The System Development Life Cycle (SDLC) process applies to information system development projects ensuring that all functional and user requirements are met by using a structured and standardized process during all phases of a system’s life cycle. Systems developed according to information technology (IT) best practices are more likely to provide secure and reliable long‐term performance. The Office of the Inspector General (OIG) engaged CliftonLarsonAllen’s (CLA’s) to perform an audit of the Library’s SDLC process to assess the maturity of the Library’s current policies and practices and to evaluate the efficiency of Information Technology Services’ (ITS) process for structuring, planning, and controlling the development of the Library’s vital information systems. This included an assessment of ITS’ compliance with the Library’s SDLC policy and the application of generally accepted IT best practices. In its report, CLA identified several weaknesses in the Library’s SDLC process that places the Library at risk of developing IT systems that are not adequately documented and lack cost and performance data needed to properly monitor and make prudent IT investment decisions. By optimizing its current SDLC process, the Library can mitigate these risks while improving efficiency and governance of IT system development.
Date: February 2015
Creator: United States. Library of Congress Office of the Inspector General