APPENDIX II

EXPANDED ELECTRONIC GOVERNMENT

The specific standards for the expanded E-Government element of the Scorecard are in Appendix II. As of December 31, 2004, the OMB Scorecard showed that many of the departments and major agencies are making progress toward implementing the initiatives.

	Agency: Has an Enterprise Architecture linked to the Federal Enterprise Architecture (FEA) rated “effective” using OMB’s EA Assessment tool (score of “3” on both EA Maturity and Degree of Alignment); Has acceptable business cases (security, measures of success linked to the Enterprise Architecture, program management, risk management, and cost, schedule, and performance goals) for all major systems investments; Has demonstrated using EVM or operational analysis, cost and schedule overruns, and performance shortfalls, that average less than 10% for all major IT projects; Submits quarterly status reports in remediating IT security weaknesses; Inspector General verifies the effectiveness of the Department-wide IT Security Remediation Process; Has 90% of all IT systems properly secured (certified and accredited); AND Has implemented all of the appropriate E-Gov initiatives rather than creating redundant or agency unique IT projects. To maintain green status, agency: Has ALL IT systems certified and accredited; Has IT systems installed and maintained in accordance with security configurations; AND Has consolidated and/or optimized all agency infrastructure to include providing for continuity of operations.		Agency: Has an Enterprise Architecture linked to the FEA rated “effective by using OMB’s EA Assessment tool (score of “3” on both EA Maturity and Degree of Alignment); Has acceptable business cases (security, measures of success linked to the EA, program management, risk management, and cost, schedule and performance goals) for more than 50% of its major systems investments; Submits security reports to OMB that document consistent security improvement and either: 80% of all IT Systems are properly secured; OR Inspector General verifies the effectiveness of the Department-wide IT Security Plan of Action and Milestone Remediation Process: Has cost and schedule overruns, and performance shortfalls, that average less than 30% for all major IT projects; AND Has established a process and plan for implementing all of the appropriate E-Gov initiatives rather than creating redundant or agency unique IT projects		Agency: Does not have an Enterprise Architecture linked to the FEA that “effective” by using OMB’s EA Assessment tool (score of “3”); Does not have acceptable business cases (security, measures of success linked to EA, program management, risk management, and cost, schedule and performance goals) for more than 50% of its major systems investments; Has not submitted Security Reports to OMB that document consistently security improvement and cannot demonstrate that: 80% of all IT systems are properly secured; OR Inspector General has verified the effectiveness of the Department-wide IT Security Plan of Action and Milestone Remediation Process; Has cost and schedule overruns, and performance shortfalls, that average 30% or more; OR Has not established a process and plan for implementing all of the appropriate E-Gov initiatives rather than creating redundant or agency unique IT projects.