• Comprehensive Project Management from Inception to Completion
• System Development Life Cycle (SDLC) -Execution of Planning, Analysis, Design & Implementation
• System Definition & Requirements Analysis
• Business Analysis
• Quality Assurance & Testing
• Business Process Management
• Program Management
• Independent Assessments & Studies
• Independent Verification & Validation

• Managing and coordinating requirements documentation
• System requirements & hardware and software requirements
• In depth “As Is” and “To-Be” requirements documentation
• Transition planning strategy & cost estimation/tracking
• Standard processes for identifying, tracking, reporting and resolving issues related to the business and IT    Project requirements
• Security Analysis
• Constraint & Gap Analysis
• Traceability Analysis
• Validation of hardware & software designs

• Panum has the necessary resources, experience and knowledge to develop IT Strategic Plans that support    the vision and mission of business and program areas. IT is integral to    mission areas and is a vital    enabler of mission success. We understand this relationship and the IT strategic planning required to    successfully create an IT strategic vision. Our experience also includes the development of Performance    Action Plans that serve as tactical, IT performance indicators. Performance Action Plans, in sync with    Strategic Plans, ensure that business area vision and mission are successfully supported by technology    solutions.
• We also have extensive experience supporting IT Investment Review Boards (ITIRBs). Through an ITIRB,    we help organizations provide a transparent, equitable process for evaluating and prioritizing IT project    initiatives based on programs, plans, and budgets. We work with CIOs and IT directors to ensure that    viable IT solutions are clearly presented to business and program area senior management in an    educational manner, giving them the information they need to make informed decisions. Our experience    with ITIRBs has resulted in a deep understanding of administrative practices and policies in the Federal    government, and strengthened our ability to establish successful relationships with senior management.

Panum has successfully provided Capital Planning and Investment Control (CPIC) support services to several Federal agencies. Our consultants have many years of experience on the business side of federal information technology: policy, budgeting, acquisition, CIO support, project management, System Life Cycle documentation, and evaluation.

CPIC Services Provided:  Back To Top of Page

Panum’s EA processes are based on Federal standards and industry best practices ensuring that the organization’s IT goals are in strategic alignment with EA goals, policies and procedures, at both strategic/blueprint and tactical/operational levels. We use dashboards-based structured assessment process to evaluate the degree of alignment with the leading industry EA best practices. The basis for evaluation includes strategic goals, architecture, cost, resource management, risks, performance, and process improvement.

Our experienced consultants help clients manage business and technology transformation more efficiently to define a custom-made EA roadmap using the frameworks such as TOGAF (The Open Group Architecture Framework) and Zachman.

The Panum Group offers a range of integrated enterprise architecture services including (but not limited to):

• Cradle-to-grave EA program management supports services for our clients using our broad-range    knowledge and flexible templates for EA artifacts.
• Segment development for IT systems using Federal Segment Architecture Methodology (FSAM)
• SOA based IT architectural solutions to provide value at every stage from departmental projects to    enterprise-wide initiatives.
• Providing counsel on using the EA for decision-making and justification in the Capital Planning and    Investment Control (CPIC) process.
• Analyzing business, information and technical requirements to develop the ‘as-is’ and ‘target’ enterprise    architectures.
• Promoting reuse and connectivity of application assets and information across the enterprise.
• Evaluation of business and technology challenges, assess costs, and suggest viable solutions.
• Developing transition and sequencing plans to guide modernize initiatives from current state to target    architecture.
• Managing- EA tools and repositories such as Adaptive and provide support for designing the Meta    models according to the organization’ need.

• Broad support for the Office of the Chief Information Officer (OCIO), Information Security Office (ISO)    including:

• ISO Security Strategic Planning
• Policies and Procedures
• Program/System Risk Analysis Support
• Contingency Planning (COOP) / Disaster Recovery
• Certification and Accreditation
• ISA/MOU Maintenance
• Education, Awareness and Training
• Annual External Audits
• Information Security Office Communications
• Access Requests
• Security Operations Oversight
• Incident Response
• Program/System Risk Analysis and Technical SME Support
• Research, Development, and Engineering
• Patch Management
• Virus and Malware Management
• Configuration Management and System Hardening
• Vulnerability Scanning
• Penetration Testing
• Privacy Office

• Specific Examples of Services include:  Back To Top of Page

• Agency InfoSec Handbook and Standard Operating Procedures and Guidelines: Develop, review,    update and revise in compliance with Agency, NIST and Agency Guidance to ensure the security    of all IT assets. Address security in all aspects of IT to ensure a proactive security process based    on Agency guidance for current policies, procedures and guidelines for inclusion. Review Agency,    Departmental, and Government-wide area policies that are applicable for inclusion into all    documents.
• Develop and review Agency “Guidance on the Protection, Maintenance and Use of Sensitive But    Unclassified (SBU) Information” for updates, as well as the potential for consolidation within the    Agency Handbook.
• Assist ISO to work with the Agency Management Office on the development of training for Agency    employees focused on the handling of Sensitive But Unclassified (SBU) data. Develop and assist    with development of this training material.
• Assist ISO to develop process specific procedures for its most critical and time intensive business    functions. Support the creation and modification of these procedures. Examples of SOP’s include:

• Incident Response Standard Operating Procedures
• Patch and Vulnerability Management Standard Operating Procedures

• Assist Agency with the Federally-mandated 2010 Information System Security Awareness training.    Assisted users with the process of completing their test, communicating status of test completion,    as well as tracking test completion.
• Assist Agency ISO will continuation efforts to recertify users and Authorizing Officials for Agency    managed and monitored Information Systems. Support Federal staff in the development of    communications, to affected staff, as well as tracking progress of reporting compliance.

• Serve as the Agency representative to the e-Government Working Group, attending all regularly    scheduled meetings as well as ad hoc meetings and reporting back to Agency to keep Agency abreast    of e-Government activity and the Department’s expectation of member agencies.
• Thoroughly review all reports, announcements, executive memos, and trade magazine articles for    information regarding e-Government activity to provide timely impact analysis for the Agency.
• Support Agency personnel as Chair of the Agency’s e-Government Steering Committee (comprised of    HQ staff and members from all regions), when active, to give leadership to efforts that expand the use of    automation in-house for improving internal efficiency (OWA, room scheduler, etc.).
• Maintain a broad understanding of all facets of e-Government to ensure that goals set by the Agency are    commensurate with those set by the Department. This involves policing duplication in the Agency, but    also ensuring that Agency’s needs are considered in the development of enterprise solutions.
• Be alert to opportunities to share knowledge and lessons learned and devise tools to accomplish the    exchange (i.e. Electronic Systems Checklist, e-Government Calendar, etc.)
• Support Agency personnel with leadership roles in e-Government enterprise solutions by attending    meetings, preparing presentations, working through budget requirements, disseminating information    and generally providing backup as needed (e-Authentication, e-Learning, e-Rulemaking, etc.)
• Participate, as needed, with the Department in the development of requirements for enterprise solutions    and in the evaluation of vendors for enterprise solutions.
• Serve as a change manager as applicable to e-Government through the use of workshops, forums,    user’s and advisory groups, training, face-to-face discussions, and other means as appropriate.
• Be available and accessible to various groups internal and external for presentations on the status of    Agency e-Government activities as directed by the OCIO.
• 10) Secure for Agency premiere Agency status in the Department’s e-Government arena, maintaining a    constant vigil of the e-Government scorecard.
• Ensure timely submission of required reporting for e-Government initiatives to both the Agency and the    Department.

o Prepare annual and quarterly e-Government status reports as required and as requested.
o Prepare quick-turnaround ad hoc reports for the Department or the Agency as requested
   (e-Government accomplishments, Gartner surveys, etc.)
o Assist the OCIO in developing fiscal year e-Government corporate priorities and the tasks and    performance measures necessary to ensure success. This includes advising Agency officials as    to annual budget requirements for current and planned e-Government initiatives.
o Coordinate quarterly updates to e-Government corporate priorities.
o Meet all deadlines for Integrated Reporting updates set by the Department. Stay abreast of    changes in the Department’s Integrated Reporting Tool and work with GPEA Coordinator and
   e-Authentication team to keep the Agency information up-to-date.
o Spearhead the annual preparation of the Agency e-Government Tactical Plan. Restructure Plan as    required based on guidance from the Department. Compile and submit for approval the final FY    Tactical Plan.