Public-Sector Cloud Computing: The Good, the Bad, and the Ugly
When the second-in-command of one of the most technologically advanced states in the country slams public-sector computing -- publicly -- it's a resounding wake-up call.
"Don't underestimate how far local, state and federal government is behind [in computing]," said California Lt. Gov. Gavin Newsom at a tech conference in Silicon Valley earlier this year. "We have to wake up to the new reality."
The new reality Newsom was referring to is cloud computing -- a versatile way for government agencies of all sizes to solve a variety of technological issues relating to cost, human resources and the ability to respond quickly to constituents' needs. Many government agencies are doing just that -- albeit in limited areas, such as email and data center consolidation.
But overall, progress is slow: Federal agencies are struggling to comply with the U.S. government's "cloud first" mandate, and state and local government entities, which tend to be less well funded, are even further behind.
As noted by CIOs and technology vendors at the TechAmerica conference on public-sector computing in February, the cloud allows government agencies to decrease their costs and deploy systems more quickly -- all good news. And as in the private sector, cloud computing can enable public entities to devote fewer resources to day-to-day tasks like maintenance, so they can focus on more important things, like improving services and increasing innovation.
But there's also bad news -- and some ugly realities -- when it comes to cloud computing in the public sector. Current and former public-sector CIOs say it can be difficult to drag government agencies forward. It remains to be seen whether government CIOs will be able to convince politicians and bureaucrats that cloud computing is the antidote for the financial and technological doldrums they're experiencing.
The state of the state (and the county, and the city...)
A March 2012 survey conducted by Government Executive magazine, co-sponsored by Cisco Systems, found that government entities significantly lag behind the private sector when it comes to cloud deployments.
The report's findings were based on responses from 429 government executives and managers in 10 countries, as well as responses from 808 private-sector executives. Of the government executives who responded, only 12% said that more than 10% of their agencies' overall annual IT resources were allocated to the cloud in 2011. While researchers expect those percentages to grow by the end of this year, even doubling them wouldn't represent a significant move to the cloud.
A more-optimistic 2011 survey by Red Shift Research put the penetration of cloud computing in the public sector at 23%, compared with 42% in the private sector.
Either way, Thom Rubel, an analyst at research firm IDC Government Insights, concurs that the cloud computing adoption rate is lower in government than it is in the private sector.
He says that's primarily due to the fact that government agencies have to comply with more stringent security and privacy requirements. Moreover, Rubel says he believes that government agencies are still in the "data sorting" process -- that is, they're trying to figure out what kind of information can go into the cloud. Right now, "you can put 3-1-1 informational services in the public cloud, but you want to keep tax and revenue data in a private cloud," he says. Within the next three years, he predicts, we'll see government agencies figuring out how to best take advantage of the cloud.
The bad and the ugly
Public-sector CIOs have no qualms about discussing the ugly side of government computing. To them, it's a fact of life. Challenges related to parochialism, funding, politics, governance and more get in the way of progress, especially when it comes to cloud computing.
One of the biggest obstacles is the long-held belief that any given agency's needs are special and must be handled in a specific (and usually siloed) way. (For ideas on overcoming this mindset, see "Government CIOs Battle Parochialism," below.)
Government CIOs battle parochialism
To overcome the parochialism that can be rampant in the halls of government, several CIOs recommended convening IT councils to boost interagency collaboration.
In Oakland County, Mich., CIO Phil Bertoline brings together representatives of different departments to collaborate on IT issues. "The more we can look ahead, the better we can plan," he says. With that kind of foresight, he adds, it's easier to accommodate shifts in technology.
IDC analyst Thom Rubel cites a recent collaborative effort within the federal government among the Social Security Administration, the U.S. Department of Agriculture, and the Center for Medicare and Medicaid Services. The agencies are beginning to work together to track fraud and improper payments, which Rubel says is a $100 billion problem at the federal level. "They're looking at it from a budget standpoint to avoid duplication, but the bigger effort is looking at creating holistic services that create better outcomes."
In Ohio, 33 CIOs of state agencies have been working together on various IT issues, such as infrastructure, architecture and identity management. That effort has been under way for a while, but when Stu Davis took over as state CIO, he ratcheted up the schedule so that they now meet every six weeks instead of every six months. "That's been a great help in looking at issues through the prism of an enterprise, rather than departmental, structure," says Davis.
"A state government is not all one entity," says Carlos Ramos, CIO of the California state government. "Some agencies report to the executive branch, some agencies are constitutionally mandated, and so they're managed differently." Nor, he says, do agencies like giving up control, even to colleagues in the public sector. Just as some citizens mistrust government, "sometimes government doesn't even trust government," he says.
"People focus on more on best practices than utilizing a common system to accommodate them," says Douglas Cotnoir, deputy state controller in Maine. "People in government interpret the rules for one group differently than they do for another. It depends on who your constituents are."
That may be true, but the problem can snowball in unintentional ways. For instance, the individual government agencies of the state of Virginia might each require accountability, but does that also mean the state needs 94 separate e-mail systems?
Resistance to change is one of the biggest obstacles to cloud adoption by state and local governments, says Andrea Di Maio, an analyst specializing in public-sector issues at Gartner. "It depends on the maturity of the organization," she says. "Clients of ours who have experience in outsourcing have an easier time moving to the cloud."
Another obstacle is the way the reins of power change hands on a regular basis, whether in the governor's office or even on a municipal city council. "Every new elected official coming in wants to make an impact," says Steven Fletcher, CIO for the state of Utah. "But new officials don't think about operations, they think about programs like education and economic development. They're not paying attention to the most efficient way to provide services, which makes it difficult for the CIO to provide those services."
Sometimes regulations gum up the works. When John Letchford, CIO of the state of Massachusetts, decided to try cloud computing by moving the state's e-mail system to a cloud service provider, he got more of a challenge than he had bargained for.
"Maybe this was naïve, but we thought e-mail was simple," says Letchford. "But we found that we had to adhere to a variety of compliance rules, because you're touching every business function in some shape or form. It was like boiling the ocean." The RFP for moving the mail, which is still in progress, had to comply with IRS Publication 1075 (Tax Information Security Guidelines for Federal, State and Local Agencies), the Social Security Administration's Section 1128E (Health Care Fraud and Abuse Data Collection Program) and more than 100 state regulations.
Letchford, who spent 10 years in IT at Procter & Gamble, is frankly surprised by how polarizing the idea of cloud computing is in the public sphere. "Some people in government see it as a threat, and some see it as a solution, but I haven't met anyone who doesn't have an opinion."