The federal government has started to embrace the positive impact of cloud on cybersecurity efforts. We first saw this in the May Cybersecurity Executive Order, which outlined a shift to cloud as a key part of cyber security strategy. During a briefing, Tom Bossert, Homeland Security Advisor, said, “We’ve got to move to the cloud and try to protect ourselves instead of fracturing our security posture.” And, the new Report to the President on Federal IT Modernization, released by the White House Office of American Innovation likewise underlines the importance of cloud and a shift to shared services.

Agencies are gaining cloud deployment momentum now because they are matching the cloud to the mission – in many cases implementing highly secure on-premise or hybrid cloud solutions.

At a recent cloud event, John Hale, Chief of Application Services, Defense Information Systems Agency (DISA) said, “the direction that we’re getting from the senior members of the department is ‘move everything to the cloud now.’” He is working to create Cloud Access Points (CAPs) to protect Department of Defense (DoD) networks from the rest of the public cloud and enable DoD security requirement compliance. The recently awarded MilCloud 2.0 will be a hyperconverged on-premise cloud system that is expected to enable approximately 70 percent cost savings for DoD.

And, on September 20, the U.S. Air Force awarded Dell EMC, General Dynamics, and Microsoft a $1 billion, five-year contract to implement a Cloud Hosted Enterprise Services (CHES) program. This is the largest-ever cloud-based unified communications and collaboration contract in the federal space.

We have many examples of how federal agencies are finally moving past the “devil you know is better than the devil you don’t” mentality. But how does cloud, specifically hybrid and secure on-premise cloud, improve security? Agencies can:

• Maintain control and compliance with security best practices
• Align data protection services with application demands
• Access IT services in the event of a disaster with active provisioning
• Integrate existing security tools and services

FDR famously told us that the only thing to fear is fear itself. Digital transformation, powered by secure hybrid and on-premise cloud environments will modernize government services, improve governance and transparency, and keep federal data and systems more secure.

Learn more:  https://www.dellemc.com/en-us/cloud/hybrid-cloud-computing/index.htm.

By: Steve Harris, Senior Vice President and General Manager, Dell EMC Federal

Gartner forecasts that by 2020, 20.4 billion devices will be connected across the Internet of Things (IoT). The IoT brings the promise of new possibilities, but to unlock them, agencies must change how they think about data and how to keep it secure.

There are four primary ways IoT can provide value to agencies and support innovation:

• Driving operational efficiency – improve effectiveness while simultaneously reducing cost
• Improving constituent experience – discover new ways to engage users
• Mitigating risk – improve security by detecting failures before they happen
• Driving mission success – discover new paths to mission success through data insights

Both Department of Defense (DoD) and civilian agencies are currently using connected technologies including drones, cameras, sensors, satellites, etc., to support their missions. For example, the Air Force is combining surveillance and flight sensor data to provide detailed threat information in real-time; the Navy is using a network of connected buoys with sonar capability to detect submarines more quickly and efficiently. On the civilian side, the General Services Administration (GSA) is using a network of low cost motion sensors to turn off the lights when employees are not at their desks – reducing environmental inefficiencies and overhead costs.

While the potential for innovation is great, federal IT teams face a number of challenges when implementing and using the IoT. For starters, up to 80% of IoT data will be unstructured, and these data points have to be stored, managed, and analyzed in a methodical way. For agencies, this means preparing their aging infrastructure for the influx of data from IoT devices on the edge.

The biggest challenge, however, is security. As agencies implement new layers of architecture and processors to harness the IoT, they must address cyber security concerns for both operational technology (OT) devices and traditional IT devices – not straightforward, as IT and OT have very different goals and drawbacks. And, there are an enormous variety of IoT devices that will come into play, each introducing a different level of risk.

It is important for federal agencies to be “paranoid, but not paralyzed” when it comes to IoT security. If approached in the right way – by having heavily encrypted storage environments and a cyber plan that provides for the protection of all endpoints/networks – agencies can effectively manage the security risks and take advantage of the significant opportunity ahead.

Learn more:  https://soundcloud.com/fedscoop-519204393/iot-in-government-sponsored-by-dell-emc#t=0:00.

By: Ro Dhanda, Director, Federal Sales, Dell EMC

Federal agencies face a continual struggle to attract top talent in the cyber workforce. Why? Because it is difficult for agencies to find qualified personnel, hard to retain security workers, and there is often an insufficient understanding of job requirements. This impacts us all – as it makes it more difficult for agencies to make good, risk-based decisions as they modernize federal IT and work to meet mission objectives.

The Presidential Executive Order on Strengthening the Cyber Security of Federal Networks and Critical Infrastructure required a group of agency leaders to jointly assess the federal government’s efforts to train the cybersecurity workforce, and develop a report to the President with their findings and recommendations.

These recommendations are not yet available, but federal agencies must find a way to provide potential employees with reasons to choose federal service over private sector perks. Representative Will Hurd (R-Texas) is trying to do just that with his proposed cybersecurity workforce program, the Cyber National Guard. The program would provide students a free cybersecurity education, and in return, students will work in federal service for an equal amount of time.

On C-SPAN, Rep. Hurd explained there is still a significant shortage of computing talent across the board – in Texas alone, 42,000 computing jobs went unfilled in 2015, with an average salary of $89,000. In that same year, Texas produced just 2,100 computer scientists. We need new approaches.

Rep. Hurd’s idea for a Cyber National Guard is that if you are going to college, and will study something related to cybersecurity, the federal government will find you a scholarship. In return, when you graduate, you will serve in government for the same amount of time you were in school. Rep. Hurd also explained that once you are finished with government service, the private sector will loan you back for a period of time – one weekend a month, ten days a quarter, or similar.  “This will improve the cross pollination of ideas between the public and private sectors,” Hurd states.

Once you have the troops in place, you have to give them the tools to be successful. President Trump put this component into motion when he elevated the U.S. Cyber Command to a full combatant command in August. Trump said in a statement that this will “streamline command and control of time-sensitive cyberspace operations by consolidating them under a single commander with authorities commensurate with the importance of such operations….and ensure that critical cyberspace operations are adequately funded.”  As to be expected, there are hurdles to moving these initiatives forward, including:

• Funding for cybersecurity education.
• Showing a clearly defined career path for cybersecurity growth within the federal government.
• Having a standardized listing of cyber jobs within government to ensure students receive the proper credentials.

Fortunately, most agree across the aisle that improving the federal cybersecurity workforce is critical to our future. When asked about the path forward, Representative Hurd is optimistic, sharing, “There really is a group of us that are committed to a bipartisan solution to this problem. So, we’re going to have a posse.”

That’s good, because we know we are stronger together, and we will need continued collaboration and open dialog with federal agencies, our elected leaders, and between the public and private sectors to keep our information and systems secure.

By: Steve Harris, Senior Vice President and General Manager, Dell EMC Federal

With the release of the fourth FITARA scorecard, we saw agencies stall on progress – more agency grades declined than improved, and 15 agencies’ grades remained neutral.

One shining star was the United States Agency for International Development (USAID) – the first agency to ever receive an overall A. How did they do it? According to a USAID official, they focused hard on transparency and risk management – where they received an “A”. This was not the case for most of their counterparts however, as 14 agencies received a “C” or lower in that category.

Risk management is one of the more difficult areas for agencies to see success, but every CIO should be using the National Institute of Standards and Technology (NIST) Framework in that area. NIST recently released an updated version of the Framework for public comment, in the hopes that it would be easier to utilize and implement.

These were the most notable changes to the updated version:

• Refined managing cyber supply chain risks – framework now has a common vocabulary so agencies working on cyber supply chain projects can clearly understand cybersecurity needs.
• Revised “Identity Management and Access Control” category – framework now has clarified and expanded definitions of the terms authentication and authorization; added and defined the concept of “identity proofing”.
• Introduced measurement methods for cybersecurity – framework now gives guidance on how to measure how well an agency is reducing risk and identifies overall agency benefits.

NIST has been gathering feedback on the Framework changes, and is expected to release the final version this fall. Hopefully, federal CIOs can use the updated Framework to effect positive change on their cybersecurity and risk management projects – and in turn, see an upward tick in grades when the next scorecard is released in December.

Learn more about Dell EMC’s portfolio of cybersecurity capabilities for government:  https://www.rsa.com/en-us/research-and-thought-leadership/security-perspectives/government-solutions.

By: Cameron Chehreh, Chief Operating Officer, Chief Technology Officer & VP, Dell EMC Federal

While the Cybersecurity Sprint focused attention on how to generate improvements quickly, one of our most important cyber efforts – the Department of Homeland Security (DHS) Continuous Diagnostics and Mitigation (CDM) program – is unquestionably a marathon. Now in its fourth year, the program is maturing agencies’ abilities to identify cyber risks and adopt a risk-based approached to mitigation.

The program is entering Phase 3, but agency progress has been staggered. Every agency started from a different point of cybersecurity maturity, so this is not surprising.

Phase 1 involved mapping networks to determine what they would need to improve threat protection; Phase 2 on identifying who has access to the network and how you handle access management. Up next, Phase 3 focuses on boundary protection and incident response.

What was initially surprising was the degree to which agencies discovered during Phase 1 that they were underreporting device numbers. James Quinn, lead systems engineer on the CDM Program at DHS, said that DHS estimated federal agencies would map approximately two million assets, but agencies ended up finding approximately four million.

We have to anticipate this challenge will continue to grow with the Internet of Things (IoT). Every internet-connected device is a potential vulnerability, so improving asset management and establishing a secure supply chain are critical to securing federal systems and information.

When we think about supply chain risk management, we think about our devices and the systems and software we use to protect them. The CDM Project Management Office (PMO) requires vendors submitting products for the CDM Approved Product List (APL) to provide details on their supply chain risk management policies. See more: CDM Supply Chain Risk Management plan.

RSA Archer, a Dell Technologies company, serves as the platform for the agency and federal dashboards. At the agency level, the dashboard captures data locally from network sensors, scores the data, and shows “worst problems first” for operators – i.e. enables a risk-based approach. Agencies are in the process of deploying their dashboards, and the federal dashboard is scheduled to deploy this year.

As agencies and the CDM Project Management Office move forward, they will be tackling ongoing challenges including the need for acquisition flexibility, how to speed the acquisition process, how to integrate FedRAMP, and what’s next for Trusted Internet Connections (TIC).

That’s an already tall order that will continue to grow – and we do win or lose together in this race.

By: Cameron Chehreh, Chief Operating Officer, Chief Technology Officer & VP, Dell EMC Federal

We are starting to hear very different language when federal IT leaders talk about modernization.

At the recent Federal Focus: The Cloud Generation event, Small Business Administration (SBA) Deputy CIO Guy Cavallo and CTO Sanjay Gupta talked about their migration from data center to cloud, noting that the key was to “burn the bridge back to the old way of doing things” and commit completely. The SBA successfully managed the migration in just 57 business days with no additional funding, demonstrating the art of the possible if you have the will and the leadership.

Our panel at the Federal Focus event explored development and operations, or DevOps, as an approach to modernize and speed new development efforts; shrinking the window between idea and delivery. This is especially important against the backdrop of the Data Center Optimization Initiative (DCOI) and other efforts to streamline Federal IT with a cloud-first approach.

Jennifer Hoover, DevOps program manager at the Transportation Security Administration (TSA) explained DevOps encompasses more than just software development. The true definition is much broader and includes the tools people use, the technology, the processes of acquiring services, and the people operating the systems.

“Inherently, DevOps is about the people,” Hoover shared. “It’s about the culture. Somewhere in the middle of that is DevOps.”

Sean Jennings, co-founder and senior vice president of Solutions Architecture for Virtustream, added that DevOps forces teams to come together. In the past, too often tools were built that did not meet functional needs. And, as we are all aware, far too many development efforts were executed in silos and abandoned before completion.

DevOps connects customers with the engineers and service relations staff up-front and throughout the development process, helping to avoid end products that might be “technically perfect,” but don’t meet mission needs. Much more incremental than traditional waterfall development approaches, DevOps lets teams see flaws and course correct more quickly. And, the process involves all the key stakeholders throughout the process – operations and service teams, security teams, and the end customer.

The challenge is that DevOps requires an enormous shift in mindset and culture, so communication is key. Chad Sheridan, CIO, USDA Risk Management Agency, shared that his job is to constantly communicate the “why” and help the different groups understand one another better. Both Hoover and Sheridan emphasized the importance of communication as you work to build trust in the new approach; using all-hands meetings, lighting talks, guest speakers, and other methods of interaction.

As we shift to a multi-cloud world and enable digital transformation efforts, we need faster, more effective ways to build and connect cloud-native applications. DevOps is providing new opportunities to rapidly deploy and scale new services and shrink that window from idea to delivery – literally putting the pedal to the metal on cloud.

By: Cameron Chehreh, Chief Operating Officer, Chief Technology Officer & VP, Dell EMC Federal

According to a Gartner study, there will be 26 billion internet-connected devices by 2020 – more than four devices for every human on earth.

This hyper-connected world presents opportunities and challenges for federal agencies, particularly given data security and privacy considerations, and the enormous variety of IoT devices (many of which, unlike a laptop, are difficult to update when we identify vulnerabilities).

I recently moderated a panel on the IoT at MeriTalk’s Cloud Computing Brainstorm. Federal leaders discussed successful IoT implementations and how the cloud can accelerate progress. The consensus was that we need a greater focus on IoT in federal IT, from an application and a security standpoint.

“When you think about the Internet of Things, we’re going to be in a race,” said Greg Capella, deputy director of the National Technical Information Service, Department of Commerce. Panelists discussed how keeping up with the IoT race means agencies need to adopt cloud computing and fully utilize cloud-based networks.

“We can’t do IoT without the cloud,” said Christine Calvosa, deputy CIO of Technology and Resiliency, Federal Communications Commission. “It’s just a network of networks.”

Traditional IT infrastructure can’t handle the surplus of data created by the IoT. Cloud provides the flexibility, scalability, and storage capacity needed to manage all of that information. “The public will demand services much like we demand cellphones in our pockets,” Capella said. “We’re basically facing the fact that there will be more data than we can digest.”

As federal agencies consider IoT initiatives, they need clear frameworks, including the ability to analyze and secure the data, and a path to build IoT systems that allow for future innovation.

The panel did warn against thinking about IoT too narrowly or just in terms of specific use cases. Just as we are using the Internet in ways early developers could not have imagined, the same will certainly be true for future IoT.

To be successful, we need everyone at the table – engineers, cyber security teams, procurement, and the mission owners. Collectively, we need to keep looking forward. Cloud and IoT will help us solve deliver more efficient, more connected, and ultimately smarter government.

Learn more about Dell EMC’s cloud computing capabilities: https://www.emc.com/en-us/cloud/hybrid-cloud-computing/index.htm.

By: Cameron Chehreh, Chief Operating Officer, Chief Technology Officer & VP, Dell EMC Federal

The latest FITARA scorecard revealed the first overall “A,” issued to USAID, which managed a significant improvement following a string of D’s on the last three scorecards. Unfortunately, more agency grades declined than improved.

The trend is frustrating, particularly as the December 2016 scorecard showed improvements. The Chief Information Officer (CIO) is supposed to drive most of the change required by FITARA. Yet, just a third of Chief Financial Officers (CFO) Act agencies have a permanent CIO in place. The rest are left with an interim CIO or have left the position empty altogether.

And, as we heard at the June 13 Oversight and Government Reform (OGR) hearing, too many agencies still don’t provide visibility into their IT programs – such as software license inventories, data center closures, and cost savings metrics – as required under FITARA.

At the OGR’s FITARA hearing, Rep. Gerry Connolly (D-Va.) emphasized that agencies need to look at USAID’s top scores to find the key to improving their own standing.  “They reached out to GAO to find out how to improve. They listened to advice and they implemented it,” Connolly said. “If there’s the political will, if there’s the managerial desire, you’ll have congressional support and you’ll have GAO support.”

Dell EMC, together with other IT leaders, recently met at the White House for the first American Technology Council Summit. We discussed how technology can improve services and support a more efficient, accountable government. We also talked about how we can get there, including retiring legacy systems, increasing the use of shared services, improving procurement processes, and using big data and analytics to improve services and reduce fraud, waste, and abuse.

At Dell EMC, we think about three key components for digital transformation and modernization: IT transformation, workforce transformation, and security transformation. As the federal government continues the modernization push, FITARA will drive accountability, transparency, and ultimately more consistent improvement across government.

If USAID’s success drives other agencies to reach out to GAO for best practices, we all win.

Learn more about Dell EMC’s perspective on digital transformation:  https://www.delltechnologies.com/en-us/perspectives/digital-transformation-index.htm.

By: Steve Harris, Senior Vice President and General Manager, Dell EMC Federal

The forecast is looking brighter for FedRAMP.

The FedRAMP Project Management Office (PMO) has worked to make the cloud procurement more transparent and more efficient. At June’s Cloud Brainstorm event, Congressmen Will Hurd (R-Texas), Gerry Connelly (D-Va.), and FedRAMP leadership from the General Services Administration (GSA) shared perspectives on progress to date and what’s ahead.

Most agree that the FedRAMP Accelerated program, which modified how the FedRAMP Joint Authorization Board (JAB) authorizes cloud service providers (CSPs) to make the process significantly faster and more predictable, has eased concerns and is driving positive change. Rep. Connolly said legislators are pleased with FedRAMP’s progress, sharing, “It wasn’t that long ago that we were feeling pretty dire about how FedRAMP was proceeding. Significant improvements have been made.”

An independent study of FedRAMP from May 2017 found that six agencies have used at least 20 CSPs approved under FedRAMP, and that there was an 80% growth in the use of FedRAMP certifications.

That said, industry representatives continue to see the reluctance of one agency to accept another agency’s Authority to Operate (ATO). While agencies are willing to go through the process to get a CSP approved by FedRAMP, contributing to the overall growth in certifications, one agency doesn’t necessarily trust a CSP brought through the process by a different agency, as each agency IT head has a different set of internal standards and guidelines. This is a significant issue, but leadership recognizes the challenges are driven by factors beyond the FedRAMP program.

Matt Goodrich, FedRAMP program director, says that given FedRAMP’s budget, it is neither realistic nor prudent for every vendor to go through Joint Authorization Board (JAB) approval. JAB must be reserved for cloud services that are truly government-wide.

Under the Federal Information Security Act (FISMA), the CIO is the sole individual responsible for accepting cyber risks for their own agency. Acceptable risk for one agency may not translate to acceptable risk for another.

What’s ahead for FedRAMP? The goal is to get to a point where a vendor holding one ATO can go through an even more accelerated process as they apply for the next. Hopefully, the FedRAMP program will continue to streamline and evolve.

FedRAMP can also serve as a driver for cloud adoption beyond federal agencies. Joe Moye, senior vice president of public sector, Virtustream, says, “The state and local government market creates an opportunity to leverage the FedRAMP platform beyond federal agencies. The focus on expediting some of the process is crucial.”

FedRAMP will play a vital role as agencies focus on digital transformation and modernization. It’s important we continue to engage in productive public/private dialog and work together to ensure agencies have the best and most secure cloud options.

Learn more about Dell and Dell Technologies FedRAMP-approved cloud services:  http://www.dell.com/learn/us/en/uscorp1/press-releases/2016-04-25-dell-cloud-for-us-government-meets-security-standards and http://www.virtustream.com/cloud/virtustream-federal-cloud/.

By: Cameron Chehreh, Chief Operating Officer, Chief Technology Officer & VP, Dell EMC Federal

How fitting that Cloud Computing (the horse) beat favorite Always Dreaming to the finish line at the Preakness this year, particularly for those of us working in Federal IT.

Just three days earlier, the Modernizing Government Technology (MGT) Act passed the House, signaling continued momentum for agencies working to reduce reliance on outdated systems and move to cloud – the foundation for digital transformation.

We need to stop managing resources piece-by-piece and building systems component-by-component. This approach isn’t fast enough for modern Federal missions, and can’t scale to manage the exponential increase in Federal data. As we look forward to the Internet of Things, machine learning, and artificial intelligence, we know we will quickly generate even more data and will have an even greater need to deploy IT services, faster.

Cloud enables IT as a service. We can put new applications in the hands of Federal teams, faster. IT becomes 100% mission focused. And, as a result, we can deliver improved service to the citizen and new ways to connect to government services, resources, and information.

And, we’re at the gate. The Dell EMC State of IT Trends 2016 Federal study found that Federal IT leaders anticipate cloud will be their most significant investment in 2017. OMB has specified that the 2018 budget requires that agencies focus on transitioning high-risk legacy IT systems to cloud and shared services.

It’s a trifecta of benefits – cost savings, improved operations, and, of course, better security. OMB has shared that, as an example, moving to a cloud-based collaboration solution can bring cost savings that range from $500,000 per year for smaller agencies to $10 million per year for a larger agency such as the Department of Justice. Lawrence Livermore National Laboratory consolidated their data centers from 63 to 18, using cloud computing to support the lab’s enterprise computing systems and enabling operational improvements through a common dashboard providing data streams to all lab employees.  The OMB Breach and Wannacry shows us the cyber liabilities of outdated IT.

Unlike horse racing, we’ll never reach the finish line – but we have proven cloud success across government. As we modernize, cloud computing will help us win.

By: Steve Harris, Senior Vice President and General Manager, Dell EMC Federal

The Federal Data Center Consolidation Initiative (FDCCI) was intended to, in part, “reduce the cost of data center hardware, software, and operations […] and shift IT investments to more efficient computing platforms and technologies.” But it didn’t work – new data center construction continued. Six years after the FDCCI, the Data Center Optimization Initiative (DCOI) was introduced to impose tighter regulations, and has forced agencies to focus on meeting specific metrics to improve data center utilization and efficiency, and, ultimately, save money.

The primary DCOI deadline of September 30, 2018 is fast approaching, and agencies must do all of the following before that date:

• Meet target metrics for energy metering, power usage effectiveness (PUE), virtualization, server utilization and automated monitoring, and facility utilization;
• Install advanced energy meters;
• Use automated monitoring and operations – no more manual collection and reporting;
• Reduce data center costs by at least 25 percent, relative to the fiscal year 16 spending; and
• Close at least 25 percent of tiered and 60 percent of non-tiered data centers.

As Federal agencies look at the challenge in front of them – installing new technology, optimizing infrastructure, improving performance, and reducing costs – how can they quickly achieve all of these goals?

One path forward is software-defined data centers (SDDCs). SDDCs have virtualized hardware components, deliver infrastructure-as-a-service, and are software-based. All of these components allow agencies to be flexible in the face of unknown, emerging data center demands. Federal agencies have repeatedly mentioned scalability as crucial to successfully modernizing IT – a recent Dell EMC survey found that 90 percent of Federal IT decision-makers want an IT architecture that allows them to tailor to specific application and workload needs.

That same survey found that most agencies are moving towards SDDCs. Sixty-four percent of Federal agencies said they had deployed software-defined solutions, 85 percent reported progress adopting SDDCs, and 56 percent reported being more than halfway done adopting an SDDC.

And, Federal IT managers reported the top three advantages of SDDCs are flexibility, agility, and efficiency. All of those characteristics put agencies in the best position to optimize and modernize their data centers against DCOI goals, support agency missions, and drive towards digital transformation.

As Federal agencies look to hit the DCOI bottom line, SDDCs seem to be the best path forward – increasing flexibility and efficiency, improving performance, and, most importantly, saving dollars. It’s a Federal IT win-win.

Learn more:  http://i.dell.com/sites/doccontent/shared-content/campaigns/en/Documents/Future_of_data_center.pdf

By: Steve Harris, Senior Vice President and General Manager, Dell EMC Federal

As more and more Federal agencies turn towards cloud as the most viable modernization method – in a recent MeriTalk study, 76 percent of Federal IT cloud decision-makers said they are evaluating cloud solutions as an integral part of their overall IT strategy – agencies have to develop a clear plan on how to consolidate data centers and make the move to cloud.

As an immediate next step, Federal agencies require an understanding of which applications are ready – and able – to move from data centers into the cloud and operate successfully once in the cloud environment. 92 percent of Federal IT managers say it’s urgent for their agency to modernize legacy applications, with the top drivers being security issues, time required to manage and/or maintain systems, and inflexibility and integration issues.

Agency CIOs must determine how infrastructure and applications interact relative to mission priorities. What’s vital, what’s duplicative, what can be retired? This process can breathe new life into the application portfolio – providing improved efficiency and security before the move to the cloud.

So how can agencies create and implement effective application rationalization plans for their upgraded systems? A few thoughts:

• Create a consolidation roadmap – establishing clear guidelines from the beginning helps agencies to stick to their goals and proceed in a timely manner.
• Create an application inventory – this helps agencies see what applications they have, determine which ones are necessary, and identify what applications might be duplicates or are no longer necessary. Agencies can also rank applications based on mission value.
• Identify security and performance requirements for each application – how will each application fare in a transfer? Are certain apps worth re-building, or is it better to eliminate them entirely?
• Map out application connections – how are certain applications connected? Do any applications share data? This ensures eliminating one app does not interfere with the execution of another app.
• Consider an automated tools-based approach – can speed the application rationalization process by 50 percent, using fewer resources than manual techniques.
• Look for quick wins – identify opportunities to build modernized apps quickly, driving mission value and accelerating your success.

Also, Federal IT managers estimated that 55 percent of their current legacy applications could be successfully modernized through re-platforming the existing application, leveraging architecture-driven modernization, or by remediating the existing application to extend its useful life.

Investing in application rationalization as an early step puts modernization efforts on the right path. And, with Rep. Will Hurd (R-Texas) and Rep. Gerry Connolly (D-Va.) recently re-introducing the Modernizing Government Technology (MGT) Act, there should be more funding and support for these efforts.

Learn more about how Dell EMC can help with application rationalization:

• Dell EMC’s Application Profiling Services – https://www.emc.com/collarteral/serviceoverview/h15258-emc-application-profiling-services-svo.pdf

By: Cameron Chehreh, Chief Operating Officer, Chief Technology Officer & VP, Dell EMC Federal

The December 2016 FITARA scorecard  revealed a number of agencies continue to rely on legacy IT systems, wasting billions each year and making it increasingly difficult to secure sensitive government information.

Many received Ds and Cs, and not one agency scored an overall A. Additionally, despite significant focus during the past several years, nearly 65% of agencies received a C, D, or F in the data center consolidation category.

These low grades reflect the complexity of the modernization challenge. Data center consolidation and optimization is a top priority for every Federal chief information officer – to reduce costs, improve efficiency, and keep data and systems secure.

The report cards bring new transparency, and provide the best, fastest way for agencies to learn from each other, evaluate their current plans, and move their IT forward. The Department of Homeland Security (DHS), for example, performed well, receiving an A in the data center consolidation category. Luke McCormack, the agency’s former CIO, says he expects the agency to have fewer than 25 data centers by fiscal year 2019. Rep. Gerry Connolly (D-Va.), also noted that DHS surpassed its data center consolidation savings goal, cutting $248 million.

Soraya Correa, chief procurement officer at DHS, was quoted in a recent article saying agencies must change the way they think about their workforce by modifying how personnel are trained and removing silos around different positions.

“If you really want to change the culture, you’ve got to change the way you train people,” Correa said, explaining that IT, procurement, and human resources personnel should all be receiving training specific to their particular positions, rather than one blanket onboarding process for all employees.

As another example, several of NASA’s scores jumped from F to C-plus on the December scorecard. Renee Wynn, NASA’s CIO, said using an internal Business Service Assessment (BSA) was a key factor in the improved scores. The BSA helped the agency restructure IT governance, update program management, and improve CIO oversight for major IT investments.

Wynn said the BSA yielded seven recommendations for the agency to streamline internal roles and responsibilities. One of the ideas that had the most profound affect was creating an IT Council comprised of senior agency officials and representatives from the ten centers that deliberate on IT investments. This strategy investment board ultimately changed the way NASA managed IT by providing recommendations and an overarching direction for the agency’s IT acquisitions – eliminating the prior, more piecemeal approach.

And that is what FITARA is all about. We can’t modernize without a hard focus on the mission, which comes from increased collaboration within each agency and between the mission owners and IT.

The next scorecard is expected out in May. We are all looking for signs of progress across more agencies, and even more examples of how we can move forward together.

By: Steve Harris, Senior Vice President and General Manager, Dell EMC Federal