NIS Strategic Plan


Introduction

Texas A&M Transportation Institute (TTI) is currently in a time of great change. As we emerge from two years of business disruption resulting from a worldwide pandemic, new ways of working have come to the forefront out of necessity and become persistent. Hybrid work has driven computing to be more mobile and shifted services to the cloud. On top of this have come significant and long-lasting supply chain disruptions and increased security risks from persistent actors, some state-sponsored. This has created an environment where

…the “new normal” is disruption. Organizations that lean into this reality and leverage their innovation capacity, technology, and reach to deliver the scale and pace needed to achieve enterprise goals, will out-deliver their peers. They will not only survive, but grow as a result, and stay ahead of the pack.

Gartner. 2021. CIO Agenda.

IT leaders across the world responded to these pressures in 2021 by increasing investments in data security (73%), cloud technologies and services (71%), and IT automation (68%) (Forbes. 2021. State of IT Observability in 2021).

Clearly, NIS is ending one phase of growth and entering another. This calls for an adjustment in the focus of our work to better serve our customers for the foreseeable future.

External Challenges

Changes in the work and technology environments, largely resulting from the pandemic, have affected the external IT landscape. These changes include:

  • Changing employee expectations for work: The pandemic has necessitated the development of hybrid work environments, creating a permanent shift to more mobile technologies. Prior to the pandemic, 80% of our employees were working exclusively from a TTI office location. Today, 10% of employees prefer to work exclusively from a TTI office. Furthermore, competition for well-qualified candidates has created an expectation that work environments will be flexible from this point onward. Greater hybrid work necessitates greater technology mobility.
  • Increased concern for security: Security incidents by persistent state-sponsored cyber-hacking organizations is at an all-time high. Members of the TAMU System have been specifically targeted. Risk and Compliance activities have kept pace with the increased threat and greatly increased the compliance landscape. For example, in the last 18 months, the State of Texas DIR has changed or added 142 new security controls necessitating a significant increase in operational work to remain compliant.
  • Growth of cloud services: Worldwide, cloud services are growing. The global cloud computing market size is expected to grow from $445.3 billion in 2021 to $947.3 billion by 2026, at a Compound Annual Growth Rate (CAGR) of 16.3%.[i] Costs are coming down and making cloud services a viable alternative to on-premise infrastructure. When comparing the total cost of ownership of on-premise infrastructure, continuing to maintain it, especially for smaller IT organizations, is becoming more difficult.
  • Growth of the RELLIS Campus: With the growth of the RELLIS campus, a new IT networking group will be stood up to maintain the campus network in the future. There are significant costs associated with this shift of operational work away from TTI NIS to the main campus.

Internal Challenges

The internal IT landscape has also provided its own set of challenges, including:

  • Increased competition for budget: The budget continues to be flat and indicates that IT services must be cost-neutral if possible. This will create challenges, especially in the security area where demand for security monitoring and compliance has dramatically increased in recent years.
  • Increased demand for research IT services: As the complexity of IT services has gone up and shifted to the cloud, the demand for updated skill sets has also gone up. Historically, research groups have “rolled their own” with variable effects. This has decentralized the management of many IT services to the research teams. Once services are in production, these teams have limited capacity to manage services, sometimes resorting to hiring embedded IT team members to keep up with the operational demand. These resources are generally not engaged with NIS nor in the IT security community. As a result, these research-managed IT services present significant IT risks including security, availability, and continuity.
  • Increased compliance requirements: As a result of elevated security threats, compliance requirements have increased as well. Staying abreast of compliance requirements, not to mention complying with them, will require more resources in the future than are currently available.

An effective strategic plan must honestly evaluate where NIS is now while adjusting to the changing external and internal challenges we face. In so doing, we must shift our perspective so we can take advantage of our position as a skilled and knowledgeable provider of IT services.

Perspective

The vision of NIS, as defined in the 2016 Strategic Plan, is:

Network and Information Systems (NIS) will be recognized as a customer-service organization focused on embracing new technologies and delivering highly reliable and scalable applications as well as the infrastructure to power them. This infrastructure will allow the agency to achieve its strategic imperatives by having access to the latest information, tools and training, while protecting the agency’s resources in accordance with all applicable laws and regulations.

Using this as a starting point, simplifying, and emphasizing the value of both administrative and research computing to better align with customer expectations:

 We create an environment for researcher success by providing secure, reliable, and innovative administrative and research technology solutions to our customers.

Value consists of both utility (functionality) and warranty (availability, capacity, continuity, and security). And so, this new perspective more closely aligns with our customer’s definition of value.

Positions

Cloud-First Philosophy

TTI has significant, expensive, and aging on-premise assets including storage, compute, and networking. The operational overhead of owning and maintaining hard infrastructure assets when considering the total cost of ownership has crossed a rubicon when compared with cloud services. Over the course of 2020 and 2021, much of the agency’s on-premise infrastructure has been moved to the cloud. While some will remain, our strategy will be to move the on-premise assets to other providers such as Microsoft Azure, the RELLIS Computing and Data Research Center (i.e., RCDRC), and the RELLIS Networking group.

Strategic Principle #1: Move existing on-premise assets to the cloud where appropriate.

Specific goals associated with this position include:

  • Migrate domain infrastructure to the cloud
  • Migrate databases and custom applications to the cloud
  • Transition RELLIS Network Support to the RELLIS IT Group while maintaining support for our urban offices
  • Transition limited on-premise services to the RCDRC
  • Transition to Microsoft Teams VOIP services and transfer remaining limited on-premises Cisco Call Center hardware and infrastructure to the RELLIS Network Support Group
  • Eliminate the routine purchase of enterprise storage and compute

Mobile-First Philosophy

Since the agency desires to implement a strategy that shifts work locations to a hybrid solution with equitable work-from-office (i.e., WFO) and work-from-home(i.e., WFH) environments, our endpoint strategy must be adjusted to accommodate the shift. To this end, we have developed OneMobile. In this strategy, the traditional two-system model (i.e., desktop and laptop) is replaced with one laptop that can be connected from two identical workstations – one in the TTI facility, and one in a home office. This configuration provides maximum flexibility in physical work location will reducing endpoint complexity, management, and cost.

Strategic Principle #2: Support a mobile-first philosophy for agency computing.

Specific goals associated with this position include:

  • Implement a preferred one-mobile endpoint solution
  • Optimize and automate endpoint deployment via Intune and other available tools
  • Develop virtual machines for project compute and other workloads
  • Broaden access to data and communications via cloud-based services such as Office365 and Teams
  • Complete migrating telecommunication services to Microsoft Teams VOIP

Support Research Computing

NIS has historically provided administrative IT services and not been involved in services developed and operated on the research side of the agency. This has resulted in poor visibility and control of these services as well as inconsistency in security. Irrespective of technology, researchers need expertise to develop IT services to support research and research products delivered to our sponsors. For these reasons, NIS seeks to support research efforts by providing IT service design services, coordination, and operational control through providing consistent IT infrastructure that has good security control and visibility, thus freeing up our researchers to focus on what they do best.

Strategic Principle #3: Support research computing by providing design expertise, coordination, and operational administration to researchers while supporting innovation.

Specific goals associated with this position include:

  • Support collaboration between NIS and researchers through a variety of channels including:
    • Research Groups via Liaisons
    • Communications group
    • Strategic Data Team
  • Implement a data catalog on behalf of the agency to include data classification
  • Develop standardized cloud workflows to support common research service patterns such as websites (static, dynamic, data-enabled), machine learning such as video processing and analysis, and defined storage services based upon tiers

Develop our Staff

Our most important assets are our staff. NIS seeks not only to support the growth of our staff in order to develop their career paths, but also to provide an organizational environment in which our people want to work.

Design Principle #4: Develop our staff. Create a culture of transparency, trust, and accountability.

Specific goals associated with this position include:

  • Train all staff to a minimum level of IT Service Management competence through ITILv4 Foundations Certification
  • Encourage and support employees in professional development that will help them grow their careers
  • Ensure that sufficient resources exist to support ongoing training and sufficient operational staffing so our team members have time for training and development
  • Cross-train our team members so that our bench is deep
  • Create an organization of transparency, trust, and accountability by facilitating inter-organizational communication, tolerance for dissent, and rewards for outstanding performance.

Implement IT Service Management Practices

IT Service Management provides structure and value to our organization and differentiates us from our competitors. Currently, we have focused on Incident, Change, and Demand management. In the future, we will develop Asset, Project, and Portfolio Management practices according to the ITILv4 framework. We are currently positioned as the leader in ITIL implementation within the TAMUS community. We seek to continue to provide training services to the TAMUS IT community to foster collaboration and excellence.

Strategic Principle #5: Implement IT Service Management processes where appropriate.

Specific goals associated with this position include:

  • Mature Incident, Change, and Demand practices
  • Initiate Asset, Project, and Portfolio practices
  • Offer at least two ITILv4 Foundations training opportunities per year
  • Offer at least one ITILv4 Intermediate training opportunity per year

[i] Cloud Computing Market by Service, Deployment Model, Organization Size, Vertical And Region – Global Forecast to 2026. https://www.reportlinker.com/p05749258/Cloud-Computing-Market-by-Service-Deployment-Model-Organization-Size-Workload-Vertical-And-Region-Global-Forecast-to.html

[ii] ITIL Service Strategy: Principles of Positions.