1 / 22

Department of Information and Technology Services (DOITS) IT Strategic Plan 2018 – 2020

Department of Information and Technology Services (DOITS) IT Strategic Plan 2018 – 2020 Addressing Information Technology Opportunities, Risks and Threats Washington, D.C. April 2017. HELP DESK. Department of Information and Technology Services. CIDH. SAP. SEDI. SAJ. SSM. IEAB.

joannm
Download Presentation

Department of Information and Technology Services (DOITS) IT Strategic Plan 2018 – 2020

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Department of Information and Technology Services (DOITS) IT Strategic Plan 2018 – 2020 Addressing Information Technology Opportunities, Risks and Threats Washington, D.C.April 2017

  2. HELP DESK Department of Information and Technology Services CIDH SAP SEDI SAJ SSM IEAB SECURITY LAB REMJA SIAR IPSP Structure and Services … External Services Internal Services … Information Security Infrastructure and Communications Software Development Software Quality Human Resources Information Structure EXCHANGE CORE / Departamental Department of Information and Technology Services SDF / TAP 50 / 50 … … OAS CONNECT ERP

  3. Department of Information and Technology Services 2006 2010 2012 2013 2014 2015 2016 Personnel Cybersecurity Events Helpdesk Tickets Applications Developed in-house Smartphones Data Usage Growth in Terabytes

  4. SAF/DOITS Strategic Plan 2018-2020

  5. SAF/DOITS Strategic Plan 2018-2020 Software Development

  6. Software Development Core/Departmental Application Development ERP Implementation Enterprise/Web Content Management Virtual Communities Mobile Application Development Collaborative Spaces 6

  7. Software Development (Continued) Business Process Management SAF Services Portal Redefinition of Legacy Systems. Small Business Process Automation Project 7

  8. Short-Term Challenges Infrastructure and Communications SoftwareDevelopment Information Security Software Quality Human Resources Information Structure • IT and Communications infrastructure lease renewal • Unified data storage architecture • High availability in critical services • ISO compliant data centers • Cloud services • GS/OAS business processes redefinition • Upgrade existing ERP (OASES) • Development of SBPs (SAF Services Portal) • Implementation of a GS/OAS Content Management System • Departmental applications. • Mobile Applications • Redefinition of legacy systems • Technical upgrade of GS/OAS Information Security Architecture (ISA) • Disaster recovery upgrade • Creation of OAS CERT • Continuing awareness and training for GS/OAS personnel • Retention of qualified personnel. • Training. • Convert CPR contracts into staff positions. • Technical accreditation program. • Enforcement of GS/OAS software outsourcing policy • Oracle/Microsoft engine databases upgrade • Implementation of GS/OAS Dashboards.

  9. Major Short Term Risks and Threats Infrastructure and Communications SoftwareDevelopment Information Security Human Resources • IT and Communications infrastructure lease renewal • GS/OAS business processes redefinition • Upgrade existing ERP (OASES) • Technical upgrade of GS/OAS Information Security Architecture (ISA) • Disaster recovery upgrade • Retention of qualified personnel. • Training. • Convert CPR contracts into staff positions.

  10. Addressing Information Technology Risks and Threats

  11. Major Short Term Risks and Threats Infrastructure and Communications VPN National Offices HQ Remote Access 300 MB Internet 1GB 1GB GSB 200 MB MNB FULL LOOP Headquarters ADM 1GB 75% of existing infrastructure under a lease to expire on 31/12/2017

  12. Major Short Term Risks and Threats Infrastructure and Communications “The Board notes that IT is an essential enabler for the day-to-day operations of the OAS; in fact the IT infrastructure is used by all staff for operational purposes and for the delivery of technical programs.” National Offices HQ Remote Access 1GB 1GB GSB MNB Risk of non renewal : Cease of all GS/OAS operations Total cost of renewal of the lease: $3.000.000 over 5 years IT maintenance regular funds includes: $600.000 per year Additional total funds needed in order to have a complete overhaul of GS/OAS infrastructure: $2.000.000 1GB

  13. Major Short Term Risks and Threats Upgrade of existing ERP – “OASES” MS SQL MS SQL RBCS Electronic Business Suite Release 11 • DHR DFS TECS LMS Human Resources General Ledger OPDB Payables TXF Receivables CashManagement ORACLE DB Engine PES Grants/Projects Payroll FixedAssets • DP DGS Purchasing Fixed Assets (Inventory) Legal CPR PIMS OASES

  14. Major Short Term Risks and Threats Upgrade of existing ERP – “OASES” Data Base Engine Electronic Business Suite Supported Unsupported Extended Support Color code: ORACLE ORACLE Timeline OAS Timeline OAS

  15. Major Short Term Risks and Threats Upgrade of existing ERP – “OASES” Board of External Auditors Reports “The Board is concerned about the continued reliance on an aging OASES platform and associated databases. “ • Risk of Financial Systems Failure • Unable to implement International Financial • Reporting Standards (IFRS/IPSAS)

  16. Major Short Term Risks and Threats Upgrade of existing ERP – “OASES” TCO savings of $1.5M - $11M* EBS On-Premise vs. Oracle Cloud TCO Analysis10 year Cumulative Cost Comparison Note: Estimates based on client data provided and assumptions for operational data not provided.Source: ORACLE

  17. Major Short Term Risks and Threats Information Security Source: OAS Information Security Architecture

  18. Major Short Term Risks and Threats Information Security • Ever evolving and complex Information Security threat landscape • Last capital investment made in 2010 (CIDA) • Increased risk of GS/OAS data being compromised. Additional funds needed to mitigate urgent needs: $200.000 over one year period. Maintenance needed for subsequent periods: $20.000 per year

  19. Major Short Term Risks and Threats Disaster Recovery Board of External Auditors Reports “ Cyber Security and disaster recovery continue to be risks with current IT infrastructure. Without investment by OAS to improve and modernize the IT infrastructure, the organization will remain at risk of having potential losses of the use of the systems and data if a breach or disaster does occur within the OAS’ IT infrastructure.” • In case of disaster it would take weeks to be operational again • Disaster Recovery as a Service in the cloud is needed. Funds required in order to setup Disaster Recovery services in the cloud: $150.000 per year

  20. Addressing Information Technology Risks and Threats

  21. Addressing Information Technology Risks and Threats Board of External Auditors Reports “The Board notes that IT Capital Fund is needed

  22. Department of Information and Technology Services (DOITS) IT Strategic Plan 2018 – 2020 Addressing Information Technology Opportunities, Risks and Threats Washington, D.C.April 2017

More Related