CIOs face many pressures: increased scope, reduced timelines, trimmed budgets. After nearly 20 years as a CIO, I've learned a great deal about project success factors.
When faced with go live pressures, I tell my staff the following:
"If you go live months late when you're ready, no one will ever remember.
If you go live on time, when you're not ready, no one will ever forget."
I have hundreds of live clinical applications. Does anyone remember their go live date? Nope.
Were there delays in go live dates? Many.
With even the best people, best planning, and appropriate budgets, large, complex projects encounter issues imposed by external factors (new regulations, competing unplanned events, requirements changes) that cannot be predicted during initial project scheduling.
It helps no one -- the users, the business owners, or the IT department -- to slavishly adhere to a deadline when the project is not ready to go live.
I work on federal advisory committees in the Obama administration and truly believe in the goals of many administration programs: Meaningful Use, HIPAA Omnibus rule, and Affordable Care Act.
However, we've seen that in the interest of accelerating change, deadlines have been imposed that do not allow for sufficient testing, piloting and cultural change. The result is that haste makes waste.
As I've written in my blog many times, ICD-10 will become a crisis for the Obama administration. Payers and providers will not be ready by October 1, 2014. Documentation systems and clinician billing process changes will not be mature enough to support a successful go live. More time is needed. My experience with IT crises is that you can survive one at a time, but a succession of problems creates a pattern that users and oversight bodies will no longer tolerate. I hope the premature go live of the Health Insurance Exchange results in a review of ICD-10 go live dates.
Meaningful Use Stage 2 attestation criteria are good. The certification scripts need very significant revision. How did this happen? They were created in a rush to adhere to an artificial deadline, not reviewed by the federal advisory committees, and not piloted tested/revised. New regulation is needed fix them and that will take time. Again, the lessons of the Health Insurance Exchange should cause us to extend Meaningful Use Stage 2 deadlines by a year, deferring future stages of Meaningful Use until we have consolidated our gains and understood our successes/failures with current stages.
The Office for Civil Rights is an important watchdog of patient privacy. We all believe respecting patient privacy is one of our most sacred responsibilities. However, at times government auditors have enforced policy for which the technology and infrastructure of the country was not ready. Yesterday I received an email from Harvard Medical School noting that the laptop encryption software installed a few years ago was deemed too error prone and too hard to support so it would be retired. Luckily in 2013, encryption is natively supported in current releases of Mac OSX, iOS, Android, and Windows. The industry is ready to support robust device encryption now. However, enforcement/breach penalties related to encryption on mobile devices started years ago when products were as stable as the Health Insurance Exchange. We should have aligned enforcement with product maturity in the marketplace. Similarly the HIPAA Omnibus Rule contains provisions like the self-pay redaction requirement that no hospital has figured out how to support. However, enforcement is starting now.
Do we a see a pattern here? Policies are good. Policymakers are well meaning. Timelines are set in such a way that none of these activities (Health Insurance Exchange, ICD-10, Meaningful Use Stage 2, or HIPAA Omnibus Rule) have enough time for testing, piloting, and cultural change.
As I've written about previous in my post the Toad and the Snake, I'm not yet at that time in my life when I resist change or innovation. I'm simply an IT leader and physician in the trenches who knows that 9 women cannot create a baby in a month. There is a minimum gestation period for IT projects and our policymakers should learn from the lessons of the Health Insurance Exchange and re-calibrate the timelines shown in the graphic above so that everyone is successful.