(a)Definitions.—In this section:(1) The term “covered agency” means each agency listed in section 901(b)(1) or 901(b)(2) of title 31.
(2) The term “information technology” has the meaning given that term under capital planning guidance issued by the Office of Management and Budget.
(b)Additional Authorities for Chief Information Officers.—(1)Planning, programming, budgeting, and execution authorities for cios.—(A)In general.—The head of each covered agency other than the Department of Defense shall ensure that the Chief Information Officer of the agency has a significant role in—(i) the decision processes for all annual and multi-year planning, programming, budgeting, and execution decisions, related reporting requirements, and reports related to information technology; and
(ii) the management, governance, and oversight processes related to information technology.
(B)Budget formulation.—The Director of the Office of Management and Budget shall require in the annual information technology capital planning guidance of the Office of Management and Budget the following:(i) That the Chief Information Officer of each covered agency other than the Department of Defense approve the information technology budget request of the covered agency, and that the Chief Information Officer of the Department of Defense review and provide recommendations to the Secretary of Defense on the information technology budget request of the Department.
(ii) That the Chief Information Officer of each covered agency certify that information technology investments are adequately implementing incremental development, as defined in capital planning guidance issued by the Office of Management and Budget.
(C)Review.—(i)In general.—A covered agency other than the Department of Defense—(I) may not enter into a contract or other agreement for information technology or information technology services, unless the contract or other agreement has been reviewed and approved by the Chief Information Officer of the agency;(II) may not request the reprogramming of any funds made available for information technology programs, unless the request has been reviewed and approved by the Chief Information Officer of the agency; and(III) may use the governance processes of the agency to approve such a contract or other agreement if the Chief Information Officer of the agency is included as a full participant in the governance processes.
(ii)Delegation.—(I)In general.—Except as provided in subclause (II), the duties of a Chief Information Officer under clause (i) are not delegable.(II)Non-major information technology investments.—For a contract or agreement for a non-major information technology investment, as defined in the annual information technology capital planning guidance of the Office of Management and Budget, the Chief Information Officer of a covered agency other than the Department of Defense may delegate the approval of the contract or agreement under clause (i) to an individual who reports directly to the Chief Information Officer.
(2)Personnel-related authority.—Notwithstanding any other provision of law, for each covered agency other than the Department of Defense, the Chief Information Officer of the covered agency shall approve the appointment of any other employee with the title of Chief Information Officer, or who functions in the capacity of a Chief Information Officer, for any component organization within the covered agency.
(c)Limitation.—None of the authorities provided in this section shall apply to telecommunications or information technology that is fully funded by amounts made available—(1) under the National Intelligence Program, defined by section 3(6) of the National Security Act of 1947 (50 U.S.C. 3003(6)); (2) under the Military Intelligence Program or any successor program or programs; or
(3) jointly under the National Intelligence Program and the Military Intelligence Program (or any successor program or programs).
(d)Information Technology Portfolio, Program, and Resource Reviews.—(1)Process.—The Director of the Office of Management and Budget, in consultation with the Chief Information Officers of appropriate agencies, shall implement a process to assist covered agencies in reviewing their portfolio of information technology investments—(A) to identify or develop ways to increase the efficiency and effectiveness of the information technology investments of the covered agency;
(B) to identify or develop opportunities to consolidate the acquisition and management of information technology services, and increase the use of shared-service delivery models;
(C) to identify potential duplication and waste;
(D) to identify potential cost savings;
(E) to develop plans for actions to optimize the information technology portfolio, programs, and resources of the covered agency;
(F) to develop ways to better align the information technology portfolio, programs, and financial resources of the covered agency to any multi-year funding requirements or strategic plans required by law;
(G) to develop a multi-year strategy to identify and reduce duplication and waste within the information technology portfolio of the covered agency, including component-level investments and to identify projected cost savings resulting from such strategy; and
(H) to carry out any other goals that the Director may establish.
(2)Metrics and performance indicators.—The Director of the Office of Management and Budget, in consultation with the Chief Information Officers of appropriate agencies, shall develop standardized cost savings and cost avoidance metrics and performance indicators for use by agencies for the process implemented under paragraph (1).
(3)Annual review.—The Chief Information Officer of each covered agency, in conjunction with the Chief Operating Officer or Deputy Secretary (or equivalent) of the covered agency and the Administrator of the Office of Electronic Government, shall conduct an annual review of the information technology portfolio of the covered agency.
(4)Applicability to the department of defense.—In the case of the Department of Defense, processes established pursuant to this subsection shall apply only to the business systems information technology portfolio of the Department of Defense and not to national security systems as defined by section 11103(a) of this title. The annual review required by paragraph (3) shall be carried out by the Chief Information Officer of the Department of Defense, in consultation with the Under Secretary of Defense for Acquisition and Sustainment and other appropriate Department of Defense officials. The Secretary of Defense may designate an existing investment or management review process to fulfill the requirement for the annual review required by paragraph (3), in consultation with the Administrator of the Office of Electronic Government.
(5)Quarterly reports.—(A)In general.—The Administrator of the Office of Electronic Government shall submit a quarterly report on the cost savings and reductions in duplicative information technology investments identified through the review required by paragraph (3) to—(i) the Committee on Homeland Security and Governmental Affairs and the Committee on Appropriations of the Senate;
(ii) the Committee on Oversight and Government Reform and the Committee on Appropriations of the House of Representatives; and
(iii) upon a request by any committee of Congress, to that committee.
(B)Inclusion in other reports.—The reports required under subparagraph (A) may be included as part of another report submitted to the committees of Congress described in clauses (i), (ii), and (iii) of subparagraph (A).
(Added and amended Pub. L. 113–291, div. A, title VIII, §§ 831(a), 833, title IX, § 901(n)(1), Dec. 19, 2014, 128 Stat. 3438, 3442, 3469; Pub. L. 115–88, § 3, Nov. 21, 2017, 131 Stat. 1278; Pub. L. 115–91, div. A, title VIII, § 819(b), title X, § 1081(b)(1)(D), Dec. 12, 2017, 131 Stat. 1464, 1597; Pub. L. 115–232, div. A, title X, § 1081(f)(1)(A)(iii), Aug. 13, 2018, 132 Stat. 1986; Pub. L. 116–92, div. A, title IX, § 902(87), Dec. 20, 2019, 133 Stat. 1554; Pub. L. 118–31, div. A, title IX, § 901(f), Dec. 22, 2023, 137 Stat. 355.)