effectiveness (MOE) or service level agreements (SLAs) to enforce. You cannot manage what you cannot measure. DHS's architecture has some good foundations but needs to go beyond the SOA bumper sticker. Another important policy enforcement long ignored is the FAR OCI rule which has no provisions for "OCI mitigation plans". If the FAR were enforced, we would be removing a major element of fraud where contractors with a vested interest in the outcome are gaming the process. Congress should be asking GAO to audit all Architecture and PMO support contracts and making sure that NONE are doing any implementation work. Period. If you read this comment and know a congressional staffer, please have them direct GAO to audit these contracts.

Wed, Sep 16, 2009 Robert Pietsch Ashburn, Virginia

Having worked for DHS, IT National Data Center, I can tell you that the cause of much of the lack of oversight is that the contractor community drives DHS, Government management is weak becasue a large percentage of the government management do not understand the technologies that they manage. So they depend on contractors to brief them on the technologies, contractors main goal is to sell the government more contractor positions. Bottom line we are at a point where the technology has outpaced the Government Management,s ability to understand senior management positions are filled with government employees that just ride the government employment wave.

Please post your comments here. Comments are moderated, so they may not appear immediately after submitting. We will not post comments that we consider abusive or off-topic.

Please type the letters/numbers you see above

What is your e-mail address?

My e-mail address is:

Do you have a password?

Forgot your password? Click here


contracts DB

Washington Technology Daily

Sign up for our newsletter.

Terms and Privacy Policy consent

I agree to this site's Privacy Policy.