Cybersecurity

Congressional scorecard finds federal agencies improving on IT

A new congressional scorecard released this week found that federal agencies are gradually improving in their use of information technology.

The House Oversight and Government Reform committee unveiled its biannual Federal Information Technology Acquisition Reform Act (FITARA) scorecard on Tuesday, finding that 11 agencies had improved their scores on IT since May.

Thirteen departments’ scores remained the same, while no agencies saw their scores decrease since the last scorecard earlier this year May — which lawmakers said is a first.

While lawmakers touted the results during a hearing on Wednesday, they remained critical of agencies that did not have a direct reporting line for IT issues within their department.

{mosads}Agencies that did not have their chief information officers report directly to their agency head were docked an entire letter grade on the scorecard.

“This is best practice in the private sector, in accordance with FITARA, and the subject of an executive order from the President. There is simply no excuse for any agency to have any other reporting structure in place,” said Rep. Will Hurd (R-Texas), the chairman of the House Oversight Committee’s subcommittee on IT.

Reps. Robin Kelly (D-Ill.) and Gerry Connolly (D-Va.), the ranking members of the subcommittee, also generally praised the results at the hearing, while noting that agencies still have plenty of progress to make to keep data secure.

“Recent data breaches potentially allowed access to millions of customers’ information, including 500 million guest records hacked via the Starwood Hotels reservation database, as announced by Marriott International last week,” Kelly said. “These cyberattacks highlight the need to strengthen information security in both the government and private sectors.”

Carol Harris, the director of information technology management issues for the Government Accountability Office (GAO), said in her written testimony for Wednesday’s hearing that past failed attempts to address IT within the federal government often struggled over “a lack of disciplined and effective management, such as project planning, requirements definition, and program oversight and governance.”

“In many instances, agencies had not consistently applied best practices that are critical to successfully acquiring IT,” she said.

Harris also said in her testimony that the Office of Management and Budget (OMB) and other federal agencies had implemented about 59 percent of GAO’s 1,242 recommendations on IT made by GAO.

“Overall, federal agencies would be better positioned to realize billions in cost savings and additional management improvements if they address these recommendations,” Harris’s written testimony states.