Report 2014-602 Recommendation 3 Responses

Report 2014-602: High Risk Update—California Department of Technology: Lack of Guidance, Potentially Conflicting Roles, and Staffing Issues Continue to Make Oversight of State Information Technology Projects High Risk (Release Date: March 2015)

Recommendation #3 To: Technology, California Department of

By December 2015 CalTech should develop and adopt criteria to guide the type and degree of intervention it will take to prevent IT projects with significant problems from continuing without correction, including what conditions could trigger CalTech to consider suspending or terminating an IT project.

Annual Follow-Up Agency Response From November 2017

Reflected in SIMM 45, CDT developed and adopted criteria to guide the type and degree of intervention it will take to prevent IT projects with significant problems from continuing without correction.

• Completion Date: March 2017

California State Auditor's Assessment of Annual Follow-Up Status: Fully Implemented

---

Annual Follow-Up Agency Response From October 2016

ITPOD has developed a draft escalation and correction action plan. The final version is expected to be completed in December 2016.

• Estimated Completion Date: December 2016

California State Auditor's Assessment of Annual Follow-Up Status: Not Fully Implemented

---

1-Year Agency Response

The Information Technology Project Oversight Division ITPOD has developed an escalation process which includes a reporting template and examples of conditions that warrant escalation (See attached). In the course of drafting the escalation process, ITPOD decided to also develop a "Corrective Action Plan" process which will formally notify departments that certain conditions or negative trends must be remediated, and if allowed to continue, could result in suspension or termination of the project. This process will become official State policy which necessitates allowing for consultation with Agency Information Officers and drafting State Administrative Manual updates. The additional time needed for this recommendation is due to the anticipated time needed to appropriately articulate and vet the conditions which warrant this action.

• Estimated Completion Date: July 2016
• Response Date: March 2016

California State Auditor's Assessment of 1-Year Status: Partially Implemented

---

6-Month Agency Response

Activity is progressing in developing the criteria for future use in determining project intervention.

• Estimated Completion Date: Dec 2015
• Response Date: September 2015

California State Auditor's Assessment of 6-Month Status: Pending

---

60-Day Agency Response

- Draft policy for SAM or SIMM - not started

- Incorporate all content into ITPOD training program - not started

• Estimated Completion Date: 12/31/2015
• Response Date: May 2015

California State Auditor's Assessment of 60-Day Status: No Action Taken

---

All Recommendations in 2014-602

Agency responses received are posted verbatim.