Open Recommendations
Recommendation Number | Significant Recommendation | Recommended Questioned Costs | Recommended Funds for Better Use | Additional Details | |
---|---|---|---|---|---|
1b | Yes | $0 | $0 | ||
We recommend NARA’s Chief Information Officer (CIO) ensure NARA’s documented CPIC policy is updated and formalized to reflect the current processes in use by NARA. This includes ensuring all required CPIC related documentation is completed for all NARA IT investments going through the CPIC process. | |||||
1c | Yes | $0 | $0 | ||
We recommend NARA’s Chief Information Officer (CIO) ensure NARA’s documented CPIC policy is updated and formalized to reflect the current processes in use by NARA. This includes requiring the creation and use of a checklist outlining the IT governance related documentation required to be completed for all IT investments going through the CPIC process. | |||||
3 | Yes | $0 | $0 | ||
We recommend NARA’s Chief Operating Officer (COO) ensure NARA IT investments do not bypass NARA’s CPIC process. | |||||
6 | Yes | $0 | $0 | ||
To ensure NARA IT investments do not bypass NARA’s CPIC process we recommend NARA’s Chief Operating Officer ensure the training guide for purchase card holders is updated to include a discussion of the requirements of NARA’s CPIC process. | |||||
8 | Yes | $0 | $0 | ||
We recommend NARA’s Chief Information Officer ensure NARA’s IT governance process, which includes CPIC, incorporates the lessons learned when Directive 801 was followed to create a more user-friendly, streamlined and transparent policy where CPIC requirements align closely with the costs of IT investments. |