11546. (a) The Department of Technology shall be responsible for the approval and oversight of information technology projects, which shall include, but are not limited to, all of the following:
(1) Establishing and maintaining a framework of policies, procedures, and requirements for the initiation, approval, implementation, management, oversight, and continuation of information technology projects. Unless otherwise required by law, a state department shall not procure oversight services of information technology projects without the approval of the Department of Technology.
(2) Evaluating information technology projects based on the business case justification, resources requirements, proposed technical solution, project management, oversight and risk mitigation approach, and compliance with statewide strategies, policies, and procedures. Projects shall continue to be funded through the established Budget Act process.
(3) Consulting with agencies during initial project planning to ensure that project proposals are based on well-defined programmatic needs, clearly identify programmatic benefits, and consider feasible alternatives to address the identified needs and benefits consistent with statewide strategies, policies, and procedures.
(4) Consulting with agencies prior to project initiation to review the project governance and management framework to ensure that it is best designed for success and will serve as a resource for agencies throughout the project implementation.
(5) Requiring agencies to provide information on information technology projects including, but not limited to, all of the following:
(A) The degree to which the project is within approved scope, cost, and schedule.
(B) Project issues, risks, and corresponding mitigation efforts.
(C) The current estimated schedule and costs for project completion.
(6) Requiring agencies to perform remedial measures to achieve compliance with approved project objectives. These remedial measures may include, but are not limited to, any of the following:
(A) Independent assessments of project activities, the cost of which shall be funded by the agency administering the project.
(B) Establishing remediation plans.
(C) Securing appropriate expertise, the cost of which shall be funded by the agency administering the project.
(D) Requiring additional project reporting.
(E) Requiring approval to initiate any action identified in the approved project schedule.
(7) Suspending, reinstating, or terminating information technology projects. The Department of Technology shall notify the Joint Legislative Budget Committee of any project suspension, reinstatement, and termination within 30 days of that suspension, reinstatement, or termination.
(8) Establishing restrictions or other controls to mitigate nonperformance by agencies, including, but not limited to, any of the following:
(A) The restriction of future project approvals pending demonstration of successful correction of the identified performance failure.
(B) The revocation or reduction of authority for state agencies to initiate information technology projects or acquire information technology or telecommunications goods or services.
(b) The Department of Technology shall have the authority to delegate to another agency any authority granted under this section based on its assessment of the agency’s project management, project oversight, and project performance.
(Amended by Stats. 2013, Ch. 353, Sec. 77. (SB 820) Effective September 26, 2013. Operative July 1, 2013, by Sec. 129 of Ch. 353.)