“The Role of Today’s CIO”
Presented by: Barry C. West
February 12, 2004
1
What is FEMA?
March 2003: became Emergency
Preparedness and Response (EP&R)
Directorate under the Department of
Homeland Security
 A former independent agency created in 1979
 Includes the U.S. Fire Administration and
Federal Insurance Administration
2
FEMA’s Mission:
Reduce the loss of life and property and
protect our institutions from all hazards by
leading and supporting the nation in a
comprehensive, risk-based emergency
management program of mitigation,
preparedness, response and recovery.
3
Who is FEMA?
 Under Secretary appointed
by the President, confirmed
by Congress, reporting to
DHS Secretary
 2,400 permanent employees
 7,000 disaster reserve
employees
 8,000 NDMS reserve
employees
4
What does FEMA do?
 Disaster response and recovery
 Reducing risk from disasters through mitigation
 Preparedness training and exercises
 Consequence management following terrorist incidents
Train fire fighters and first responders
 Oversee the National Flood Insurance Program
 Manage the National Disaster Medical System
5
In a disaster, FEMA:
 Provides disaster aid to individuals, communities and states
for recovery
 Promotes risk reduction from future disasters through
mitigation efforts
 May also defray state and local costs of handling the
disaster or emergency
 Creates and staffs federal/state disaster offices and
coordinates relief efforts with other federal agencies and
voluntary organizations
 Keeps the public informed through FEMA’s “Recovery
Times,” radio and satellite broadcasts, and mass media
6
FEMA disaster aid programs:

Public assistance
 Individual assistance
 Other aid programs
 Hazard Mitigation
Grant Program
7
FEMA’s Future:
As part of the Department of Homeland
Security, FEMA is leveraging its resources
with those of 21 other agencies and
departments to ensure a full continuum of
response and recovery activities – and to
attain a vision of a “nation prepared.”
8
Information Technology
Services Directorate
Role of the CIO
 Develop, maintain, and facilitate implementation
of a sound and integrated IT architecture
 Monitor and evaluate the performance of IT
programs
• Portfolio Management
 Develop and maintain FEMA IT Strategic Plan
 Represent FEMA in the DHS CIO Council
 Promote the use of IT to improve productivity,
efficiency, and effectiveness of FEMA programs
10
FY 2004 Priorities
 Enterprise Architecture
 Disaster Response and Recovery
 Other Mission Applications Support
 Cyber Security
 IT Management
11
Priority 1: Enterprise Architecture
 Major Quarterly Milestones:
 Select an Enterprise Architecture tool
 Develop Enterprise Architecture Program
 Complete and integrate an Enterprise
Architecture into OMB’s Federal Enterprise
Architecture (FEA) and DHS’s Architecture
 Hire an Enterprise Architect
12
Enterprise Architecture (EA)
Support for Planning and Decision
CIO
Where do I invest
my IT budget to
best support the
goals & objectives
of the FEMA & DHS
Strategic Plans?
How can I reduce
IT spending
without adverse
mission impact?
CFO
$50-60B federal IT budget
How can I share
information
between programs
to affordably
improve value to
customers?
How can IT
support my
business
process while
managing risk?
FEMA
Division
Manager
Program
Manager
13
Why are we doing EA at FEMA?
 Align IT to business processes
 Provide roadmap to guide investment decisions
 OMB requirement
Roadmap
Document existing
business activities/
information &
supporting IT
Guide IT
investment
decisions
Document plans for
future beyond
budget year
14
A View of Governance
EA, SDLC, and CPIC Relationship
Information Technology Investment
Portfolio System (ITIPS)
System
Development
Lifecycle
EA Repository/
Tool
Popkin SA
Capital
Planning &
Investment
Control
15
Priority 2: Disaster Response and Recovery
 Major Quarterly Milestones:
• Provide disaster IT support to disaster field facilities
within 24 hrs
• Meet customer requirements to web-enable access to
applicant data
• Internal FEMA / Internet
• Activate Super NPSC
• Support the establishment of a DHS Geospatial
Management Office
• Support the FEMA program offices- GIS requirements
16
EMERGENCY
COMMUNICATIONS
Telecommunications technologies
to support FEMA’s all-hazards mission
Emergency Communications
 FEMA uses a variety of communications services and
systems to support activity in several interrelated but
separate functional areas:
 Day-to-day information system requirements such as voice,
video, data, E-mail, Internet access, and National Emergency
Management Information System (NEMIS)
 Pre-disaster communications capabilities for Federal, State,
and local emergency management personnel in mitigation and
preparation efforts
 Telecommunications during and immediately following a
disaster to perform preliminary damage assessment and
resource requirements analysis
18
Emergency Communications
 Telecommunications to support consequence
management activities such as Disaster Field Office
(DFO) setup, restoration coordination, and resource
prioritization
 Emergency command and control functions for
special events
19
Pre-Crisis Systems
 FEMA INTEGRATED NETWORK
 Facilities linked with high-speed terrestrial circuits that provide
integrated voice, data, and video network service
 Routers connect FEMA facilities and provide access to the
internet
 Private Branch Exchange (PBX) systems provide voice
capability through FEMA’s Integrated Network, Public Network,
and Federal Telephone System (FTS)
 Disaster Field Offices are quickly added to architecture to
provide a robust field operating environment
20
FEMA’s Wide Area Network
Pacific Area
Office
Region X
Bothell
Region IX
Oakland
Region VIII
Denver
Region VII
Kansas
DS3
Texas
National
Processing
Service
Center
Maynard
Boston
DS3
Region V
Chicago
MERS MATTS
Hub 2
National
Emergency
Training
Center
Hyattsville
DS3
DS3
Flood
Insurance
Admin.Lanham
Atlanta
Jessup
Thomasville
Territorial
Logistics
Center
Closeout
Center
FEMA Map
Assistance Center
Dewberry & Davis
DS3
Headquarters
DS3
Maryland
National
Processing
Service
Center
Caribbean
Area
Office
Region III
Philadelphia
Hub 1
Region VI
Denton
Albany
Region II
New York
Puerto Rico
National
Processing
Service
Center
Virginia
National
Processing
Service
Center
DS3
Center for
Disease
Control
FEMA
Operations
Center
Federal
Support
CenterOlney
Contractor
DS3
“DHS Gateway”
Disaster Field
Offices
National
Disaster
Medical
Systems
Flood
Insurance
AgencyRockville
National
Flood
Map
Distribution
CenterElkridge
Baltimore
21
Pre-Crisis Systems
 FEMA NATIONAL WARNING SYSTEM (NAWAS)
 NAWAS is a civil defense and day-to-day emergency warning
response and coordination system
 24-hour voice only hotline system that provides capability to
warn Federal, State, and local governments of impending
disasters
 NAWAS circuits are controlled by two warning centers; a
primary and an alternate
 Warning points (nodes) are interconnected with leased, nonswitched terrestrial voice circuits
 Approximately 2,200 warning points
22
NAWAS
ALASKA
HAWAII
Warning Centers
FEMA Regional Centers
State Warning Points
Main Lines - WC’s /Regions
ANWC
THOMASVILLE, GA
Region to State WP Lines
State/Local WP Lines
23
Pre-Crisis Systems
 FEMA NATIONAL RADIO SYSTEM (FNARS)
 Voice and data High Frequency (HF) radio system
 Links State Emergency Operations Centers and FEMA Sites
 Interfaces with a wide variety of other Federal and civilian HF radio
systems
 Common radio frequencies used to support emergency situations
 Consists of more than 120 fixed, mobile, and transportable HF radio
stations
 Supports Emergency Alerting System (EAS) primary entry points
 Radio Amateur Civil Emergency Services (RACES) provides
emergency communications at State and local facilities
 Currently more than 500,000 Amateur Radio operators in the U.S.
24
FNARS
ALASKA
ND
MT
WA
NH
MN
ME
VT
SD
WI
ID
OR
NY
MI
WY
NE
IA
MA
PA
RI
OH
MO
NV
HAWAII
SAIPAN
CNMI
CT
IL
KS
IN
UT
CO
CA
KY
VA
OK
AR
NC
AZ
NM
MS
TX
MD
TN
GUAM
A. SAMOA
NJ
DE
WV
AL
GA
SC
LA
NET CONTROL
REGIONAL HEADQUARTERS/FRC'S
STATE OR TERRITORY
FL
FEMA HEADQUARTERS
25
Pre-Crisis Systems
 KuBAND SATELLITE
 FEMA maintains two (2) KuBand satellite earth stations for
use as entry points for mobile KuBand satellite elements
 Provides access to FEMA Integrated Network via satellite
 Provides backup to FEMA terrestrial circuits
 SkyCell SYSTEM
 Provides backup voice dial-tone and radio dispatch
capability to key facilities
 Provides satellite-based emergency command and control
for special events
26
Crisis Systems
 Emergency Response Teams deploy to affected
area to coordinate Federal consequence
management effort
 Cellular, Paging, & PCS
 KuBand Satellite - 6 Mobile Elements
 MSAT Technology (SkyCell) with Radio Dispatch
 INMARSAT
 Land Mobile Radio
 Low Earth Orbit (ORBCOMM)
 High Frequency Radio
27
Crisis Systems
 Disaster Field Office (DFO) is setup as a temporary
facility to support field aspects of consequence
management (communications, logistics, mass care,
food, energy, transportation, energy, etc.).
 Temporary nodes of FEMA Integrated Voice and Data Network
 Interface to FEMA Network provided by terrestrial circuits or
KuBand satellite
 Wireless Office Concept
 Micro-Cellular Phone System
 Wireless LAN
 LOS and Laser systems for campus environment
28
Priority 3: Other Mission Applications Support
 Major Quarterly Milestones:
•Design, develop, test, implement and enhance enterprise
applications and program centric solutions
• E-Grants
• Community Information Systems, Map Service Center,
NFIP Modernization
• NDMS, Cadre Management System, Incident Management
• Rental resources, automated flood mapping
• NFIRS,SIMLAB, Admission System
• E-gov initiatives (e.g. Disaster Management, Geospatial
One-Stop, e-Grants)
•Support National Security Applications
29
ITSD Service Platform Supports Functional
Plug-In Modules
Treasury
HHS
New
Applications
State and Local
Fire Management
Core
Financials
Financial Mgmt Support
(NEMIS)
Emergency Coordination
(NEMIS)
Individual Assistance
Program (NEMIS)
Public Assistance
Program (NEMIS)
Hazard Mitigation
Grants Program(NEMIS)
Fire Grants
(AFG)
WEB Interface
& Application
Servers
FEMA/ DHS
DMZ Services
Mitigation
e-Grants
Generic Financial Services
Integrated NEMIS Database
Messaging and Notification
Integrated Security and Access Control (NACS, FAMS, Authorization n, Authentication)
Imaging--Data Warehouse —Reports—Audit Records —Historical Repository – Office Automation
FEMA/DHS LAN/WAN / Remote Access / VPN’s / email
Operations & Maintenance/ Project Mgt / CM / Engineering Standards
30
Mission Systems Support
Modular Construction of Core Mission Systems
 Common Platform for Mission Systems
 Functional Plug-n-Play Modules
 Scalable
 Reusable Components
 Interoperable
 Flexible
 Standards-based
 Integrated with Department of Homeland Security
Enterprise Applications and Infrastructure
Capabilities as well as Federal e-Gov Initiatives
31
Professional Development & Certification
 Training – eLearning and Classroom





Project Management Institute (PMI) Certified
Contracting Officers Technical Representative (COTR)
Certified International Configuration Manager (CICM)
Certified International Software Configuration Manager (CISCM)
Certified Information System Security Professional (CISSP)
 Institutionalizing Processes
 FEMA Implementation of DHS Standard Processes
 Capital Planning & Investment Control (CPIC)
 Full System Development Life Cycle (SDLC)
 This Disciplined & Systematic Approach Carries into the
Modular Construction of Core Mission Systems
32
Mapping and Analysis Center (MAC) Operations
Schedule
Performance Metrics
PM: Bill
Prusch
Y
PO: Andrew Douglas / Ed
Corvi
G
Contractor: Michael Baker Jr., Inc. /
Indus Corp
Provides GIS support to disaster response operations, and additionally provides ad-hoc
and other GIS support services to all other FEMA mission areas.
Requirements
R
Threshold
Cost – IT Funding
$ 1.359M
Achieve 95% Delivery of services with on-time
completion by FY 2009.
95%
Actual
60%
Variance
35%
Key issues/risks
Y
•Retention of FEMA ITSD funding
•Transformation to GSC pending stand-up of GMO with
budget for FY04 and beyond
No or reduced FEMA funding would impact Disaster
Response Support
Security Plan Complete, Risk Assessment in process.
Hardware
Software
Professional Services
Telecommunications
Construction
Recurring O&M
Corporate Costs
Hardware Deferral
Total
Total Cost thru FY08
Budget
Prior
Year
0.12
0.00
0.46
0.00
0.00
0.08
0.00
0.00
0.66
FY04
0.21
0.06
1.03
0.00
0.00
0.06
0.00
0.00
1.36
FY05
0.00
0.00
1.36
0.00
0.00
0.00
0.00
0.00
1.36
FY06
0.00
0.00
1.36
0.00
0.00
0.00
0.00
0.00
1.36
FY07
0.00
0.00
1.36
0.00
0.00
0.00
0.00
0.00
1.36
FY08
0.00
0.00
1.36
0.00
0.00
0.00
0.00
0.00
1.36
Totals
0.33
0.06
6.93
0.00
0.00
0.14
0.00
0.00
7.46
FEMA Consolidated Program Review 1-15-2003
Program Is Executable
33
Joint Regional Information
Exchange System (JRIES)
 Joint Regional Information Exchange System (JRIES) is the
secure collaborative system used by the Department of
Homeland Security Operations Center (HSOC) to collect and
disseminate information between DHS and Federal, State, and
local agencies involved in the combating terrorism mission.
JRIES is:
 Focused on information exchange and real time collaboration
between Federal, State, and municipal authorities.
 Includes information analysis tools and capabilities to support
distributed collaborative analysis and reporting across Intelligence,
Federal, State, and Local Law Enforcement
 Meets all applicable security requirements and has achieved system
accreditation by the Intelligence Community
 Currently deployed to over 90 federal, state and local entities with
many more awaiting connectivity.
34
DHS INFO
 The Department of Homeland Security Information Sharing
Network (DHS INFO) is a cross-agency, cross-sector partnership
that facilitates unclassified real-time information sharing. DHS
INFO partners include FEMA and the FBI, members include
national, regional, state, local and tribal strategic contacts in both
the public and private sector.
 Includes an electronic repository of 24-7 point of contact information for all
members, their agencies/organizations and their assets.
 An alert and notification system which uses existing communication devices
including standard and mobile phones, e-mail to computers and wireless
devices, and pagers resulting in an "always-on" environment.
 A publicly available Information / Intelligence Collection Capability supported
by FBI HQ, 56 Field Offices and 84 JTTFs.
35
Pilot Goals
 Integrate people, processes and technology to facilitate up
& down stream Information Sharing, Alert & Notification
(Unclassified):
 Cross agency (federal, state, local, tribal);
 Cross sector (public & private);
 Cross discipline (law enforcement, first responders, medical and military).
 Create an electronic conduit for information and
intelligence gathering and dissemination.
 Create - 24/7 Electronic Repository of key contacts for
local, regional and national use.
36
Information / Intelligence Collection
Department of Homeland
Security
Operations Center
Terrorist Threat
Integration Center
Federal Bureau of
Investigation
Tips Program
LEO
JRIES
DHS Tips Monitor
Tips Submitted by
General Public or
DHS INFO Member
FBI Tips
Unit
NJTTFs
DHS
INFO
Websites
Operations – Complaint information can be addressed by FBI/JTTFs/Nationally via LEO.
Intelligence – Information flows to DHS, TTIC and FBI Tips unit simultaneously via JRIES
Universal Tips Report Number will permit tracking through Operations and Intelligence flow routes.
37
Pilot Impact
Seattle
Indianapolis
Atlanta
Dallas
DHS INFO Pilot Impact = 35% of total US Population
38
Priority 4: Cyber Security
 Major Quarterly Milestones:
Certification and Accreditation of 33% of FEMA Systems
Conduct Host/Network Intrusion Detection of all FEMA
systems
Firewall- upgrade and evaluate to retain 99.8 % availability
100% vulnerability assessment and penetration testing for
all mission critical and financial systems
Cyber Security Awareness training with 100% participation
39
Priority 5: IT Management
 Major Quarterly Milestones:
 Develop and promulgate a system development lifecycle process
 Digitalize remaining Northridge earthquake records
 Complete FY2004 IT strategic plan
 Complete FY2005-FY2007 IT strategic plan
40
41
Document Digitalization Project
 Congressional mandate to archive key agency documents by digitization
to optical disks, including related activities.
 Supports FEMA mission by providing quick and ready access to vital
information to protect the rights and interest of FEMA and the citizens
served by FEMA.
 Provides web based information sharing capability that enables users
regardless of location to access and retrieve information.
 Provides vital records backup of critical agency files stored off-site.
 Converts legacy paper records to electronic images--scan, index, OCR,
develop Oracle database of images and indexes, output in PDF (with
hidden text) accessible under Section 508 of the ADA guidelines.
 Provides Internet-based online review, storage, and retrieval system.
42
Document Digitalization Project
 FEMA’s National Emergency Information Management System
(NEMIS) captures data, including mitigation plans from States
and local governments, disaster victims for disaster declaration
and assistance purposes.
 Researching solutions to migrate electronic images produced in
PDF file format and integrate data captured in NEMIS and other
systems in TIFF file format into a FEMA enterprise EDMS/ERKS
system that is DoD 5015.2 certified.
43