Memorandum M-15-14, Management and Oversight of Federal Information Technology




The purpose of this memorandum is to provide implementation guidance for the Federal Information Technology Acquisition Reform Act (FITARA)1 and related information technology (IT) management practices.


FITARA was enacted on December 19,2014. FITARA outlines specific requirements related to:

  1. Agency Chief Information Officer (CIO) Authority Enhancements
  2. Enhanced Transparency and Improved Risk Management in IT Investments
  3. Portfolio Review
  4. Federal Data Center Consolidation Initiative
  5. Expansion of Training and Use ofiT Cadres
  6. Maximizing the Benefit of the Federal Strategic Sourcing Initiative
  7. Govemmentwide Software Purchasing Program

To implement the requirements ofFITARA, combined with the need to update policy and guidance related to other modem IT practices, OMB is publishing this guidance. This guidance reflects input from a diverse group of stakeholders, including representatives from the Chief Financial Officer (CFO), Chief Human Capital Officer (CHCO), Chief Acquisition Officer (CAO), Assistant Secretary for Management (ASAM), Chief Operating Officer (COO), and CIO communities.


The objectives of the requirements outlined in this memorandum are to:

  1. Assist agencies in establishing management practices that align IT resources with agency missions, goals, programmatic priorities, and statutory requirements;
  2. Establish govemmentwide IT management controls that will meet FIT ARA requirements while providing agencies with the flexibility to adapt to agency processes and unique mission requirements;
  3. Establish a "Common Baseline" for roles, responsibilities, and authorities of the agency CIO and the roles and responsibilities of other applicable Senior Agency Officials2 in managing IT as a strategic resource;
  4. Enable the CIO's role, with respect to the development, integration, delivery, and operations of any type of IT, IT service, or information product to enable integration with the capabilities they suppott wherever IT may affect functions, missions, or operations;
  5. Strengthen the agency CIO 's accountability for the agency's IT cost, schedule, performance, and security;
  6. Strengthen the relationship between agency CIOs and bureau CIOs;
  7. Establish consistent governmentwide interpretation ofFITARA terms and requirements;
  8. Assist agencies in establishing an inclusive governance process that will enable effective planning, programming, budgeting, and execution for IT resources;
  9. Provide transparency on IT resources across entire agencies and programs; and
  10. Provide appropriate visibility and involvement of the agency CIO in the management and oversight of IT resources across the agency to suppott the successful implementation of cybersecurity policies to prevent interruption or exploitation of program services.