Upload File

control gates purpose: control gates are a formal management review process designed to examine and...

  • Home
  • Documents
  • Control Gates Purpose: Control Gates are a formal management review process designed to examine and evaluate a project’s work products and approve the
1
Control Gates Purpose: Control Gates are a formal management review process designed to examine and evaluate a project’s work products and approve the approach for continuing the project. Overview: Facilitated by one of three executive boards: IMPRB, TRB, CMB. Also supported by other executive boards: EAB, CRB. All reviews are mandatory. The Life Cycle Model chosen determines how many times each of the Control Gate Reviews are performed. Several reviews can be combined into one review (eg., Gates 4, 5, & 6 can be combined into one review) – must be part of the tailoring agreement. Each Control Gate Review includes a table that provides a framework for everything that should be covered in the review. Requires PM to obtain Key Stakeholder positions – concur, concur w/conditions, non-concur. PM needs to address all conditions at control gate review. Includes Project Health Ratings (Cost, Schedule, & Risk). Details in IT LCMD v3.0, Appendix C. Control Gate Purpose Deliverables Reviewed: Gate 1 – SCR S ystem C oncept R eview The System Concept Review determines if the project should continue through the Life Cycle using the recommended System Concept of Operations. It ensures Strategic Business Objectives are being met, and that all alternatives have been evaluated for the Mission Needs requested. Analysis/Trade Study Report Concept of Operations (ConOps) Initial Business Case Information Technology COOP Risk Assessment Information Technology COOP Risk Mitigation Plan Lessons Learned Mission Needs Statement Life Cycle Phase: Concept Exploration Supporting Boards: IMPRB, EAB Supporting Project Level Reviews: Mission Needs Review Gate 2 – APR A cquisitio n P lan R eview The Acquisition Plan Review determines if the project should continue through the Life Cycle using the preliminary Systems Specification, Design and Control documents, and the approach and resources required to acquire the system as defined in the Acquisition Plan. Acquisition Plan Analysis/Trade Study Report Asset Library Bidders List Concept of Operations (ConOps) Configuration Management Plan DD 254 FBI Risk Management Plan Final Business Case Information Technology COOP Risk Assessment Information Technology COOP Risk Mitigation Plan Lessons Learned Project Plan Quality Assurance Plan Requirements Traceability Matrix – Level 1 RFP w/Integrated Security Requirements System Requirements Specification Test and Evaluation Master Plan (TEMP) Verification & Validation Plan Life Cycle Phase: Acquisition Planning Supporting Boards: IMPRB, CRB Supporting Project Level Reviews: System Specification Review Gate 3 – FDR F inal D esign R eview The Final Design Review determines if the project continues through the Life Cycle using the build-to and code-to documentation and associated draft verification procedures. It also ensures that the design presented can be produced, and that when built meet its expected design-to specifications at verification. Analysis/Trade Study Report Asset Library Bill of Materials Certification Test Analysis Report (ST&E) (Development) Certification Test Plan (CTP) (Development) Critical Performance Measures Database Design Document (DBDD) Independent Test Plan for Security (ST&E) Interconnection Security Agreement Interface Control Document Interface Design Document Information Technology COOP Risk Assessment Information Technology COOP Risk Mitigation Plan Lessons Learned Operations & Maintenance Design Document Requirements Traceability Matrix – Level 2 Rules of Behavior Security Implementation Plan Software Development Plan System and Security Architecture Design System Design Document System Engineering Management Plan (SEMP) System Requirements Specifications System Security Plan System Specification Test Procedures Transition Plan Life Cycle Phase: Design Supporting Boards: TRB, EAB Supporting Project Level Reviews: Source Selection Authorization, Contract Implementation, Requirements Clarification, Design Concept, Preliminary Design, and Critical Design Gate 4 – DRR D eployment R eadiness R eview The Deployment Readiness Review determines if the project should proceed with all activities to be performed in deploying the product to the customer. Activities include planning, beta testing, preparation of items to be delivered, packaging, “shipping”, installation, training and support. Analysis/Trade Study Report Asset Library General Users Security Guide Independent Test Plan for Security (ST&E) Installation Plan Information Technology COOP Risk Assessment Information Technology COOP Risk Mitigation Plan Lessons Learned Privileged Users Security Guide Product CSCI’s Requirements Traceability Matrix – Level 3 Software Installation Manual System Security Plan • Systems Operations & Maintenance Manual Technical Manual Test and Evaluation Master Plan (TEMP) Test Procedures Test Report Training Materials Training Plan Transition Plan User Manual Version Description Document Life Cycle Phase: Implementation & Integration Supporting Boards: CMB, TRB Supporting Project Level Reviews: Product Test Readiness Gate 5 – STRR S ystem T est R eadiness R eview The System Test Readiness Review determines the readiness to perform official system- wide data gathering verification test for either qualification or acceptance. Analysis/Trade Study Report Asset Library Certification Test Plan (CT&E) (Operational) Installation Drawings Information Technology COOP Risk Assessment Information Technology COOP Risk Mitigation Plan Lessons Learned Requirements Traceability Matrix – Level 4 System Security Plan Technical Manual Test and Evaluation Master Plan (TEMP) Test Report Training Materials User Manual Life Cycle Phase: Implementation & Integration Supporting Boards: CMB, TRB Supporting Project Level Reviews: Site Test Readiness, Site Acceptance Test Gate 6 – OAR O perationa l A cceptance R eview The Operational Acceptance Review determines if the project is ready to continue through the Life Cycle based on overall system and product validation, along with the customer acceptance and determination whether the Operation & Maintenance organization agrees to, and has the ability to, support continuous operations of the system. Accreditation Package Analysis/Trade Study Report Asset Library Certification Package Certification Test Analysis Report (CT&E) (Operational) Certification Test Plan (CT&E) (Operational) Contingency Plan Division COOP Plan General Users Security Guide Installation Plan Information Technology COOP Risk Assessment Information Technology COOP Risk Mitigation Plan Lessons Learned Operation & Maintenance Design Document Operational Readiness Report Penetration Test Plan (Operational) Penetration Test Report Privileged Users Security Guide Software Installation Manual System Security Plan Technical Manual Training Plan Transition Plan Version Description Document Life Cycle Phase: Operations & Maintenance Supporting Boards: CMB, IMPRB Supporting Project Level Reviews: Operational Readiness Gate 7 – DR D isposal R eview The Disposal Review determines if the project can proceed with termination of Operation & Maintenance and begin disposal of system resources. Analysis/Trade Study Report Asset Library Deactivation Plan IT COOP Risk Assessment IT COOP Risk Mitigation Plan Lessons Learned Life Cycle Phase: Disposal Supporting Boards: CMB, IMPRB, EAB Supporting Project Level Reviews: Annual Operational Project Level Reviews Purpose: Project stakeholders and team members conduct project level reviews during the IT life cycle to ensure the project is meeting stakeholder needs. Overview: Facilitated/chaired by PM. Stakeholders must be in attendance. Not all reviews are mandatory – can be tailored to meet the project requirements. Includes review of documentation and project status. Each Project Level Review includes a table that provides a framework for everything that should be covered in the review. Results of review must be documented and presented at the appropriate Control Gate Review. Details in IT LCMD v3.0, Appendix D. Project Level Review Purpose Deliverables Reviewed: M ission N eeds R eview (MNR) The Mission Needs Review examines the user need or technological opportunity, the deficiencies in the current set of systems, alternative and the proposed solution, and a business case or rationale for further investigating changes to the FBI’s information systems. The “Go / No Go” decision may include incorporation of the need into an existing program or initiation of a new program. Project Level Reviews provide a forum for stakeholders to approve and address project deliverable issues. •Analysis/Trade Study Report •Concept of Operations (ConOps) •Lessons Learned •Mission Needs Statement Life Cycle Phase: Concept Exploration Supporting Boards: IMPRB Control Gate: System Concept Review S ystem S pecification R eview (SSR) The System Specification Review is a Project Level Review and is the decision point to proceed with the development of an Acquisition Plan, the allocation of high level system requirements to segment specifications, and the development of Project Plans that will manage the acquisition. •Analysis/Trade Study Report •C&A Boundary & Perimeter •C&A Registration Form •Contingency Plan •Lessons Learned •Privacy Impact Assessment •Rules of Behavior •Sensitive Information & System Security Worksheet •System Requirements Specification Life Cycle Phase: Requirements Development Supporting Boards: IMPRB Control Gate: Acquisition Plan S ource S election A uthorization R eview (SSAR) The Source Selection Authorization Review is a Project Level Review that approves source selection results and authorizes contract negotiations. •Analysis/Trade Study Report •Asset Library •Bidders List •CARC Assessment •DD 254 •Lessons Learned •RFP with Integrated Security Requirements •Security Factor Summary Report •Source Selection Decision Memo Life Cycle Phase: Requirements Development Supporting Boards: IMPRB Control Gate: Final Design Review C ontract I mplementation R eview (CIR) The Contract Implementation Review is a Project Level Review and is the first Review between the customer and the solution provider following a contract award. Project Level Reviews provide a forum for stakeholders to approve and address project deliverable issues. The CIR establishes the Earned Value baselines if applicable. •Analysis/Trade Study Report •Asset Library •CARC Assessment •Lessons Learned •RFP with Integrated Security Requirements •Security Factor Summary Report Life Cycle Phase: Source Selection Supporting Boards: TRB Control Gate: Final Design Review R equirements C larification R eview (RCR) The Requirements Clarification Review is a joint customer and solution provider review that ensures the solution provider has a full understanding of the requirements for the system or segment and can articulate this understanding through proposed implementations of the requirement. •Analysis/Trade Study Report •Asset Library •Bill of Materials •Configuration Management Plan •Database Design Document •Interface Control Document •Interface Design Document •Lessons Learned •Produce a Level 1 Requirements Traceability Matrix •Project Plan •Quality Assurance Plan •Requirements Clarification Document •Solution Provider Risk Management Plan •Software Development Plan •System Design Document •System Engineering Management Plan •System Requirements Specifications •System Specification •Verification & Validation Plan Life Cycle Phase: Design Supporting Boards: TRB Control Gate: Final Design Review D esign C oncept R eview (DCR) The Design Concept Review is a Technical Progress Review of the decomposition of the system or product (hardware, software, and manual operations). •Analysis/Trade Study Report •Asset Library •Critical Performance Measures •Database Design Document •Design Concept Description •Interface Control Document •Lessons Learned •Operations and Maintenance Design Document •System Design Document Life Cycle Phase: Design Supporting Boards: TRB Control Gate: Final Design Review P reliminary D esign R eview (PDR) The Preliminary Design Review can be a single event or it can be spaced out over time during the Design Phase to cover logical groupings of configuration items. It is used to prove that the concept and the specification for the concept are feasible and will satisfy the higher level requirements relegated to it, and to approve the preliminary design-to specifications and associated verification plans. All hardware, software, support equipment, facilities, personnel, and tooling should be reviewed in descending order of system to assembly. •Analysis/Trade Study Report •Asset Library •Certification Test Plan (CTP) (Development) •Critical Performance Measures •Database Design Document •Interface Control Document •Interface Design Document •LCCE •Lessons Learned •Operations and Maintenance Design Document •Risk Repository •System and Security Architecture Design •System Design Document •System Requirements Specifications •System Specification Life Cycle Phase: Design Supporting Boards: TRB Control Gate: Final Design Review C ritical D esign R eview (CDR) The Critical Design Review approves the build-to and code-to documentation, the associated draft verification procedures, ensures that the design presented can be produced, and that when built meets expected design-to specifications at verification. •Analysis/Trade Study Report •Asset Library •Bill of Materials •Certification Test Analysis Report (ST&E) (Development) •Certification Test Plan (CTP) (Development) •Critical Performance Measures •Database Design Document •Design Concept Description •Independent Test Plan for Security (ST&E) •Interconnection Security Agreement •Interface Control Document •Interface Design Document •Lessons Learned •Operations and Maintenance Design Document •Requirements Traceability Matrix – Level 2 •Rules of Behavior •Security Implementation Plan •Software Development Plan •Software Product Specification •System and Security Architecture Design •System Design Document •System Requirements Specifications •System Security Plan •System Specification •Test Procedures •Transition Plan Life Cycle Phase: Design Supporting Boards: TRB Control Gate: Final Design Review P roduct T est R eadiness R eview (P-TRR) The Product Test Readiness Review is a series of Technical Progress Reviews at which the customer concurs that the solution provider is ready to conduct official "sell- off” tests during which official verification data will be produced. •Analysis/Trade Study Report •Certification Test Analysis Report (ST&E) (Dev) •Certification Test Plan (CTP) (Development) •General User Security Guide •Independent Test Plan for Security •Installation Plan •Interconnection Security Agreement •Lessons Learned •Penetration Test Plan (Development) •Privileged User Security Guide •Product (CSCIs) •Technical Manual •Test Procedures •Test Report •Training Materials •Training Plan •Transition Plan •User Manual •Version Description Document Life Cycle Phase: Development and Test Supporting Boards: CMB Control Gate: Deployment Readiness Review S ite T est R eadiness R eview (S-TRR) The Site Test Readiness Review is a series of Technical Progress Reviews at which the customer concurs that the supplier is ready to conduct official "sell-off' tests during which official verification data will be produced. •Analysis/Trade Study Report •Asset Library •Lessons Learned •Requirements Traceability Matrix – Level 4 •Software Installation Manual •Version Description Document Life Cycle Phase: Implementation & Integration Supporting Boards: CMB Control Gate: System Test Readiness Review S ite A cceptance T est R eview (SATR) The Site Acceptance Test Review is a Technical Progress Review where the customer organization accepts the system or segment delivered to the site. •Analysis/Trade Study Report •Asset Library •Installation Drawings •Lessons Learned •Requirements Traceability Matrix – Level 4 •System Security Plan Life Cycle Phase: Implementation & Integration Supporting Boards: CMB Control Gate: System Test Readiness Review O perational R eadiness R eview (ORR) The Operational Readiness Review is a Technical Progress Review between the Project Office and the Product User to verify readiness for system validation required by the Operational Readiness Plan developed in compliance with the Mission Requirements and Concept of Operations Document at the project outset. •Analysis/Trade Study Report •Asset Library •Contingency Package •Lessons Learned •Operational Readiness Report •Penetration Test Plan •Software Installation Manual •System Security Plan Life Cycle Phase: Implementation & Integration Supporting Boards: CMB Control Gate: Operational Acceptance Review Life Cycle Phases Purpose: Life Cycle Phases covers different aspects in the evolution and life of an IT project. Each Life Cycle Phase has specific activities that produce work products that are required by the next phase in the life cycle. Overview: Nine consecutive Phases comprise the FBI IT Life Cycle. Each Phase covers a different aspect in the evolution and life of IT programs or projects. System development encompasses several phases, known as Life Cycle phases. Each life cycle phase has associated with it one or more Program Level Reviews, Control Gates, Key Support Processes, documentation requirements as well as specific inputs, outputs, entry and exit criteria. Phase Purpose Deliverables Concept Exploration The purpose of Concept Exploration is to: •Identify and validate an opportunity to improve business accomplishments of the organization or a deficiency related to a business need. •Identify significant assumptions and constraints on solutions to that need. •Recommend the exploration of alternative concepts and methods to satisfy the need including questioning the need for technology (i.e., will a change in the business process offer a solution?). •Assure executive business and executive technical sponsorship. •Determine system data with "record" status. •Develop the business plan. •Verification and Validation Plan •Concept of Operations (ConOps) •Initial Business Case •Final Business Case •System Security Plan •Final Report •Risk Repository •Information Technology COOP Risk Assessment •LCCE •Analysis/Trade Study Report(s) •Lessons Learned •Mission Needs Statement •C&A Boundary and Perimeter •C&A Registration Form •Sensitive Information & System Security Worksheet Control Gate: System Concept Review Supporting Boards: IMPRB, EAB Project Level Reviews: Mission Needs Review Requirements Development Requirements Development defines operational, technical, electronic recordkeeping, and tests requirements and to initiate project planning. •System Requirements Specification •Contingency Plan •Risk Repository •Rules of Behavior •Analysis/Trade Study Report •Privacy Impact Assessment •Lessons Learned Control Gate: None Supporting Boards: IMPRB Project Level Reviews: System Specification Review Acquisition Planning Acquisition Planning allocates requirements among development segments, researches and applies lessons learned from previous projects, identifies potential product and service providers, and secures funding. •Acquisition Plan •System Requirements Specification •Analysis/Trade Study Report(s) •Bidders List •Configuration Management Plan •DD 254 •Final Business Case •Lessons Learned •Life Cycle Cost Estimates •Project Plan •Quality Assurance Plan •Risk Management Plan •IT COOP Risk Mitigation Plan •Risk Repository •Requirements Traceability Matrix – Level 1 •Test and Evaluation Master Plan Control Gate: Acquisition Planning Review Supporting Boards: CMB, IMPRB Project Level Reviews: None Source Selection Source Selection executes solicitation, evaluates proposals, selects support, system providers, and developers for the subsequent phase. •RFP with Integrated Security Requirements •System Security Plan •Risk Repository •Risk Management Plan •CARC Assessment •LCCE • Lessons Learned •Analysis/Trade Study Report(s) •Bidders List •DD 254 •Source Selection Decision Memo •Statement of Work Control Gate: None Supporting Boards: None Project Level Reviews: Source Selection Authorization Contract Implementation Review Design Design creates and documents detailed designs for system components, products, interfaces, and initiates test planning that includes electronic recordkeeping criteria. •CM Plan •Risk Management Plan •Project Plan •Quality Assurance Plan •Transition Plan •Certification Test Plan (ST&E) (Development) •Certification Test Analysis Report (ST&E) (Development) •Independent Test Plan for Security (ST&E) •Interconnection Security Agreement •Security Implementation Plan •Operations & Maintenance Design Document •System and Security Architecture Design •Test Procedures •Critical Performance Measures •Database Design Document •Interface Design Document •Software Development Plan •Software Product Specification •System Design Document •System Engineering Management Plan •System Requirements Specifications •Interface Control Document •System Specification •Risk Repository •Analysis/Trade Study Report(s) •Design Concept Description •Lessons Learned •Requirements Traceability Matrix – Levels 1 & 2 •System Security Plan •LCCE •Rules of Behavior •Bill of Materials •Requirements Clarification Document Control Gate: Final Design Review Supporting Boards: TRB, EAB Project Level Reviews: Requirements Clarification Review Design Concept Review Preliminary Design Review Critical Design Review Development & Test Development and Test produces and tests all system components, assembles and tests all products including the approach to be taken for handling official records upon the system, and plans for system testing. •Version Description Document •Test Report •User Manual •Training Materials •Technical Manual •Installation Plan •Training Plan •Transition Plan •Certification Test Plan (ST&E) (Dev) •Independent Test Plan for Security •Security Implementation Plan •General User Security Guide •Privileged User Security Guide •Certification Package •Certification Test Analysis Report (ST&E) (Dev) •Software Installation Manual •Test and Evaluation Master Plan •Test Procedures •Product (CSCIs) •Systems O&M Manual •Penetration Test Plan •Interconnection Security Agreement •Risk Repository •Risk Management Plan •Analysis/Trade Study Report(s) •Lessons Learned Control Gate: None Supporting Boards: None Project Level Reviews: Product Test Readiness Review Implementation & Integration Implementation and Integration executes functional, interface, system and integration testing, including electronic recordkeeping testing; provides certification, risk analysis, and risk mitigation plans for the handling of the electronic records; provides user training, and accepts and transitions the products to operations. •Installation Drawing •Certification Package •Accreditation Package •Operational Readiness Report •Analysis/Trade Study Report(s) •Contingency Plan •General User Security Guide •Independent Test Plan for Security •Installation Plan •Lessons Learned •Privileged User Security Guide •Requirements Traceability Matrix – Levels 3 & 4 •Risk Repository •Risk Management Plan •Software Installation Manual •Software Product Specification •System Specification •Systems Operations & Maintenance Manual •Technical Manual •Test and Evaluation Master Plan •Test Procedures •Test Report •Training Plan •Training Materials •Transition Plan •User Manual •Version Description Document Control Gate: Deployment Readiness Review System Test Readiness Review Supporting Boards: CMB, TRB Project Level Reviews: Site Test Readiness Site Acceptance Test Review Operational Readiness Review Operation & Maintenance Operation & Maintenance Phase maintains and supports the products, including proper electronic recordkeeping by recertification every three years, and manages and implements necessary modifications. •Deactivation Plan •Certification Test Analysis Report (ST&E) (OP) •Certification Test Plan (ST&E) (Operational) •Penetration Test Report •Penetration Test Plan •Installation Plan •Training Plan •Transition Plan •Technical Manual •Operations & Maintenance Design Document •System Operations & Maintenance Manual •Version Description Document •Operational Readiness Report •Contingency Plan •General Users Security Guide •Privileged Users Security Guide •Risk Repository •Risk Management Plan •Analysis/Trade Study Report(s) •Lessons Learned Control Gate: Operational Acceptance Review Supporting Boards: CMB, IMPRB Project Level Reviews: Annual Operations Review Disposal Disposal retires and disposes of the system, software, hardware, data, and official records in an orderly manner so that some or all of it may be reactivated in the future if necessary. •Deactivation Plan •Risk Repository •Certification Closeout •Analysis/Trade Study Report •Lessons Learned Control Gate: Disposal Review Supporting Boards: CMB, IMPRB, EAB Project Level Reviews: Termination Review Process Areas - Key Support Processes (KSP) (Stakeholders) Purpose: Process Areas are clusters of related practices in an area that when performed collectively, satisfy a set of goals considered important for making significant improvement in that area. Overview: Provides the necessary management and control, planning, coordination, technical, budgetary, security and other stakeholder functions. Performed independent of any Life Cycle Phase. Required deliverables (as identified) are integrated into the Control Gate and Project Level Reviews. Most are based on existing Federal policies, regulations and laws. Specific policies, processes, standards, and guidelines are developed by the owning organization (e.g., OIPP for ITIM). Details in IT LCMD v3.0, Appendix E. System driven (Funded). KSP Purpose IT Strategic Planning [OIPP] Establishes the FBI’s IT strategic planning process. Records Management [RMD] Provides the processes for obtaining E lectronic R ecord K eeping C ertification (ERKC). Enterprise Architecture [OIPP] Provides the processes and structure for implementing change and improving service delivery through more efficient use of IT. IT Continuity of Operations Planning (COOP) [OIPP] Manages the operational risk of providing IT systems and services to users. IT Investment Management (ITIM) [OIPP] Provides the mechanisms for Selecting, Evaluating and Controlling IT investments. IT Acquisition [FD/OIPP] Guidelines for FBI procurement of IT assets. Information Assurance (IA) [SecD] Assure that security engineering is applied through out the lifecycle and provide management with the appropriate visibility. Logistics Ensure support requirements are included for entire lifecycle. Process Areas - CMMI Overview: CMMI is a proven framework for helping organizations reduce project costs while shortening development timelines and improving overall product quality across the Life Cycle CMMI addresses multiple disciplines (systems engineering, software engineering, integrated product and process development, and supplier sourcing). CMMI is useful to identify opportunities for process improvement, benchmarking and improving organizational maturity and capability. Provides a means for the FBI to be recognized as a world class IT organization FBI Goal – Reach Maturity Level (ML) 2 in FY07 and ML3 in FY08 Details in IT LCMD v3.0, Appendix F CMMI ML 2 Process Areas Process Area Purpose C onfiguration M anagement (CM) Establish and maintain the integrity of work products using configuration identification, configuration control, configuration status accounting, and configuration audits. M easurement & A nalysis (MA) Develop and sustain a measurement capability that is used to support management information needs. P roject P lanning (PP) Establish and maintain plans that define project activities. P roject M onitoring & C ontrol (PMC) Provide an understanding of the project’s progress so that appropriate corrective actions can be taken when the project’s performance deviates significantly from the plan. R equirements M anagement (RM) Manage the requirements of the project’s products and product components and identify inconsistencies between those requirements and the project’s plans and work products. P rocess & P roduct Q uality A ssurance (PPQA) Provide staff and management with objective insight into processes and associated work products. S upplier A greement M anagement (SAM) Manage the acquisition of products from suppliers for which there exists a formal agreement. CMMI ML 3 Process Areas Process Area Purpose R isk M anagement (RSKM) Identify potential problems before they occur, so that risk-handling activities may be planned and invoked as needed across the life of the product or project to mitigate adverse impacts on achieving objectives. R equirements D evelopment (RD) Produce and analyze customer, product, and product-component requirements. O rganizational P rocess D efinition (OPD) Establish and maintain a usable set of organizational process assets. O rganizational P rocess F ocus (OPF) Plan and implement organizational process improvement based on a thorough understanding of the current strengths and weaknesses of the organization’s processes and process assets. O rganizational T raining (OT) Develop the skills and knowledge of people so they can perform their roles effectively and efficiently. Val idation (VAL) Demonstrate that a product or product component fulfills its intended use when placed in its intended environment. Ver ification (VER) Ensure that selected work products meet their specified requirements. Concept Exploration Requirements Development Acquisition Planning Source Selection Design Development & Test Implementation & Integration Operation & Maintenance Disposal MNR OAR SSR SSAR CIR RCR DCR PDR CDR PTRR STRR SATR ORR AOR TR CMMI Process Areas Key Support Processes Process Areas Project Level Reviews Life Cycle Phases Control Gates Process Areas Project Level Reviews Life Cycle Phases Control Gates FBI Information Technology Life Cycle Management Directive (IT LCMD), Version 3.0 Accessible on FBI Intranet at: http://oipp.fbinet.fbi/ppmu/LCMD For more information contact the Office of IT Policy & Planning (OIPP): Process, Policy & Metrics Unit (PPMU) DR Sys TRR DRR FDR APR SCR Tailoring •Allowed & Expected •Project Manager’s Responsibility •Documented in Project Plan •Reviewed & Agreed to at Control Gate 2 - Acquisition Plan Review Considerations •Complexity, Interfaces, Budget, Schedule, Risk, User Needs Typical Approaches •Combination / Elimination of Events; Modification of Reports, Documents, or Deliverables; Phase Iteration Bottom Line: •Accommodate Both LCMD Intent & Project’s Needs

Upload: howard-chandler

Post on 26-Dec-2015

213 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: Control Gates Purpose: Control Gates are a formal management review process designed to examine and evaluate a project’s work products and approve the

Control GatesPurpose:

Control Gates are a formal management review process designed to examine and evaluate a project’s work products and approve the approach for continuing the project.

Overview:• Facilitated by one of three executive boards: IMPRB, TRB, CMB.• Also supported by other executive boards: EAB, CRB.• All reviews are mandatory.

– The Life Cycle Model chosen determines how many times each of the Control Gate Reviews are performed.– Several reviews can be combined into one review (eg., Gates 4, 5, & 6 can be combined into one review) – must be part of the tailoring agreement.

• Each Control Gate Review includes a table that provides a framework for everything that should be covered in the review.• Requires PM to obtain Key Stakeholder positions – concur, concur w/conditions, non-concur. PM needs to address all conditions at control gate review.• Includes Project Health Ratings (Cost, Schedule, & Risk).• Details in IT LCMD v3.0, Appendix C.

Control Gate Purpose Deliverables Reviewed:

Gate 1 – SCRSystem Concept Review

The System Concept Review determines if the project should continue through the Life Cycle using the recommended System Concept of Operations. It ensures Strategic Business Objectives are being met, and that all alternatives have been evaluated for the Mission Needs requested.

• Analysis/Trade Study Report • Concept of Operations (ConOps) • Initial Business Case• Information Technology COOP Risk Assessment• Information Technology COOP Risk Mitigation Plan• Lessons Learned • Mission Needs Statement

Life Cycle Phase: Concept Exploration

Supporting Boards: IMPRB, EAB

Supporting Project Level Reviews: Mission Needs Review

Gate 2 – APRAcquisition Plan Review

The Acquisition Plan Review determines if the project should continue through the Life Cycle using the preliminary Systems Specification, Design and Control documents, and the approach and resources required to acquire the system as defined in the Acquisition Plan.

• Acquisition Plan• Analysis/Trade Study Report• Asset Library• Bidders List • Concept of Operations (ConOps) • Configuration Management Plan• DD 254• FBI Risk Management Plan • Final Business Case • Information Technology COOP Risk Assessment

• Information Technology COOP Risk Mitigation Plan• Lessons Learned • Project Plan• Quality Assurance Plan• Requirements Traceability Matrix – Level 1• RFP w/Integrated Security Requirements• System Requirements Specification• Test and Evaluation Master Plan (TEMP)• Verification & Validation Plan

Life Cycle Phase: Acquisition Planning

Supporting Boards: IMPRB, CRB

Supporting Project Level Reviews: System Specification Review

Gate 3 – FDRFinal DesignReview

The Final Design Review determines if the project continues through the Life Cycle using the build-to and code-to documentation and associated draft verification procedures. It also ensures that the design presented can be produced, and that when built meet its expected design-to specifications at verification.

• Analysis/Trade Study Report • Asset Library• Bill of Materials • Certification Test Analysis Report (ST&E) (Development) • Certification Test Plan (CTP) (Development) • Critical Performance Measures • Database Design Document (DBDD)• Independent Test Plan for Security (ST&E) • Interconnection Security Agreement • Interface Control Document • Interface Design Document • Information Technology COOP Risk Assessment• Information Technology COOP Risk Mitigation Plan

• Lessons Learned • Operations & Maintenance Design Document • Requirements Traceability Matrix – Level 2• Rules of Behavior • Security Implementation Plan • Software Development Plan • System and Security Architecture Design • System Design Document • System Engineering Management Plan (SEMP)• System Requirements Specifications • System Security Plan • System Specification • Test Procedures • Transition Plan

Life Cycle Phase: Design

Supporting Boards: TRB, EAB

Supporting Project Level Reviews: Source Selection Authorization, Contract Implementation, Requirements Clarification, Design Concept, Preliminary Design, and Critical Design

Gate 4 – DRRDeployment Readiness Review

The Deployment Readiness Review determines if the project should proceed with all activities to be performed in deploying the product to the customer. Activities include planning, beta testing, preparation of items to be delivered, packaging, “shipping”, installation, training and support.

• Analysis/Trade Study Report• Asset Library • General Users Security Guide• Independent Test Plan for Security (ST&E)• Installation Plan • Information Technology COOP Risk Assessment• Information Technology COOP Risk Mitigation Plan• Lessons Learned • Privileged Users Security Guide• Product CSCI’s• Requirements Traceability Matrix – Level 3

• Software Installation Manual• System Security Plan• Systems Operations & Maintenance Manual • Technical Manual • Test and Evaluation Master Plan (TEMP)• Test Procedures • Test Report • Training Materials • Training Plan • Transition Plan • User Manual • Version Description Document

Life Cycle Phase: Implementation & Integration

Supporting Boards: CMB, TRB

Supporting Project Level Reviews: Product Test Readiness

Gate 5 – STRRSystem Test Readiness Review

The System Test Readiness Review determines the readiness to perform official system-wide data gathering verification test for either qualification or acceptance.

• Analysis/Trade Study Report • Asset Library• Certification Test Plan (CT&E) (Operational)• Installation Drawings • Information Technology COOP Risk Assessment• Information Technology COOP Risk Mitigation Plan• Lessons Learned

• Requirements Traceability Matrix – Level 4 • System Security Plan• Technical Manual• Test and Evaluation Master Plan (TEMP)• Test Report • Training Materials • User Manual

Life Cycle Phase:Implementation & Integration

Supporting Boards:CMB, TRB

Supporting Project Level Reviews: Site Test Readiness, Site Acceptance Test

Gate 6 – OAROperational Acceptance Review

The Operational Acceptance Review determines if the project is ready to continue through the Life Cycle based on overall system and product validation, along with the customer acceptance and determination whether the Operation & Maintenance organization agrees to, and has the ability to, support continuous operations of the system.

• Accreditation Package• Analysis/Trade Study Report • Asset Library• Certification Package• Certification Test Analysis Report (CT&E) (Operational)• Certification Test Plan (CT&E) (Operational)• Contingency Plan • Division COOP Plan• General Users Security Guide• Installation Plan• Information Technology COOP Risk Assessment

• Information Technology COOP Risk Mitigation Plan• Lessons Learned • Operation & Maintenance Design Document• Operational Readiness Report • Penetration Test Plan (Operational)• Penetration Test Report• Privileged Users Security Guide• Software Installation Manual • System Security Plan• Technical Manual• Training Plan• Transition Plan• Version Description Document

Life Cycle Phase: Operations & Maintenance

Supporting Boards: CMB, IMPRB

Supporting Project Level Reviews: Operational Readiness

Gate 7 – DRDisposal Review

The Disposal Review determines if the project can proceed with termination of Operation & Maintenance and begin disposal of system resources. • Analysis/Trade Study Report • Asset Library• Deactivation Plan • IT COOP Risk Assessment• IT COOP Risk Mitigation Plan• Lessons Learned

Life Cycle Phase:Disposal

Supporting Boards: CMB, IMPRB, EAB

Supporting Project Level Reviews: Annual Operational

Project Level ReviewsPurpose: Project stakeholders and team members conduct project level reviews during the IT life cycle to ensure the project is meeting stakeholder needs.

Overview: • Facilitated/chaired by PM.• Stakeholders must be in attendance.• Not all reviews are mandatory – can be tailored to meet the project requirements.• Includes review of documentation and project status.• Each Project Level Review includes a table that provides a framework for everything that should be covered in the review.• Results of review must be documented and presented at the appropriate Control Gate Review.• Details in IT LCMD v3.0, Appendix D.

Project Level Review Purpose Deliverables Reviewed:

Mission Needs Review

(MNR)

The Mission Needs Review examines the user need or technological opportunity, the deficiencies in the current set of systems, alternative and the proposed solution, and a business case or rationale for further investigating changes to the FBI’s information systems. The “Go / No Go” decision may include incorporation of the need into an existing program or initiation of a new program. Project Level Reviews provide a forum for stakeholders to approve and address project deliverable issues. • Analysis/Trade Study Report

• Concept of Operations (ConOps) • Lessons Learned • Mission Needs StatementLife Cycle Phase:

Concept Exploration

Supporting Boards: IMPRB

Control Gate: System Concept Review

System Specification Review

(SSR)

The System Specification Review is a Project Level Review and is the decision point to proceed with the development of an Acquisition Plan, the allocation of high level system requirements to segment specifications, and the development of Project Plans that will manage the acquisition. • Analysis/Trade Study Report

• C&A Boundary & Perimeter• C&A Registration Form• Contingency Plan • Lessons Learned

• Privacy Impact Assessment • Rules of Behavior • Sensitive Information & System Security Worksheet• System Requirements Specification

Life Cycle Phase: Requirements Development

Supporting Boards: IMPRB

Control Gate: Acquisition Plan

Source Selection Authorization Review

(SSAR)

The Source Selection Authorization Review is a Project Level Review that approves source selection results and authorizes contract negotiations. • Analysis/Trade Study Report

• Asset Library• Bidders List • CARC Assessment • DD 254

• Lessons Learned • RFP with Integrated Security Requirements • Security Factor Summary Report • Source Selection Decision Memo

Life Cycle Phase: Requirements Development

Supporting Boards: IMPRB

Control Gate: Final Design Review

Contract Implementation Review

(CIR)

The Contract Implementation Review is a Project Level Review and is the first Review between the customer and the solution provider following a contract award. Project Level Reviews provide a forum for stakeholders to approve and address project deliverable issues. The CIR establishes the Earned Value baselines if applicable. • Analysis/Trade Study Report

• Asset Library• CARC Assessment

• Lessons Learned • RFP with Integrated Security Requirements • Security Factor Summary Report

Life Cycle Phase: Source Selection

Supporting Boards: TRB

Control Gate: Final Design Review

Requirements Clarification Review

(RCR)

The Requirements Clarification Review is a joint customer and solution provider review that ensures the solution provider has a full understanding of the requirements for the system or segment and can articulate this understanding through proposed implementations of the requirement.

• Analysis/Trade Study Report • Asset Library• Bill of Materials • Configuration Management Plan • Database Design Document • Interface Control Document • Interface Design Document • Lessons Learned• Produce a Level 1 Requirements Traceability Matrix

• Project Plan • Quality Assurance Plan • Requirements Clarification Document• Solution Provider Risk Management Plan• Software Development Plan • System Design Document • System Engineering Management Plan • System Requirements Specifications • System Specification • Verification & Validation Plan

Life Cycle Phase: Design

Supporting Boards: TRB

Control Gate: Final Design Review

Design Concept Review

(DCR)

The Design Concept Review is a Technical Progress Review of the decomposition of the system or product (hardware, software, and manual operations). • Analysis/Trade Study Report

• Asset Library• Critical Performance Measures • Database Design Document • Design Concept Description

• Interface Control Document • Lessons Learned • Operations and Maintenance Design Document • System Design Document

Life Cycle Phase: Design

Supporting Boards: TRB

Control Gate: Final Design Review

Preliminary Design Review (PDR)

The Preliminary Design Review can be a single event or it can be spaced out over time during the Design Phase to cover logical groupings of configuration items. It is used to prove that the concept and the specification for the concept are feasible and will satisfy the higher level requirements relegated to it, and to approve the preliminary design-to specifications and associated verification plans. All hardware, software, support equipment, facilities, personnel, and tooling should be reviewed in descending order of system to assembly.

• Analysis/Trade Study Report • Asset Library• Certification Test Plan (CTP) (Development) • Critical Performance Measures • Database Design Document • Interface Control Document • Interface Design Document • LCCE

• Lessons Learned • Operations and Maintenance Design Document • Risk Repository • System and Security Architecture Design • System Design Document • System Requirements Specifications • System Specification

Life Cycle Phase: Design

Supporting Boards: TRB

Control Gate: Final Design Review

Critical Design Review (CDR)

The Critical Design Review approves the build-to and code-to documentation, the associated draft verification procedures, ensures that the design presented can be produced, and that when built meets expected design-to specifications at verification.

• Analysis/Trade Study Report • Asset Library• Bill of Materials • Certification Test Analysis Report (ST&E) (Development) • Certification Test Plan (CTP) (Development) • Critical Performance Measures • Database Design Document • Design Concept Description • Independent Test Plan for Security (ST&E) • Interconnection Security Agreement • Interface Control Document • Interface Design Document • Lessons Learned

• Operations and Maintenance Design Document • Requirements Traceability Matrix – Level 2 • Rules of Behavior • Security Implementation Plan • Software Development Plan • Software Product Specification • System and Security Architecture Design • System Design Document • System Requirements Specifications • System Security Plan • System Specification • Test Procedures • Transition Plan

Life Cycle Phase: Design

Supporting Boards: TRB

Control Gate: Final Design Review

Product Test Readiness Review (P-TRR)

The Product Test Readiness Review is a series of Technical Progress Reviews at which the customer concurs that the solution provider is ready to conduct official "sell-off” tests during which official verification data will be produced.

• Analysis/Trade Study Report • Certification Test Analysis Report (ST&E) (Dev) • Certification Test Plan (CTP) (Development) • General User Security Guide • Independent Test Plan for Security • Installation Plan • Interconnection Security Agreement • Lessons Learned • Penetration Test Plan (Development)

• Privileged User Security Guide • Product (CSCIs) • Technical Manual • Test Procedures • Test Report • Training Materials • Training Plan • Transition Plan • User Manual • Version Description Document

Life Cycle Phase: Development and Test

Supporting Boards: CMB

Control Gate: Deployment Readiness Review

Site Test Readiness Review (S-TRR)

The Site Test Readiness Review is a series of Technical Progress Reviews at which the customer concurs that the supplier is ready to conduct official "sell-off' tests during which official verification data will be produced.

• Analysis/Trade Study Report • Asset Library• Lessons Learned

• Requirements Traceability Matrix – Level 4 • Software Installation Manual • Version Description Document

Life Cycle Phase: Implementation & Integration

Supporting Boards: CMB

Control Gate: System Test Readiness Review

Site Acceptance Test Review (SATR)

The Site Acceptance Test Review is a Technical Progress Review where the customer organization accepts the system or segment delivered to the site.

• Analysis/Trade Study Report • Asset Library• Installation Drawings

• Lessons Learned • Requirements Traceability Matrix – Level 4 • System Security Plan

Life Cycle Phase: Implementation & Integration

Supporting Boards: CMB

Control Gate: System Test Readiness Review

Operational Readiness Review (ORR)

The Operational Readiness Review is a Technical Progress Review between the Project Office and the Product User to verify readiness for system validation required by the Operational Readiness Plan developed in compliance with the Mission Requirements and Concept of Operations Document at the project outset. • Analysis/Trade Study Report

• Asset Library• Contingency Package • Lessons Learned

• Operational Readiness Report • Penetration Test Plan• Software Installation Manual • System Security Plan

Life Cycle Phase:Implementation & Integration

Supporting Boards: CMB

Control Gate: Operational Acceptance Review

Annual Operations Review (AOR)

The Annual Operations Review is conducted by the Operations & Maintenance organization to ensure that the fielded system is continuing to support its intended mission and can be continuously supported, operated and maintained in the future in a cost effective manner. • Analysis/Trade Study Report

• Asset Library • Certification Test Analysis Report (ST&E) (Operational) • Certification Test Plan (CTP) (Operational) • Lessons Learned

• Penetration Test Plan • Penetration Test Report • System Operations and Maintenance Manual • System Security Plan

Life Cycle Phase: Operations & Maintenance

Supporting Boards: CMB

Control Gate: Disposal Review

Termination Review (TR)

The Termination Review is a Technical Progress Review held at the end of the life cycle to confirm that all disposal activities are complete. • Analysis/Trade Study Report • Asset Library

• System Closeout • Lessons Learned

Life Cycle Phase: Disposal

Supporting Boards: None

Control Gate: None

Life Cycle PhasesPurpose:Life Cycle Phases covers different aspects in the evolution and life of an IT project. Each Life Cycle Phase has specific activities that produce work products that are required by the next phase in the life

cycle.

Overview:• Nine consecutive Phases comprise the FBI IT Life Cycle. • Each Phase covers a different aspect in the evolution and life of IT programs or projects. • System development encompasses several phases, known as Life Cycle phases. • Each life cycle phase has associated with it one or more Program Level Reviews, Control Gates, Key Support Processes, documentation requirements as well as specific inputs, outputs, entry and exit

criteria.

Phase Purpose Deliverables

Concept Exploration

The purpose of Concept Exploration is to:• Identify and validate an opportunity to improve business accomplishments of the organization or a deficiency related to a business need.• Identify significant assumptions and constraints on solutions to that need.• Recommend the exploration of alternative concepts and methods to satisfy the need including

questioning the need for technology (i.e., will a change in the business process offer a solution?).• Assure executive business and executive technical sponsorship.• Determine system data with "record" status.• Develop the business plan.

• Verification and Validation Plan• Concept of Operations (ConOps) • Initial Business Case • Final Business Case • System Security Plan • Final Report • Risk Repository• Information Technology COOP Risk Assessment

• LCCE • Analysis/Trade Study Report(s) • Lessons Learned • Mission Needs Statement • C&A Boundary and Perimeter • C&A Registration Form • Sensitive Information & System Security WorksheetControl Gate:

System Concept Review

Supporting Boards: IMPRB, EAB

Project Level Reviews:Mission Needs Review

Requirements Development

Requirements Development defines operational, technical, electronic recordkeeping, and tests requirements and to initiate project planning. • System Requirements Specification• Contingency Plan • Risk Repository • Rules of Behavior

• Analysis/Trade Study Report • Privacy Impact Assessment • Lessons Learned

Control Gate: None

Supporting Boards: IMPRB

Project Level Reviews:System Specification Review

Acquisition Planning

Acquisition Planning allocates requirements among development segments, researches and applies lessons learned from previous projects, identifies potential product and service providers, and secures funding.

• Acquisition Plan • System Requirements Specification• Analysis/Trade Study Report(s)• Bidders List • Configuration Management Plan • DD 254 • Final Business Case• Lessons Learned

• Life Cycle Cost Estimates • Project Plan • Quality Assurance Plan • Risk Management Plan• IT COOP Risk Mitigation Plan• Risk Repository • Requirements Traceability Matrix – Level 1 • Test and Evaluation Master Plan

Control Gate: Acquisition Planning Review

Supporting Boards: CMB, IMPRB

Project Level Reviews:None

Source Selection

Source Selection executes solicitation, evaluates proposals, selects support, system providers, and developers for the subsequent phase. • RFP with Integrated Security Requirements • System Security Plan • Risk Repository • Risk Management Plan • CARC Assessment • LCCE

• Lessons Learned • Analysis/Trade Study Report(s)• Bidders List • DD 254 • Source Selection Decision Memo• Statement of Work

Control Gate: None

Supporting Boards: None

Project Level Reviews:Source Selection AuthorizationContract Implementation Review

Design

Design creates and documents detailed designs for system components, products, interfaces, and initiates test planning that includes electronic recordkeeping criteria.

• CM Plan • Risk Management Plan • Project Plan • Quality Assurance Plan• Transition Plan • Certification Test Plan (ST&E) (Development) • Certification Test Analysis Report (ST&E) (Development) • Independent Test Plan for Security (ST&E) • Interconnection Security Agreement • Security Implementation Plan • Operations & Maintenance Design Document • System and Security Architecture Design • Test Procedures • Critical Performance Measures • Database Design Document • Interface Design Document

• Software Development Plan • Software Product Specification • System Design Document • System Engineering Management Plan • System Requirements Specifications • Interface Control Document • System Specification • Risk Repository • Analysis/Trade Study Report(s)• Design Concept Description • Lessons Learned• Requirements Traceability Matrix – Levels 1 & 2• System Security Plan • LCCE• Rules of Behavior • Bill of Materials • Requirements Clarification Document

Control Gate: Final Design Review

Supporting Boards: TRB, EAB

Project Level Reviews:Requirements Clarification ReviewDesign Concept ReviewPreliminary Design Review Critical Design Review

Development & Test

Development and Test produces and tests all system components, assembles and tests all products including the approach to be taken for handling official records upon the system, and plans for system testing.

• Version Description Document • Test Report • User Manual • Training Materials • Technical Manual • Installation Plan • Training Plan • Transition Plan • Certification Test Plan (ST&E) (Dev) • Independent Test Plan for Security • Security Implementation Plan • General User Security Guide • Privileged User Security Guide • Certification Package

• Certification Test Analysis Report (ST&E) (Dev) • Software Installation Manual • Test and Evaluation Master Plan • Test Procedures • Product (CSCIs) • Systems O&M Manual • Penetration Test Plan• Interconnection Security Agreement • Risk Repository • Risk Management Plan• Analysis/Trade Study Report(s)• Lessons Learned

Control Gate:None

Supporting Boards: None

Project Level Reviews:Product Test Readiness Review

Implementation & Integration

Implementation and Integration executes functional, interface, system and integration testing, including electronic recordkeeping testing; provides certification, risk analysis, and risk mitigation plans for the handling of the electronic records; provides user training, and accepts and transitions the products to operations.

• Installation Drawing• Certification Package• Accreditation Package • Operational Readiness Report• Analysis/Trade Study Report(s)• Contingency Plan• General User Security Guide• Independent Test Plan for Security• Installation Plan• Lessons Learned• Privileged User Security Guide• Requirements Traceability Matrix – Levels 3 & 4• Risk Repository

• Risk Management Plan• Software Installation Manual• Software Product Specification• System Specification• Systems Operations & Maintenance Manual• Technical Manual• Test and Evaluation Master Plan• Test Procedures• Test Report• Training Plan• Training Materials• Transition Plan• User Manual• Version Description Document

Control Gate: Deployment Readiness Review System Test Readiness Review

Supporting Boards: CMB, TRB

Project Level Reviews:Site Test Readiness Site Acceptance Test ReviewOperational Readiness Review

Operation & Maintenance

Operation & Maintenance Phase maintains and supports the products, including proper electronic recordkeeping by recertification every three years, and manages and implements necessary modifications. • Deactivation Plan

• Certification Test Analysis Report (ST&E) (OP) • Certification Test Plan (ST&E) (Operational)• Penetration Test Report• Penetration Test Plan• Installation Plan• Training Plan • Transition Plan • Technical Manual

• Operations & Maintenance Design Document • System Operations & Maintenance Manual • Version Description Document • Operational Readiness Report • Contingency Plan • General Users Security Guide • Privileged Users Security Guide • Risk Repository • Risk Management Plan• Analysis/Trade Study Report(s)• Lessons Learned

Control Gate: Operational Acceptance Review

Supporting Boards: CMB, IMPRB

Project Level Reviews:Annual Operations Review

Disposal Disposal retires and disposes of the system, software, hardware, data, and official records in an orderly manner so that some or all of it may be reactivated in the future if necessary.

• Deactivation Plan • Risk Repository • Certification Closeout

• Analysis/Trade Study Report • Lessons Learned

Control Gate: Disposal Review

Supporting Boards: CMB, IMPRB, EAB

Project Level Reviews:Termination Review

Process Areas - Key Support Processes (KSP) (Stakeholders)Purpose:Process Areas are clusters of related practices in an area that when performed collectively, satisfy a set of goals considered important for making significant improvement in that

area.

Overview:• Provides the necessary management and control, planning, coordination, technical, budgetary, security and other stakeholder functions.• Performed independent of any Life Cycle Phase. • Required deliverables (as identified) are integrated into the Control Gate and Project Level Reviews.• Most are based on existing Federal policies, regulations and laws. • Specific policies, processes, standards, and guidelines are developed by the owning organization (e.g., OIPP for ITIM).• Details in IT LCMD v3.0, Appendix E.• System driven (Funded).

KSP Purpose

IT Strategic Planning [OIPP] Establishes the FBI’s IT strategic planning process.

Records Management [RMD] Provides the processes for obtaining Electronic Record Keeping Certification (ERKC).

Enterprise Architecture [OIPP] Provides the processes and structure for implementing change and improving service delivery through more efficient use of IT.

IT Continuity of Operations Planning (COOP) [OIPP] Manages the operational risk of providing IT systems and services to users.

IT Investment Management (ITIM) [OIPP] Provides the mechanisms for Selecting, Evaluating and Controlling IT investments.

IT Acquisition [FD/OIPP] Guidelines for FBI procurement of IT assets.

Information Assurance (IA) [SecD] Assure that security engineering is applied through out the lifecycle and provide management with the appropriate visibility.

Logistics Ensure support requirements are included for entire lifecycle.

Process Areas - CMMIOverview:• CMMI is a proven framework for helping organizations reduce project costs while shortening development timelines and improving overall product quality across the Life Cycle • CMMI addresses multiple disciplines (systems engineering, software engineering, integrated product and process development, and supplier sourcing). • CMMI is useful to identify opportunities for process improvement, benchmarking and improving organizational maturity and capability.• Provides a means for the FBI to be recognized as a world class IT organization• FBI Goal – Reach Maturity Level (ML) 2 in FY07 and ML3 in FY08• Details in IT LCMD v3.0, Appendix F

CMMI ML 2 Process Areas

Process Area Purpose

Configuration Management (CM) Establish and maintain the integrity of work products using configuration identification, configuration control, configuration status accounting, and configuration audits.

Measurement & Analysis (MA) Develop and sustain a measurement capability that is used to support management information needs.

Project Planning (PP) Establish and maintain plans that define project activities.

Project Monitoring & Control (PMC) Provide an understanding of the project’s progress so that appropriate corrective actions can be taken when the project’s performance deviates significantly from the plan.

Requirements Management (RM) Manage the requirements of the project’s products and product components and identify inconsistencies between those requirements and the project’s plans and work products.

Process & Product Quality Assurance (PPQA) Provide staff and management with objective insight into processes and associated work products.

Supplier Agreement Management (SAM) Manage the acquisition of products from suppliers for which there exists a formal agreement.

CMMI ML 3 Process Areas

Process Area Purpose

Risk Management (RSKM) Identify potential problems before they occur, so that risk-handling activities may be planned and invoked as needed across the life of the product or project to mitigate adverse impacts on achieving objectives.

Requirements Development (RD) Produce and analyze customer, product, and product-component requirements.

Organizational Process Definition (OPD) Establish and maintain a usable set of organizational process assets.

Organizational Process Focus (OPF) Plan and implement organizational process improvement based on a thorough understanding of the current strengths and weaknesses of the organization’s processes and process assets.

Organizational Training (OT) Develop the skills and knowledge of people so they can perform their roles effectively and efficiently.

Validation (VAL) Demonstrate that a product or product component fulfills its intended use when placed in its intended environment.

Verification (VER) Ensure that selected work products meet their specified requirements.

Concept Exploration Requirements Development Acquisition Planning Source Selection Design Development & Test Implementation & Integration Operation & Maintenance Disposal

MNRMNR

OAROAR

SSRSSR

SSARSSAR

CIRCIR

RCRRCR

DCRDCR PDR

PDR CDRCDR

PTRRPTRR

STRRSTRR

SATRSATR

ORRORR AOR

AORTR

TR

CMMI Process Areas

Key Support Processes

Process Areas

Project Level Reviews

Life Cycle Phases

Control Gates

Process Areas

Project Level Reviews

Life Cycle Phases

Control Gates

FBI Information Technology Life Cycle Management Directive (IT LCMD), Version 3.0

Accessible on FBI Intranet at: http://oipp.fbinet.fbi/ppmu/LCMD

For more information contact the Office of IT Policy & Planning (OIPP): Process, Policy & Metrics Unit (PPMU)

DRDRSys TRRSys TRRDRRDRRFDRFDRAPRAPRSCRSCR

Tailoring•Allowed & Expected•Project Manager’s Responsibility•Documented in Project Plan•Reviewed & Agreed to at Control Gate 2 - Acquisition Plan Review

Considerations•Complexity, Interfaces, Budget, Schedule, Risk, User Needs

Typical Approaches•Combination / Elimination of Events; Modification of Reports, Documents, or Deliverables; Phase Iteration

Bottom Line:•Accommodate Both LCMD Intent & Project’s Needs

Jersey City Automated Gates - Metro Access Control

Never Let Your Guard Down: Finding Unguarded Gates to Bypass Control Flow … · 2018-05-11 · Never Let Your Guard Down: Finding Unguarded Gates to Bypass Control Flow Guard with

Universal Control Panel for all types of garage doors and ... · 1 This universal Control Panel (CP) can replace all types of 240V AC Control Panels for Sliding gates, and Boom gates

REMOTELY CONTROL BOX HOISTS/SLIDE GATES - Shur-Co

WATER CONTROL PRODUCTS - Waterman Industries...39 AC-31 Aluminum Canal Gates 40 P-30 Pressure Gates 42 78C-2 Distributing Gates 43 78C-8 Sure Seal and C-8E Slide Ditch Gates LINE GATES

Hydro Dam Gates & Water Control LubronA Q - Coll Vilaró · PDF fileHydro Dam Gates & Water Control LubronA®Q Self-Lubricating Bearings Lubron Bearing Systems Bearings to move the

Pedestrian Control Gates & Turnstiles - IFSEC Global · PDF fileProduct Brochures Contents for the Pedestrian Control Gates & Turnstiles Product Guide ... The ‘Bouncer’ Pedestrian

Hydro Dam Gates & Water Control LubronA Q - Squarespace · PDF fileradial gates jet low gates intake gates ... design criteria needed to properly specify a LUBRON AQ bearing. ... Lubron

Tide Gates: Technical and Ecological Considerationsgates!control!water!flow!betweenatidewater!areaandadiked Noff ... hydraulic!coefficients!areunknown.The!U ... Tide Gates: Technical

Material Control Gates

Waterman Valve LLC - AGRICULTURAL WATER CONTROL ......39 AC-31 Aluminum Canal Gates 40 74P-30 Pressure Gates 42 C-2 Distributing Gates 43 C-8 Sure Seal and C-8E Slide Ditch Gates LINE

WHO/GATES PROJECT ON MALARIA VECTOR BIOLOGY & CONTROL … · WHO/GATES PROJECT ON MALARIA VECTOR BIOLOGY & CONTROL Malaria vector control: Filling the gap between product development

CONTROL UNIT BIOS2 Gates Xtilus... · 2021. 6. 3. · The control unit BIOS2 is particularly indicated for the installation of 1 or 2 wing gates with 230 Vac motors with maximum power

FABRICATED SLIDE GATES - Hydro Gate · PDF fileFABRICATED SLIDE GATES 3 Applications n resistant under most conditions than slide gates manufactured Flood Control n Irrigation Projects

Nickel-containing materials for water control applications · specific types of water control gates and screens. Specifically, the following types of water control gates and screens

19.0 GATES, OPERATORS, AND CONTROL SYSTEMS · PDF file19.0 GATES, OPERATORS, AND CONTROL SYSTEMS ... Depending on the size of the gates, available lead time, and design ... Radial

GATES - americanradiohistory.com CONSOLE GATES ... with -60 dbm input (Microphone Control - Position 12, Master adjusted). ... Compensation of all levels,

31953 Flap Gates - Water Control Gate Manufacturer Gates...variety of water control gates as well as a full complement of actuators to meet your specific application. ... losses in

SWING-HINGED GATES - Flood Control International

Automatic gates access control

A06 Guidelines for Evaluation of Water Control Gates Draft Version FEMA

Project’s Main Components

Control unit for hinged gates - marantec-ukraine.com.uamarantec-ukraine.com.ua/controlx52.pdf · Control unit for hinged gates Control x.52, Control x.52 u GB. ... XB70 XN70 XB99

DISCHARGE RATINGS FOR CONTROL GATES AT · PDF fileDISCHARGE RATINGS FOR CONTROL GATES AT MISSISSIPPI RIVER LOCK AND DAM 22, SAVERTON, MISSOURI U.S ... Included angle between radial

Request for Bid Radial Gates for Water Control Structure 11 · The Lake Worth Drainage District is soliciting a Request for Bids (RFB) for radial gates for Water Control Structure

Drive & Control Systems for Gates in Civil Engineering

Water Control Gates

Quantum Control Synthesizing Robust Gates

Gates and Access Control

2020 / 2021 - Automatic Gates | Wireless Remote Control · development of automatic sliding gates, swing gates and industrial roller doors. We are passionate about our work and products

Automatic gate opener systems remote control gates foxtech.uk data sheet

SWINGING GATES - BFT Gate Openers · PDF fileSWINGING GATES Electromechanical automation systems for swinging gates ... 1 - ZARA BT L2 Control panel for one or two 24V operators for

19.0 Gates, Operators, And Control Systems

HYDRO GATE LINE CARD - Water Control Gate Manufacturer · PDF fileHYDRO GATE LINE CARD. 2. LINE CARD Your Source for Water Control Gates. No matter what type of gates your project

Water Control Gates - spartancontrols.com/media/resources/golden harvest/b... · Golden Harvest, Inc. Radial or Tainter Gates are most . commonly used for flow control structures