PHIN Conference 2008 Best Practices and Lessons Learned
PHIN Conference 2008 Best Practices and Lessons Learned in NC PHIN Systems Integration Presenter: John Mc. Lamb, MSIA Presentation ID: 17503 Monday, August 25, 2008: 10: 30 AM International Room B NC PHIN North Carolina Public Health Information Network
Interoperability & Data Sharing: Best Practices & Lessons Learned John Mc. Lamb, MSIA, PHDM Topics • IT & Data Governance • Architecture Framework • NC PHIN Interoperability “Best Practices” and “Lessons Learned” NC PHIN North Carolina Public Health Information Network 2
What is IT/Data Governance? “READY…. FIRE…. AIM” • Greek word “to steer” • “The leadership and organizational structures and processes that ensure that the organization’s IT sustains and extends the organization's strategies and objectives. ” IT Governance Institute • “The system by which the current and future use of IT is directed and controlled…. includes the strategy and policies for using IT within an organization. ” Australian Standard for Corporate Governance of IT NC PHIN North Carolina Public Health Information Network 3
Whom Does IT / Data Governance Concern? Whom does IT Governance concern? All Public Health Stakeholders Who is Responsible for IT Governance? Management and those with decision making authority Best Practice: • Senior management should put organizational structures in place • Roles and responsibilities must be defined • Program / unit managers should take an active role in IT strategy, steering or similar committees • Public health CIOs or IT directors must be public health program-oriented and provide a bridge between IT and the public health programs NC PHIN North Carolina Public Health Information Network 4
Why is IT Governance Important? Primary Importance 1. Delivers value: Strategic alignment of IT 2. Risks are mitigated: Embeds accountability into IT Value Added • • • Enabling public health goals Planning growth Ensuring goals Using IT resources responsibility Maximizing efficiency Providing strategic direction • • Risks Mitigated Reducing negative experiences IT accountability Managing risks Providing due diligence NC PHIN North Carolina Public Health Information Network 5
How is Governance Implemented? Identify Focus Areas of IT / Data Governance Resource Management IT Value Delivery IT Strategy Alignment Public Health Stakeholder Value Drivers Risk Management Performance Measurement IT Governance Institute 2003 NC PHIN North Carolina Public Health Information Network 6
How is Governance Implemented? Best Practice: IT Governance Process Life Cycle IT Us Processes e & s ea Drive Improves Di re ct su IT Strategy Reports Stakeholder Objectives / Value Drivers M re Resources ØKnowledge ØCompatibility ØInformation m ir nf Co e ng IT Governance Institute 2003 a Ch or “IT alignment is a journey, not a destination” NC PHIN North Carolina Public Health Information Network Results ØOutcomes ØPerformance ØRisk ØAssets 7
Conclusions: IT/Data Governance Best Practices 1. IT/Data Governance should be Integrated with the Public Health Governance Program 2. IT Governance Roles and Responsibilities Need to be Defined 3. The IT/Data Governance Life Cycle 1. 2. 3. 4. 5. 6. 7. 8. Set up a governance organizational framework Align IT strategy with Public Health Goals Understand / define the risks Define target areas Assess capabilities and identify gaps Develop improvement strategies Measure results Repeat steps 2 -7 on a regular basis NC PHIN North Carolina Public Health Information Network 8
Architecture Framework NC PHIN North Carolina Public Health Information Network 9
Architecture Framework What: – A logical structure for classifying and organizing complex information – Established frameworks: Zachman, Do. DAF, FEAF, TOGAF Purpose: – Integrated view of PH business processes and IT systems that support them – Guide for managing architecture activities Why: – Guiding architecture development – Managing the architecture artifacts/assets – Aligning IT with public health goals NC PHIN North Carolina Public Health Information Network 10
Architecture Framework Overview Direction Description VIEWS (PHIN 2. 0, HL 7, NIST, HITSP, HIPPA, etc. ) Functional Perspectives DRIVERS • Policies • Legislatio n • Roadmaps • Program Goals • Measure • Standards Information Organization EA Accomplishments Infrastructure Planner Work Products Owner Work Products Designer Builder *TEAF v 1 NC PHIN North Carolina Public Health Information Network 11
NC PHIN Work Products VIEWS Functional Information Organization Information Structure of Public Health needed to perform Public Health, functions, public health major operations processes & operations and performed by activities that relationships entities, types of capture, among that workers and manipulate and information locations manage the information to support business operations NC PHIN North Carolina Public Health Information Network Infrastructure Hardware, software, telecomm and general services that make up the operating environment in which business applications operate 12
Architecture Framework Overview Rows = Perspectives Planner Focuses on strategic plans. high-level processes, key information and infrastructure, structure of the organization and operating locations Owner Focuses on conceptual-level models of public health processes, information, logistics, and IT infrastructure Designer Focuses on logical business process design, logical information models, component and application design, and system distribution and deployment Builder Considers the constraints of tools, technology, and materials. The Builder must translate the designer’s specifications into plans for physical implementation. The builders also focuses on integration and Test *TEAF v 1 NC PHIN North Carolina Public Health Information Network 13
NC PHIN Work Products Required Work Products Audience Perspectives Planner Owner Supporting Work Products VIEWS Functional Information Organization Infrastructure • Vision Statements • Mission Statement Information Dictionary • Organization Chart • Standards Profile • NC PHIN Process Model • Information Attributes • Information • Exchange Matrix • Node Connectivity Description (conceptual) • Risk Assessment • System Interface Description • Physical Network Layout • Technical Reference Model • Assurance Trust Model Designer Business Process Functional Matrix Event Trace Diagrams State Charts information Exchange Matrix Data Crud Matrix • Node Connectivity Description • (logical) • System Interface Description (logical) Builder • System Functionality Description Information Exchange Matrix physical Data Model • Node Connectivity Description (Physical) System Interface Description System Performance matrix NC PHIN North Carolina Public Health Information Network 14
NC PHIN Architecture Work Product Examples NC PHIN North Carolina Public Health Information Network 15
Architecture Work Product Examples NC PHIN Vision Statement: Provide a secure, flexible, highly available, fully capable and interoperable information system that support all public health activities and programs. View: Functional Perspective: Planner NC PHIN North Carolina Public Health Information Network 16
View: Functional Perspective: Owner NC PHIN North Carolina Public Health Information Network 17
Technical Reference Model: Infrastructure View: Infrastructure Perspective: Planner NC PHIN North Carolina Public Health Information Network 18
View: Functional Perspective: Planner NC PHIN North Carolina Public Health Information Network 19
NC PHIN Physical Network View: Infrastructure Perspective: Builder NC PHIN North Carolina Public Health Information Network 20
Public Health IT/Data Governance Common Tool Set 1. Methods – IT Strategy Committee – IT Governance Steering Committee 2. Measurements 1. Outcomes 2. Governance Assessments Tools NC PHIN North Carolina Public Health Information Network 21
End of Presentation Questions? Contact Info: John Mc. Lamb, MSIA, PHDM 919 -707 -5063 office 919 -260 -6272 cell john. mclamb@ncmail. net NC PHIN North Carolina Public Health Information Network 22
Resources: • Governance: – ISACA- www. isaca. org – ITGI – www. itgi. org • Architecture Framework – www. teaf. org – www. egov. org NC PHIN North Carolina Public Health Information Network 23
NC PHIN Best Practices and Lessons Learned for Interoperability and Sharing Data NC PHIN North Carolina Public Health Information Network 24
NC PHIN Key Steps for EAI 1. Build decoupled and 2. 3. 4. 5. Distributed Architectures Identify Common Services Plan for Common Objects Create a common vocabulary (taxonomy) Design for business processes, change, and control 6. Build templates for business process and human workflows 7. Use Standards for Messaging and Public Health Processes 8. Build a Development, Test, and Production environment 9. Build with Deployment in Mind NC PHIN North Carolina Public Health Information Network 25
Interoperability Best Practices NC PHIN Interoperability Case Study (Time Permitting) A brief overview and discussion of IT/Data governance “best practices” and “lessons learned” in a NC PHIN program that electronically collects emergency department patient data from over 100 hospitals in North Carolina for providing a public health web portal early event detection and disease surveillance. NC PHIN North Carolina Public Health Information Network 26
Appendix Slides ØNC PHIN Infrastructure ØGovernance Tools ØBest Practices Interoperability NC PHIN North Carolina Public Health Information Network 27
How is IT Governance (Process) Implemented? IT Governance Process Steps 5. Analyze current 1. Set-up life cycle capabilities and 2. Align IT with public identify gaps health goals 6. Develop improvement 3. Understand/define strategies the risks 7. Measures results 4. Define target areas 8. Repeat steps 2 -7 on a (i. e. , PHIN Certificate Goal: TB regular basis Case Notification Message) “IT alignment is a journey, not a destination” NC PHIN North Carolina Public Health Information Network 28
Other Governance “Best Practices” for Management to Follow • Treat the IT governance implementation initiative as a project activity • Remember that IT governance is a cultural change • Make sure that objectives are clear and understood • Manage expectations • Focus first on where it is easiest to make changes and deliver improvement NC PHIN North Carolina Public Health Information Network 29
How to Implement Governance Best Practice: IT Strategy and/or Steering Committee Implements Governance Responsibilities • May differ depending on organization structure, culture, etc. • Define a charter and establish life cycle • Coveys requirements to the IT director/CIO • Composed of department or program senior management with decision making authority & CIO Strategic Value IT Resource Risk Performance Alignment Management Delivery Provide strategic direction • Policy guidance • Compliance • Define project priorities • Ensures design of IT drives maximum PH value • Oversees delivery • Oversees IT funding • Provide highlevel resource use & sourcing • Oversees that IT risk are managed • Confirms critical risks are managed • NC PHIN North Carolina Public Health Information Network Verifies compliance • Verifies goals, strategic objectives met • Reviews IT measurements & contribution to PH • 30
NC PHIN Architecture Work Product Examples: Process Model Information Attributes Outbreak Management, Surveillance , Countermeasure & Response (NC EDSS) – Electronic Disease Reporting – Hospital Data (ICD-9, UB 92 Admin. Data) Early Event Detection & Syndromic Surveillance (NC DETECT) View: Perspective: Emergency Dept. Data (NC EDDS & NCHESS) Poison Control Center EMS Data (Pre. Mis) Vet Lab Data Wildlife Data Aberrations (CUSUM) u Health Alert Network (HAN) u Secure Data Exchange (PHIN-MS) u Messaging/Interoperability (Rhapsody) u Enterprise Reporting u Immunization Registry (NCIR) u Electronic Laboratory Results (NC LIMS) u Vital Records Automation u NC PHIN Infrastructure NC PHIN North Carolina Public Health Information Network 31
NC PHIN North Carolina Public Health Information Network 32
- Slides: 32