Obsah

Assumptions and background of ICT OVS management

This chapter summarises selected key assumptions and foundations for successful and effective ICT management at the level of the office and its individual solutions. Therefore, this chapter is the starting point for the subsequent chapters dealing with the different levels and processes of ICT management in the OVS.

In order for an ICT service to fulfil its purpose (to provide ICT support) effectively, the following prerequisites must be in place (provided), which are the same at all levels of government, differing only in breadth of scope and depth of detail:

In order to ensure the smooth performance of the ICT function of the OVS, or its department or public corporation, the following basic premises must be ensured:

  1. Key roles and responsibilities - Clearly establish the authority and responsibilities of the ICT unit or its managers and rank and file. In particular, it is necessary to focus on the key relationship between the ICT service provider and its customer, or internal customer (subject guarantor). The management level of the ICT OVS (ministries, corporations) must have the management tools to be able to actively coordinate ICT services at its own and departmental level, to issue governing acts, methodologies and frameworks that facilitate management and coordination.
  2. The levels of management (coordination) and accountability - ICT management with local accountability to the leadership of their office (at the appropriate level of the public administration hierarchy) must be effectively and efficiently supported by central coordination from corporate (departmental) and central authorities. The technical manager of one ISMS must be supported by the head of the authority's ICT unit.
  3. Measures of ICT performance and quality of its management - Clear, measurable, transparent and understandable indicators of the success of change and performance of managed ICT must be set and used for transparent assessment of ICT performance and quality of management to the management of the OVM, and tools and methods for their presentation must be set up.
  4. Architecture layers - the life cycle of the ISVS (functional unit) at all its layers, both business services, application ICT services, and services of the shared technology and communication infrastructure of the OVS and the State, must be respected in the management of the Office's ICT,
  5. A holistic approach - when managing each individual change or requirement (of an information system or its service) for a specific customer, it is always necessary to perceive the context and needs of the whole, i.e. in particular of the authority itself and all its components, the eventual founder and the whole public administration, or the EU, and to create an environment that enables quick and correct decision-making taking into account these facts (impact analysis).
  6. Adequate resources - it is necessary to understand ICT as a necessary and mandatory support without which the performance of public service agendas would not be possible, and for which improvement and cost reduction it is necessary to invest in ICT services accordingly (adequately) and to use the benefits of ICT and to evaluate them regularly and objectively.

Legislative and societal background

System architecture oversight

As in the construction industry, where all major cities have a Chief Architect's Office in addition to the building authority to oversee compliance with the city's master plan, eGovernment CR has its Chief Architect to oversee the development and enforcement of the NAP. Just as there are a number of uniform industry regulations governing the construction of buildings, e.g., statics, fire safety, sanitary facilities, compliance with sanitary parameters, electrical wiring, etc. of buildings, there are uniform regulations, standards, and architectural patterns for eGovernment.

Just as the zoning plan clearly defines geographically where the residential zones will be, where the industrial or leisure zones will be, where the roads will lead and defines binding architectural principles for them (roof pitches, orientation of ridges, number of storeys, etc.), the NAP defines such architectural principles for the national eGovernment. And just as the approval of buildings verifies adherence to the approved design, the acceptance of ICT developments must verify adherence to the design that has been approved.

The development of the NAP as well as the supervision of compliance with the rules contained therein and compliance with the current ICR is ensured by the OHA. It assesses and issues opinions on all ICT plans and projects to entities obliged under Act No. 365/2000 Coll. or under Government Resolution No. 899/2015 Coll.

System supervision of ICT management

The acquisition, creation, management and operation of public administration information systems in the Czech Republic must also have appropriate system supervision. Similarly to architecture oversight, the systemic oversight of the management of ICT in the public administration is fully within the competence of the Ministry of the Interior of the Czech Republic.

This coordination and oversight has not yet been institutionalized in the MoI in the corresponding department (unlike OHA in the case of architecture), see also Introduction. Therefore, for the duration and for the purposes of the digital transformation of the public administration of the Czech Republic and the corresponding ICT support, this supervision was partially substituted on the basis of the Government Resolution No. 259 of 15 April 2019 on the Implementation Plans of the "Digital Czech Republic" programme, by which the Digital Commissioners of the Central Administrative Office were newly established within the individual ministries. They are, in addition to the relevant Minister, co-managed by and report to the Government Commissioner for Digitalisation and IT.

The specific powers and duties of the Digital Commissioner are specified in a document issued by the RVIS and included in the Knowledge Base.

In the long term, a combination of coordination from both institutions is needed:

Economic context

The development of ICT support for public administration and the digital transformation of VS in general are expected to benefit public administration in two key areas, in addition to the value for the end clients of VS services (citizens and businesses), such as increased attractiveness of services, shorter timeframes, reduced costs for clients, etc:

The ever-increasing demands on the scope of IT services, their quality and security mean that the overall cost of IT services will not (cannot) decrease. At the same time, it must be respected that achieving all of these benefits is an investment, i.e. the expenditure must first increase by the cost of the measures implemented, so that it can subsequently decrease by that much more (in the case of an investment in savings).

ICT management must include awareness of these objectives and control of the management methods and means to achieve them, including ICT cost management methods and methods to measure the benefits of change.

Programme funding - financial sources outside the state budget

In several places in the document, the MDICT mentions the use of so-called programmes and projects for programme funding purposes, while stating that to manage the introduction of change (of any scale) all programmes and projects must be aligned, i.e. they are still the same change programmes in both views.

The financial sources outside the government budget are in most cases development funds and technical assistance funds. These funds are mostly EU Structural Funds. These funds are used to finance the EU's regional and structural policy objectives, or mainly to increase the economic development of European regions. Financial support from the funds is distributed through so-called operational programmes, which determine the focus of support for a given region or sector (e.g. transport, agriculture, digital transformation and ICT, etc.). The methods and approach to applying and managing the programmes are covered in great detail in the methodologies developed by the individual promoters, who produce these in line with EU policies. It is impractical and impossible for the MoICT to deal in detail with extra-budgetary funding.

Timetable for (financial) planning

In order to draw funds from the state budget, it is necessary to respect the deadlines for drawing up and approving the state budget, i.e. to apply the claims to the plan not only in the necessary structure but also within the set deadlines. Within the deadlines, financial reporting should be set up in such a way that there is, as far as possible, an early prediction with problems in the spending (under/over spending).

Public Procurement Act

A public contract for the acquisition or modification of an information system from the CIO's perspective usually includes several parts related to the actual acquisition or modification of the information system, the provision of services related to the support of the operation and maintenance of the information system and its development, or other types of support, such as user support. It is therefore essential to be clear when preparing the relevant procurement whether these required needs are to be covered by the common framework of a single procurement procedure, or whether they are to be covered in parallel with another procurement procedure, or whether they are covered by an existing contract already in force.

If the information system requires the acquisition of subparts e.g. HW or other technology components that are necessary for proper operation, it is strongly recommended to compete them together with the information system. Failure to do so may result in an unpleasant situation where all parts required for the operation of the information system itself are not properly or timely tendered and procured. In a situation where it is not possible to compete all components in their entirety, or where shared technological components are used which will be procured as part of another public procurement, it is then recommended to limit the risks involved with the departments preparing and implementing the public procurement, especially by ensuring continuity or concurrence of individual public procurement contracts - such cooperation is also discussed in Collaboration with other departments of the Authority and eGovernment.

In view of the type and regime of the public procurement 2), and thus the financial limit, it is imperative to be prudent and to anticipate in the preparation of the contract the development or support requirements that may affect the possibilities of future use of the funds resulting from the awarded public contract (the actual subject of the contract).

For the purposes of further development and modification, and in particular with regard to the Vendor Lock-in issue, it is necessary to include in the tender conditions qualitative evaluation criteria (technological neutrality, supplier segmentation, acquisition of code rights, diversification of development and operational platforms, etc.) appropriate measures that will not make it impossible to compete such requirements in the future in an orderly and component-isolated manner. Requirements requiring modifications in other information systems must be taken into account in the preparation of the procurement procedure and the relevant departments must be consulted to determine whether such requirements are covered by other existing procurements or whether they must be dealt with under this procurement.

Complications related to procurement that may arise:

Managing the processes of purchasing investments and services in accordance with the provisions of the Law No. 134/2016 Coll., on Public Procurement, as amended (also referred to as the "PPA") is one of the fundamental constraints and difficulties of ICT management due to its complexity and the need to re-compete contractors after a 4-year performance period.

In future editions of the MIRCT, basic recommendations on the application of the ZoZVZ in ICT will be issued and information on best practices, guides and tools for this area will be continuously updated in the Knowledge base.

Management control and other activities of control bodies

Management control, together with internal audit, is part of an organisation's internal control system, which is a subset of financial control regulated by Act No. 320/2001 Coll., on financial control in public administration and on amendments to certain acts, as amended (hereinafter also referred to as "Act No. 320/2001 Coll.") and its implementing Decree No. 416/2004 Coll, No. 320/2001 Coll., on financial control in public administration and on amendments to certain acts (Act on financial control), as amended by Act No. 309/2002 Coll., Act No. 320/2002 Coll. and Act No. 123/2003 Coll. (hereinafter also referred to as "Decree No. 416/2004 Coll.")

Management control is defined in Article 3(4)(a) of Act No. 320/2001 Coll, control "provided by the responsible senior staff as part of the internal management of the public administration body in the preparation of operations before their approval, in the continuous monitoring of the operations carried out until their final settlement and accounting, and in the subsequent examination of selected operations as part of the evaluation of the results achieved and the correctness of management"3). The audit thus has the following four phases:

They perform ex-ante control at different stages:

Interim and ex-post controls may then be carried out by the same or other authorised persons.

In the performance of the management control, the following should be applied (they are described in more detail in the relevant decree4) and which specify the facts to be checked at a given stage of the control):

It is quite common that on the issue of management control, it is often argued by ICT units that their mission is the operational, technical and development activities of ICT for which these units were established and that the implementation of management control is for them only and only an administrative burden that does not bring anything useful and as such this activity is neglected and marginalised. However, management control is a legal obligation and must not be neglected in any way; on the contrary, it must be integrated into the service so that it is one of its natural and most important activities. The following are some recurrent weaknesses, but the list is not exhaustive and is intended to guide the implementation of management control and thus avoid inconveniences and critical errors in financial management.

These are therefore the following errors and weaknesses :

Given the cost of ICTs, the question of their reasonableness, achievement of the declared objectives and compliance with the 3E principles 5) should be carefully checked retrospectively.

Further factual and technical additions will be included in future editions after consultation with the professional public.

Key roles in ICT and eGovernment

In the same way that the methodological management of the individual VS agencies falls under the substantive ministry and the management and provision of eGovernment platform services falls under the Ministry of Interior, within the individual OVS the performance of VS agencies must fall under the agency-specific departments of the authority.

On the other hand, the scope of activities of the ICT units of the authorities must be only the proactive provision of information support for the correct, secure and quality performance of the VS agendas. It follows from the above that ICT services are one of the so-called operational or support services of the Authority, providing services on the basis of requests received. It further implies that:

It is desirable that changes in financial management are made, i.e. that the department becomes the budget holder and the operation orderer for the expenditure of ICT solutions supporting "its" agendas, i.e. following the adage "he who orders, pays".

The ICT unit does not necessarily have to perform these functions with its own staff, but can be assisted by an organisation set up for this purpose - in public administration, e.g. state-owned enterprises (NAKIT, CENDIS, SPCSS,…). However, it is always the responsibility of the ICT unit that orders this service from the organisation to the subject administrator.

The simplest way to implement an effective division of duties and rights in an office for the purpose of providing information support for the execution of public administration agendas is to establish the key roles of ISVS or operational system management as listed below.

Detailed descriptions of the responsibilities and rights of these and other identified roles in the processes of managing the development and delivery of ICT services will be included in future editions and in the Knowledge base after discussion with the professional community. In particular, these roles are:

The key four complementary roles to the above, applied particularly in planning and implementing changes to information systems are, see the following quadrangle figure:

Basic quadrant of roles in transformation projects.

It is important to note that a legislative department can only legislate changes that the department is responsible for.

Under optimal target conditions, all of the above roles (and their positions) are part of the (large) substantive administrator unit, or are part of the office management "staff" and a shared service for the (smaller) IS substantive administrator. The Solution Architect role can be further subdivided into:

Based on the breadth of the Authority's agenda, central departmental coordination of architecture, it is permissible (recommended) to break down architectural roles in more detail. See NAR and Knowledge base for principles and examples of breakdown.

ICT Competency Matrix

Managing the ICT of an office means not only to allocate competencies within the ICT unit, but also to determine its competency interface with other operational/supporting units of the OVS. This requires an act of management at a higher level than that of the head of the ICT unit. Optimally, this interface should be issued by the management of the authority in the form of an internal management act that includes the ICT competence matrix and is in line with the business layer of the Enterprise Architecture of the authority. The purpose of the competency matrix is (not only for the ICT area) to eliminate possible conflicts of competencies of roles and departments, which are based on different sources (from binding legislation to internal management acts of the Authority).

In addition to the roles and departments that are superior to the ICT unit listed in the previous chapter, the ICT competence matrix of the Authority should also include the superior and subordinate external institutions, but in particular the following internal OVS departments:

For more information on the ICT unit's cooperation with other departments, see also Collaboration with other offices and eGovernment departments.

As a basis for the design of a detailed competence matrix of the Authority, it will be possible to use the sample ICT competence matrix contained as one of the tools in Knowledge base.

Further substantive and technical additions will be included in future editions after consultation with the expert community. 

Levels of governance and accountability in public administration

ICT management procedures in the OSS must respect the currently applicable responsibilities of the different management actors. Specifically, this means implementing tailored management processes:

The only correct setting of competences is one that respects the classification of the OVS simultaneously into:

In addition, it is important to correctly perceive and take into account the coordinating role of the central bodies which, by virtue of the Competence Act and according to the decision of the Government of the Czech Republic, are responsible for the central management and coordination of ICT development in support of eGovernment, i.e. in particular the Ministry of the Interior of the Czech Republic, the Government Council for the Information Society and the Government Plenipotentiary for Digitisation and Information Technology.

A more detailed description of the characteristics and model of the above mentioned levels of governance and a description of their factors relevant for ICT governance is provided by Knowledge base of the ICT governance of the MoS of the Czech Republic.

Functional and process model of ICT OVS

The ICT OVS unit, as its very important operational capability, has an architecture in all its horizontal layers and vertical motivational domains, see the domain model of architecture in NAR.

In order to describe and understand the required ICT capabilities and their delivery, it is necessary to know and use models of the current and future state of the ICT department architecture. In doing so, it is very useful to draw on the international libraries of best practices (standards) and reference models for the ICT departments of the SCS, which will be progressively published in the Knowledge base.

Business Architecture IT Capabilities of the OVS

To be completed after discussion with the expert community and published in the following issues of MŘICT and updated continuously in Knowledge base.

Application Architecture for the Information Capability of the OVS

To be added after discussion with the expert community and published in future issues of MŘICT and updated continuously in Knowledge base.

Indicators for assessing the success of ICT management

As in all disciplines, in ICT VS a prerequisite for good governance is the knowledge and publication of the declared indicators (criteria) against which the results, i.e. the success of governance, are assessed.

The indicators for the evaluation of ICT VS are both national - contained in eGovernment strategy documents, and international, both cross-cutting best practice indicators (such as COBIT) and sectoral indicators for the informatisation of public administration and society as a whole.

Important national ICT performance indicators

International ICT performance indicators

International eGovernment performance indicators (indices)

More information on the various available and recommended indicator systems, including tools for their practical application, will be maintained in the Knowledge base on an ongoing basis.

Four layers of architecture

All management of ICT services for the delivery of public administration services and the operation of the Authority is carried out at four layers of architecture and service accountability, in order from the top:

This structure reflects the differing managerial and legal responsibilities for service delivery at each layer and is matrix-perpendicular to the responsibility of the Authority as a whole for each individual ISMS, which as a logical information system and functional unit is distributed just across these four layers of mutually supporting services.

The unambiguous cross-cutting responsibility for the services of each layer must be reflected in the respective positions and roles in the Authority, which are mainly the activities and procedures described in management at the level of the ICT OVS unit and cooperation with other units of the Authority and eGovernment.

View of the Authority as a whole

Each IS and each ICT service is part of an OSS, the overall context of which must always be taken into account when making decisions. The whole of the OSS, like the whole public administration, or conversely any of its smallest parts, such as a single ICT department, can be most simply described as follows:

A model of a single view of all elements of public administration and each of its components.

The figure shows a depiction of the single model and its overall description within the public administration and each of its components, with the top level depicted in the symbolic form of a cube as a developed model.

All the internal and external activities of the OVS (blue office dimension) are designed to provide public administration services to the surrounding environment (yellow cloud) through a defined "official" interface of communication between the private and public environments. For this approach, the OVS needs a clear motivation why to provide services in a certain scope and in a certain way (orange dimension). To ensure this, it needs all the resources, which are people, knowledge, assets, institutional (legal) and financial security (green dimension).

Naturally, part of the above is the IT department itself, including its processes and ICT services in blue, its people, data, HW and SW, its budget in green and its rules, regulations and concepts in the orange part of the picture.

Time is also considered an important aspect, but this is not included in the model. As such, time flows objectively and independently and cannot be allocated or appropriated. However, the correct handling of time is an integral part of planning and management processes, and is an integral part of management decisions, and in many ways influences (positively and negatively) the priorities of all implemented and future changes.

A more detailed view of the overall office model is shown in the following Figure. Complete information on the overall model is published and maintained within NAP in Knowledge base

The overall eGovernment decomposition model (including its parts: segment, corporation, organizational unit)

Goals and Benefits Resources

In accordance with the above model, the following applies7) that the basic and necessary resource of VS in general, and thus of ICT services and eGovernment, is people. People who have knowledge, information and skills. But to be able to apply them, they must have: appropriate technologies and tools, assets, secured funding, and competences and motivation appropriate to the position/position held.

Similarly, the shaping of an authority's activities (what, how, why and how well it does) is the resultant of 4 interrelated motivational aspects:

Public service performance also includes its cross-cutting management capability, comprising in particular the sub-capabilities corresponding to each of the components of motivation. From another perspective, these can be divided into:

All of the above aspects form a logical functional whole, in the case of failure or absence of one, eGovernment is only partially functional, by a geometric series of non-functional aspects it can then become completely dysfunctional.

In addition to technology, data and personnel, the OVS unit providing ICT services (whether outsourced or in-house) must have sufficient financial resources from the OVS budget.

For reasons of greater efficiency, the clients of the IT services (subject administrators, methodologists, legislators, etc.) should respect the time factor in their requests and assignments - i.e. deliver requests well in advance and respect deadlines for the final date of change implementation based on realistic and achievable scopes submitted by the specialist ICT services.

In summary, it can also be said that in today's very dynamic and electronically changing society, it is the IT department that is the bearer and implementer of the expected changes and benefits, its role cannot be further reduced and its budget reduced. The natural and organic increase of the ICT budget and other corresponding ICT resources should be seen as an investment in obtaining these benefits, whether in obtaining new qualities of public administration services, in achieving cost savings in the performance of these services or in saving unit costs in the performance of ICT services, see also Premises and background of ICT management.

Therefore, it is necessary to approach many ICT planning and management activities with this awareness of the investment in benefits and to use proportionately the ex-ante methods** (effective assessment of investment before expenditure), which are emphasised in this document.

1)
( Working abbreviation, see Introduction
3)
CZECH REPUBLIC. § 3 (4) (a) of Act No. 320/2001 Coll. In: <i>Laws for people.cz</i> [online]. © AION CS 2010-2019. Available from: https://www.zakonyprolidi.cz/cs/2001-320#p3-4-a
6)
The assignment must be in accordance with the legal mandate and the specification of the agenda in the Register of Rights and Obligations.
7)
Adapted adapted from the minutes of the SC for ICCR meeting of 21.06.2019.
8)
Governance is especially for those who are not involved in direct management, such as owners, shareholders, trustees, politicians, commercial partners, academic partners, and foreign (collection box - foreign clients, entities, clients, partners, etc.
9)
Another interpretation of the term Governance: The setting of policies and the ongoing monitoring of their proper implementation by members of the organization's governing body. Read more: https://dictionary.cambridge.org/dictionary/​english/​governance