Skip Ribbon Commands
Skip to main content

CCA Implementation

Clinger-Cohen Act (CCA) Implementation CCA Compliance Confirmation CCA in the Acquisition Lifecycle CCA Task Guidance Make a determination that the acquisition supports core, priority functions of the Department. Determine that no private sector or government source can better support the function. Redesign the process that the system supports to reduce costs, improve effectiveness and maximize the use of COTS technology. Establish Outcome-based Measures of Effectiveness, sometimes referred to as outcome-based performance measures, which are linked to strategic goals. There are clearly established measures and accountability for program progress. An Analysis of Alternatives has been conducted. An Economic Analysis has been conducted that includes a calculation of the return on investment; or for non-AIS programs, a Life-Cycle Cost Estimate (LCCE) has been conducted. The acquisition is consistent with the Global Information Grid policies and architecture, to include relevant standards. The Program has an Information Assurance strategy that is consistent with DoD policies, standards and architectures, to include relevant standards. To the maximum extent practicable, (1)modular contracting has been used, and (2) the program is being implemented in phased, successive increments, each of which meets part of the mission need and delivers measurable Benefit, independent of future increments The system being acquired is registered. A Post Implementation Review has been conducted. In DoDI 5000.2 this is referred to as a Post Deployment Production Review (PDPR). The CCA Policy Area provides a bibliography of all policy documents, applicable memos, federal laws and statutes for CCA certification and confirmation. Training Center Community Connection Risk-Based Oversight


The Defense Appropriations Act for FY 2009 (Public Law 110-329) did not reenact the provisions contained in the FY 2008 Act (Section 8068(c)).

As stated in the DoD CIO Memorandum, Clinger-Cohen Act (CCA) Compliance of Major Automated Informations (MAIS) for Fiscal Year (FY) 2009, March 24, 2009, DoD Component CIOs will, however, follow the guidance in Enclosure 5 to the DoD Instruction 5000.02, Operation of Defense Acquisition System, dated December 8, 2008, which states that for all programs that acquire information technology (IT), including a National Security System (NSS), at any Acquisition Category level, the Milestone Decision Authority shall not initiate a program or an increment of a program, or approve entry into any phase of the acquistion process, and the DoD Component shall not award a contract until:

  • The sponsoring DoD Component or PM has satisfied the requirements of Title 40/CCA;
  • The DoD Component CIO, or designee, confirms Titile 40/CCA compliance; and
  • For Major Defense Acquisition Programs and MAIS programs only, the DoD CIO also confirms Title 40/CCA compliance.

News: Risk-based Oversight for Title 40/CCA Compliance: This policy memorandum implements a risk-based approach for oversight of the requirements of Subtitle III of Title 40 of the United States Code (formally Division E of the Clinger-Cohen Act of 1996) for Major Automated Information Systems (MAISs) and Major Defense Acquisition Programs (MDAPS) in the Department of Defense. This policy is part of the evolving implementation of Title 40/CCA aimed at De-centralizing oversight, maximizing up-front involvement in the Information Technology (IT) investment process, and alleviating redundancies. Download the Policy.

Overview: The Clinger-Cohen Act Implementation Special Interest Area is dedicated to collecting and disseminating information about the Clinger-Cohen Act (CCA). CCA is a law that codifies best practices for the Program Management of IT Programs, and applies to all IT systems including National Security Systems (NSS). The requirement for CCA confirmation includes all ACAT programs.

NPS PM 06 041.pdf
Case Study7/9/2020 1:44 PM