VA's IT project management oversight needs work, IG says
Auditors find gaps in VA's Project Management Accountability System
The Veterans Affairs Department’s IT project oversight system started two years ago needs work, according to a new audit.
Roger Baker, the VA’s assistant secretary of information and technology, asked the VA's Office of the Inspector General to review of the Project Management Accountability System (PMAS) he started in June 2009. It currently spans about 120 active IT development projects.
Although the VA has made progress in its IT management under the new system it needs “a great deal of work,” Belinda Finn, assistant inspector general for audits and evaluation, wrote in the report released Aug. 29.
VA's Roger Baker defends IT budget, agile development
VA weeds out poorly performing programs
For example, the VA hasn't established effective management controls to ensure PMAS' data reliability, verify project compliance and track project costs, Finn wrote.
For example, while the VA created an IT dashboard to track IT projects’ current status in PMAS, the data used in it was unreliable, Finn wrote.
“Office of Information Technology does not maintain in the PMAS Dashboard an audit trail of the initial baseline against which to measure project progress,” Finn wrote. “Currently, when a project manager enters a revised project delivery date into the PMAS Dashboard, OIT loses visibility of the original delivery date.”
No reviews are being done to confirm that the data entered into the dashboard is accurate, Finn added. “As a result, OIT cannot rely on the PMAS Dashboard to support project oversight and provide accurate project status data OIT leaders need to make timely and informed management decisions.”
In addition to needing management controls, the PMAS system needs a detailed plan for implementation.
While “initial accomplishments are encouraging, the current framework for PMAS does not provide a sufficient foundation for continued progress,” Finn said. “ OIT proceeded with PMAS’ implementation without the benefit of a road map — that is, a detailed implementation plan — to guide it or the leadership and staffing resources needed to support it through full implementation.
“However, a great deal of work remains before PMAS can be considered completely established and fully operational,” Finn concluded.
Finn recommended that Baker create a detailed plan for PMAS implementation, including benchmarks for deliverables, performance measures and a method of tracking progress. She also made five other recommendations.
According to the report, Baker agreed with the findings and recommendations.
Alice Lipowicz is a staff writer covering government 2.0, homeland security and other IT policies for Federal Computer Week.