recommended reading

Agencies aren’t providing enough details about future cloud moves, GAO says

T. L. Furrer/

Nineteen of 20 agency plans for future cloud computing projects are missing important elements, a watchdog said Wednesday.

For example, seven of the 20 blueprints submitted to the Office of Management and Budget do not include any cost estimates, according to the Government Accountability Office report. None of the 14 plans that involve migrating existing services to the cloud includes the cost of retiring or repurposing legacy systems, the watchdog said.

Without that information it’s not clear if the agencies will be able to wring all possible savings from the cloud projects, GAO said.

Technology officials have estimated the government can save $5 billion annually by moving 20 percent of its information technology infrastructure from agency-owned data centers to more nimble cloud computing.

All seven agencies that GAO surveyed had met OMB’s requirement for moving at least one service to the cloud by December 2011. They also planned to have at least three services functioning in the cloud by the end of 2012, though two agencies -- the Agriculture Department and the Small Business Administration -- said they missed OMB’s June deadline for that milestone.

The shift to cloud computing has been dogged by insufficient guidance on purchasing cloud technology and concerns about its security, GAO said.

The process of certifying cloud vendors also has been arduous, the report said, partly because the governing document -- the Federal Risk and Authorization Management Program, or FedRAMP -- is only in its early stages.

“For example, [General Services Administration] officials stated that the process to certify Google to meet government standards for their migration to cloud-based email was a challenge,” auditors said. “They explained that, contrary to traditional computing solutions, agencies must certify an entire cloud vendor’s infrastructure. In Google’s case, it took GSA more than a year to certify more than 200 Google employees and the entire organization’s infrastructure (including hundreds of thousands of servers) before GSA could use Google’s service.”

Cultural barriers also have been a challenge.

“For example, a State [Department] official explained that public leaks of sensitive information have put the agency on a more risk-averse footing, which makes it more reluctant to migrate to a cloud solution,” the report said.

GAO recommended the surveyed agencies “establish estimated costs, performance goals and plans to retire associated legacy systems” for cloud-based systems and “develop, at a minimum, estimated costs, milestones, performance goals and plans for retiring legacy systems.”

The agencies agreed with the recommendations with some qualifications.

The surveyed agencies were the Agriculture, Health and Human Services, Homeland Security, State and Treasury departments, and the Small Business Administration and General Services Administration.

(Image via T. L. Furrer/

Threatwatch Alert

Thousands of cyber attacks occur each day

See the latest threats


Close [ x ] More from Nextgov

Thank you for subscribing to newsletters from
We think these reports might interest you:

  • Modernizing IT for Mission Success

    Surveying Federal and Defense Leaders on Priorities and Challenges at the Tactical Edge

  • Communicating Innovation in Federal Government

    Federal Government spending on ‘obsolete technology’ continues to increase. Supporting the twin pillars of improved digital service delivery for citizens on the one hand, and the increasingly optimized and flexible working practices for federal employees on the other, are neither easy nor inexpensive tasks. This whitepaper explores how federal agencies can leverage the value of existing agency technology assets while offering IT leaders the ability to implement the kind of employee productivity, citizen service improvements and security demanded by federal oversight.

  • Effective Ransomware Response

    This whitepaper provides an overview and understanding of ransomware and how to successfully combat it.

  • Forecasting Cloud's Future

    Conversations with Federal, State, and Local Technology Leaders on Cloud-Driven Digital Transformation

  • IT Transformation Trends: Flash Storage as a Strategic IT Asset

    MIT Technology Review: Flash Storage As a Strategic IT Asset For the first time in decades, IT leaders now consider all-flash storage as a strategic IT asset. IT has become a new operating model that enables self-service with high performance, density and resiliency. It also offers the self-service agility of the public cloud combined with the security, performance, and cost-effectiveness of a private cloud. Download this MIT Technology Review paper to learn more about how all-flash storage is transforming the data center.


When you download a report, your information may be shared with the underwriters of that document.