Investment Opportunities Found in DOJ’s First Data Strategy

Published: March 06, 2019

Big DataCybersecurityInformation TechnologyDOJPolicy and Legislation

Justice recently released its first data strategy, aiming to establish standards and tools to manage, process and share data across the enterprise. The strategy is sprinkled with potential investment opportunities for contractors.

The tide for data governance across federal agencies has set in and it looks like DOJ is the latest of agencies to join the movement. In conjunction with recent data-based strategies and initiative across government such as development of the Federal Data Strategy, initiatives in the President’s Management Agenda and the passage of the OPEN Government Data Act, DOJ released its first data strategy last week. The strategy provides an agency framework for enterprise data management, improved analytical processes, information sharing and data security.

In a speech to announce the strategy’s release, DOJ CIO, Joseph Klimavicz, envisions the strategy will “allow us [DOJ] to continue to advance our mission with the latest technologies while working towards a better customer experience. With the right security and privacy controls, we could augment services with analytics and machine learning – providing citizens with insights and services that are competitive with the experiences they can receive from the private sector and they should expect from a modern, digital Government.”

Each of the four goals within the strategy lists action items and specific outcomes. The document also outlines enterprise, mission and DOJ CIO responsibilities, some presenting ideal opportunities for contractors to assist the agency with. The following tables describes the areas of the goals most pertinent to contractors:

Goal One: Enterprise Data Management

Actions

Outcomes

Enterprise/CIO Actions

Departmental Actions
  • Develop and streamline data policies
  • Assign roles and responsibilities in data governance and security
  • Establish data compliance standards
  • Improved access of data for decision making
  • Accountability and transparency
  • Inventory individual data sets
  • Develop and maintain an enterprise-wide data catalog with fields for metadata
  • Integrate data management plans into cyber control systems
  • Develop component-level strategies, if needed
  • Prepare and submit appropriate data for enterprise data catalog

 

Goal Two: Enterprise Information Sharing Capability

Actions

Outcomes

Enterprise/CIO Actions

Departmental Actions
  • Establish a DOJ data exchange framework
  • Inventory data exchange within data catalog
  • Incorporate unique mission requirements
  • Uniformity in information sharing
  • Accountability and transparency
  • Establish data stewards to populate data catalog
  • Utilizing APIs, the data catalog should include an inventory of data exchanges
  • Inventory and document external data exchanges
  • Populate and maintain department data catalog with data exchanges

 

Goal Three: Enterprise Identity, Credential and Access Management

Actions

Outcomes

Enterprise/CIO Actions

Departmental Actions
  • Centralize credentialing and management of all DOJ FISMA systems and data
  • Effective and efficient access to critical information for applicable users
  • All DOJ FISMA systems use a common ICAM capability
  • Increased opportunity for mobility
  • Create ICAM metrics at the application level
  • Enterprise ICAM services for improved data security posture
  • Implement DOJ Identity and Access Management (IamDOJ) as official system of record for DOJ identities
  • Represent each person by an Enterprise Digital Identity (EDI)
  • Implement the Justice Privileged Access Manager (JPAM) as the DOJ tool for components to manage user credentials
  • Integrate directory or identity systems with IamDOJ
  • Implement PIV and PIV-I for physical and logical access
  • Use JPAM for privileged user access for all DOJ infrastructure systems

 

Goal Four: Enterprise Data Workforce

Actions

Outcomes

Enterprise/CIO Actions

Departmental Actions
  • Update position descriptions and prioritize workforce training
  • Attract and retain top data and IT talent and promote continuous learning
  • Define roles and responsibilities for data workforce
  • Establish enterprise data workforce portal for common definitions and models
  • Utilize emerging technologies to assist in developing technical capabilities specific to component missions