Citizen Digital Services
Multi-agency, multi-stakeholder programs where procurement, compliance, and mission alignment determine success.
Inside this journey
-
Pre-Discovery
Ensure stakeholders, decision process, and compliance constraints are aligned before discovery.
-
Stakeholder Alignment
Confirm decision roles, timelines, compliance constraints, and success metrics across agency stakeholders.
Alignment Questions
Who Needs to Be in the Room?
- Who from your agency should be present for this discovery so we don’t miss critical perspectives?
- Who is the single point of accountability for decisions on scope, budget, and ATO (name/title if possible)?
- Are there external parties we should include or brief (OMB, CISA, grantor, congressional staff, state partners)?
- How do your stakeholders prefer to make decisions: consensus working groups, stage-gate reviews, delegated signoff, or executive memos?
- Tell us about a recent cross‑unit decision that moved quickly—what enabled that speed and alignment?
If This Misses the Mark, Who Will Notice First?
- Who will be publicly or operationally accountable if outcomes fall short or the rollout fails?
- How has that accountability shaped trade-offs in past modernization efforts (for example: scope reductions, extra security controls, or timeline compressions)?
- Which oversight metrics are most likely to trigger leadership inquiries (processing time, error rates, constituent complaints, cost per transaction)?
- Are there political or reputational risks tied to specific user groups or services that amplify accountability?
- Describe one past failure that drew attention—what happened, who reacted, and what changed afterward?
Timelines Aren't Aspirations — They're Deadlines
- What immovable dates or delivery windows must this project hit (funding cutoffs, statutory dates, reporting deadlines, ATO milestones)?
- Where do those dates originate (Congressional reporting, grant terms, internal fiscal timelines), and how negotiable are they?
- What is your target timeframe for achieving ATO and what typical ATO timelines has your agency experienced historically?
- If schedule slips 2–3 months, what concrete operational or funding consequences occur?
- When compressed timelines have produced quicker decisions before, what compromises were required and were they acceptable in retrospect?
Where Compliance Turns into Roadblocks
- Which specific security, privacy, or accessibility requirements have derailed past projects or created long delays?
- Which of the following compliance artifacts are already available for this project?
- Who currently holds ATO authority or is the Authorizing Official for services like this in your agency?
- What level of FedRAMP or hosting authorization is required or preferred for this platform?
- Describe a security finding that was hardest to close and how your team finally resolved it.
The Citizen Journey That Keeps You Up at Night
- Which parts of the citizen experience today cause the most complaints, escalations, or congressional attention?
- Which user populations are highest priority because the current process harms them most (LEP, low-connectivity, seniors, veterans, immigrants, people with disabilities)?
- What are your current baseline completion, abandonment, and average processing times for the top 1–3 transactions?
- How are identity proofing and verification handled now, and where do failures most often occur (proofing step, PII match, Login.gov integration, fraud flags)?
- Share a specific constituent story that illustrates the human cost of the current workflow.
What Would Make Leadership Celebrate This Win?
- If leadership could point to one measurable improvement after launch, what would that be and why would it matter politically or operationally?
- Which KPIs will leadership use to judge success and which of these are mandatory for reporting?
- Do any KPIs directly affect funding, oversight, or executive attention (for example, tied to scorecards or briefings)?
- What baseline data can you share now so we can model expected impact and draft acceptance criteria?
- Who needs to approve the success measures and the acceptance criteria for deployment?
Who’s Likely to Say No — and What Will Make Them Change Their Mind?
- Which groups are most likely to slow or block procurement, integration, or ATO (legal, procurement, ISSO, program office, unions, partner agencies)?
- What are the core objections they raise (risk, cost, vendor lock-in, data residency, operational disruption)?
- What proof points, artifacts, or staged milestones typically persuade skeptical stakeholders (pilot metrics, SSP, independent security test results, SLA language)?
- How flexible is your procurement path for startups or existing GSA/IDIQ vendors?
- Describe one negotiation lever that has worked to convert a no into a conditional yes in previous projects.
Small Bets, Big Proof: Proposed First Steps
- What is the smallest viable pilot or experiment that would prove value without requiring full ATO up front?
- Which specific metrics or types of user feedback from that pilot would convince you to scale (completion uplift, reduced helpdesk tickets, NPS/CSAT uplift, time saved)?
- What internal approvals or artifacts must exist before a discovery sprint can begin (funding, data access, security baselines, staff assignment)?
- What timeline would you be willing to commit to for a focused 6–8 week discovery sprint to produce outcomes and ATO‑adjacent evidence?
- At the end of the discovery sprint, what concrete deliverables and decisions would you require to move to SOW and pilot (e.g., SSP draft, success metric baseline, signed data access, stakeholder signoffs)?
-
Current State Mapping
Document existing citizen journeys, legacy systems, identity flows, language needs, and failure modes that block modernization.
Current State
Start Where Your Citizens Start
- Which public-facing service or program should we focus this discovery on?
- Who are the primary citizen populations using this service today?
- Roughly how many unique users or transactions does this service handle per month?
- Which channels do citizens currently use to start or complete this transaction?
- Describe, in a few sentences, the typical end-to-end steps a citizen follows today (from discovery to completion).
- Which device types dominate usage for this service?
Are We Fixing Symptoms or the Disease?
- What is the one recurring citizen pain you address for this service that still feels unsolved?
- Which metrics best demonstrate that this problem exists today?
- How often does this problem trigger manual work or back-office rework?
- Tell us about a recent example where this issue created political risk, program failure, or measurable harm (what happened, and who noticed?).
- How long has this issue persisted, and what short-term fixes have you tried?
- Who within the agency ultimately decides whether this problem gets prioritized for modernization?
Where Things Fall Apart (and Why You Keep Patching Them)
- When the service fails, what does a citizen actually experience—dead ends, lost documents, incorrect decisions, or something else?
- List the top 3 failure modes you’ve observed (for example: session timeouts, failed uploads, authentication errors, incorrect backend responses).
- How frequently do these failures occur?
- When a failure occurs, what is the typical recovery path and how long does it take (citizen-facing and back-office)?
- Which failure types cause the most staff time or public scrutiny?
- What monitoring, alerting, or observability tools do you currently rely on to detect these failures?
Who Are You Letting In — And Who Gets Locked Out?
- Are your identity and verification checks protecting citizens—or preventing eligible people from getting services?
- Which identity flows and verification methods are in use today?
- Do you currently integrate with Login.gov, and if so, how is it being used?
- Approximately what percentage of applicants fail automated identity checks and require manual review?
- What are the most common reasons citizens fail verification (e.g., lack of ID, name/address mismatch, poor document photos)?
- How do identity failures disproportionately affect non-English speakers, older adults, or people with low digital literacy?
- Who inside the agency is responsible for ATO and PII/privacy risk decisions related to identity flows?
When Language and Accessibility Become Barriers, Not Features
- If a non-English speaker or someone using a screen reader tried this service today, would they get help—or hit a wall?
- Which languages do you actively support for content and transactions today?
- Who manages translation and localization (in-house team, vendor, machine translation, or other)?
- What is the current Section 508 / accessibility status of this service?
- Have you conducted usability testing with people who rely on translations, screen readers, or have low digital literacy?
- How often do language or accessibility issues show up in your support logs, calls, or feedback channels?
- Share a concrete example where language or accessibility barriers prevented completion—what happened and how did you respond?
Who's Touching Your Back End — And Can They Keep Up?
- If your legacy systems could speak, what would they tell us are the fastest ways you get blocked from modernizing?
- List the core legacy systems and their primary function that must be integrated for this service to work (name and role).
- Which integration patterns are possible today between modern front-ends and those systems?
- Are there nightly jobs, batch windows, or reconciliation rules that prevent transactional APIs from being implemented?
- Which teams or roles control access to those systems and sample/test data?
- How long would it take to provision a representative test environment and sanitized data for development and ATO testing?
- Which compliance constraints (e.g., FedRAMP, FISMA, Privacy Act) most influence how we must build integrations?
If This Worked, What Would Change for Real People?
- Picture a constituent who completes this transaction without friction—what does their day look like afterward and why does that matter?
- Which measurable signals would prove this modernization succeeded for your program?
- What is an acceptable timeline to deliver an MVP that can be piloted with real citizens?
- Who must sign off for an MVP to move into pilot and production phases?
- What evidence do you require before accepting an MVP (e.g., accessibility report, penetration test, user research, ATO artifacts)?
- What are the single biggest risks that would cause you to stop the project, and how would you want those mitigated?
- What would give you confidence we can deliver the service and achieve ATO in the timeline you need?
-
-
Outcome Discovery
Define target outcomes, measurable success signals (completion rates, satisfaction), and time-to-ATO constraints.
Discovery Questions
Opening: Where Outcomes Start
- To begin, in one sentence: what is the single most important outcome this modernization must deliver for your constituents?
- Which top 3 outcomes would you prioritize if you had to choose now?
- Who are the primary constituent groups this outcome must serve (e.g., applicants, beneficiaries, caseworkers, third-party filers)? Please name and estimate relative volume if known.
- How soon do you expect to see a measurable signal that an outcome is being achieved?
- Tell a short story of a recent constituent interaction that illustrates the gap between current reality and your desired outcome.
If We Keep Doing What We're Doing, What Changes?
- What would happen to service delivery if current processes and systems remain unchanged for the next 12–24 months?
- Which program or oversight pressures make that scenario unacceptable (select all that apply)?
- Where do you see the biggest mission, reputational, or legal risk if outcomes are not improved?
- Which of these describes your current confidence in meeting stakeholder expectations without modernization?
- What would be the single most visible sign that the status quo is failing your constituents?
Hidden Signals: What Success Looks Like in Practice
- Most programs track outputs — not outcomes. If you had to name one outcome metric we’re probably missing, what is it?
- Which of these KPIs do you currently track and trust as accurate reflections of citizen experience?
- For each KPI you selected, what is a realistic target threshold we should aim for in the MVP (please list the KPI and target)?
- Which qualitative signals would convince you that citizens find the experience meaningfully better (choose up to 3)?
- How frequently should we report these signals to your team during phased rollout?
ATO Clock: What’s the Real Deadline (and Why It Matters)
- If ATO slips, what immediate program consequences do you fear most?
- What is your target ATO timeline for the initial deployment or MVP?
- Which of these are current barriers to achieving ATO on your timeline?
- What level of risk acceptance would you consider for an early, limited ATO (e.g., phased authorization with mitigations)?
- Who within your organization is ultimately accountable for ATO delivery and acceptance?
Where Citizens Actually Get Lost
- If you had to point to one exact step in the citizen journey that causes the most drop-off, which is it and why?
- Which user needs or constraints do we most often underestimate when designing the flow?
- What device split do your constituents use most often when interacting with your services?
- Describe one recurring backend failure or identity friction (Login.gov, ID proofing, legacy API) that forces manual work. How often does it occur?
- How do language needs and accessibility requirements currently influence abandonment or error rates?
Tradeoffs You’ll Have to Own
- You can’t maximize speed-to-ATO, zero operational change, and minimal cost simultaneously — which of these are you prepared to deprioritize if tradeoffs are required?
- Which deployment approach feels politically and operationally viable—big-bang, phased by function, or pilot by population? Why?
- What minimum security or compliance controls are non-negotiable for your stakeholders?
- If we proposed a phased authorization that delivers visible citizen impact quickly, what concerns would make you hesitate?
- How would you like us to present tradeoff options — a clear decision matrix, a recommended path with risks, or multiple scenario models?
Decision & Success Ownership: Who’s in the Fight
- If the program hits a roadblock, who do you expect to rally people, make tradeoffs, and sign acceptance decisions?
- Which partner roles must be staffed and cleared before an MVP can be accepted (e.g., ISSO, privacy officer, accessibility lead)?
- What concrete acceptance criteria would your team require to sign off on an initial release (please list the top 5)?
- How should we surface residual risks and POA&Ms so your leadership feels informed but not overwhelmed?
- Describe a past program where acceptance was successful — who helped make that happen and what made the decision feel safe?
Next Steps That Actually Deliver
- Most discovery engagements end with recommendations that sit in a slide deck — what would make this next discovery feel different and actionable to you?
- Which of the following immediate next steps would you prioritize right now?
- What artifacts or access must we have to start effectively (e.g., system diagrams, user data, clearance for staff)? Please list and indicate which are already available.
- How soon can your team commit to a short, dedicated discovery cadence (select earliest realistic start)?
- Finally, what would constitute a small, early win from discovery that would build confidence to proceed?
-
Solution Experience
Walk through outcome-driven scenarios that show how the platform reduces paperwork, improves completion, and meets accessibility and ATO needs.
Experience Meetings
- Solution Experience Prep & Current State Confirmation
- Outcome-Driven Citizen Journey Walkthrough (Benefit Application Scenario)
- Proof-of-Outcome: Paperwork Reduction & Completion Improvement Metrics Review
- Accessibility & ATO Assurance Workshop
- Validation, Acceptance Criteria & Pilot Launch Plan
- Assign owners for pilot execution tasks and data provisioning.
- Demonstrate with evidence how the platform produces the agreed future-state outcome for a representative citizen journey.
- Seller to deliver a short clip or guided script of the walkthrough and the mapping of steps to consequences within 3 business days.
- Agency to provide anonymized test data and confirmation of any privacy constraints for the pilot.
- Create a pilot checklist that lists acceptance criteria, success signals, and target thresholds for completion and satisfaction.
- Schedule pilot kickoff and identify the first cohort of users for the limited release.
- Restate Agreed Baseline Metrics
- Demonstrate credible, data-backed projections that the platform reduces paperwork and improves completion for the agreed scenario.
- Ensure stakeholders understand the assumptions and risks behind the projections.
- Reach a pilot decision and define the target success thresholds that will be used to evaluate it.
- Seller to provide a short metric model showing baseline, projected improvement, and cost/time savings with assumptions.
- Agency to confirm internal threshold values (e.g., minimum completion uplift percent) required to approve pilot progression.
- Both teams to document residual risks and mitigation owners in the project risk register.
- Recap Accessibility & ATO Success Signals
- Provide concrete evidence that the platform meets or has a clear remediation path for Section 508 and multilingual/mobile needs.
- Agree an actionable ATO roadmap and list of artifacts with owners and target dates tied to the pilot and production releases.
- Obtain stakeholder buy-in on accessibility and compliance acceptance criteria for pilot acceptance.
- Seller to deliver the current SSP snapshot, POA&M entries for the scenario, and a timeline to close outstanding items.
- Agency security and compliance owner to review and confirm any agency-specific ATO artifacts required within 5 business days.
- Accessibility lead to provide remediation plan and timeline for any failing checks observed during the session.
- Recap Proven Outcomes and Confirm Any Changes
- Lock final acceptance criteria and pilot success thresholds with explicit stakeholder confirmations.
- Commit to a pilot start date, scope, and owners with a clear monitoring and rollback plan.
- Ensure accountability through a documented RACI and escalation path for pilot execution.
- Publish the signed acceptance criteria, pilot plan, RACI, and monitoring dashboard link to the shared project space.
- Seller to provision the pilot environment and test user accounts; agency to validate user access before launch.
- Schedule first pilot metrics review and go/no-go checkpoint at a pre-agreed date after pilot launch.
- Produce and record one-sentence Current State agreed by stakeholders.
- Quantify at least two explicit consequences (cost, delay, risk) tied to the Current State.
- Agree one-sentence Future State outcome and the success signals that will be used to validate it.
- Confirm required artifacts and owners for the Scenario Walkthrough meeting.
- Capture and publish the one-sentence Current State, Consequence bullets, and Future State to the shared workspace.
- Agency team to provide one representative citizen persona, one sample PDF/form, and legacy API contract for the scenario.
- Seller team to prepare baseline metrics dashboard with current completion and drop-off metrics.
- Schedule Scenario Walkthrough and distribute agenda and pre-read materials 48 hours in advance.
- Agree measurable acceptance criteria and pilot scope for the scenario.
- Introductions & Meeting Objective
- Secure stakeholder validation that the shown experience addresses the specific problems previously identified.
- Recap Current State, Consequence, Future State
- Show Proof: Before vs After Projections
- Accessibility Proof: Live Tests & Remediation Plan
- Pre-work Review: Evidence Snapshot
- Read Acceptance Criteria & Success Signals Aloud
- Scenario Setup (Persona & Path)
- Pilot Scope, Timeline & Cohort
- Crystal Current State (One Sentence)
- Multilingual & Mobile Coverage
- Translate Improvements to Consequence Reduction
- Live Walkthrough: Citizen Start to Finish
- Tiebacks: Map Each Step to Elimination of a Current-State Consequence
- Roles, RACI & Escalation
- Sensitivity & Risk Assessment
- ATO Path & Required Artifacts
- Surface Consequence (Quantify Impact)
- Define Future State (One Sentence Outcome)
- Validation Checkpoints (Confirm Customer Intent)
- Decision Check: Pilot Go/No-Go and Target Thresholds
- Monitoring, Metrics Dashboard & Review Cadence
- Tiebacks: How Accessibility & ATO Deliver the Future State
- Confirm Success Signals & Acceptance Metrics
-
Solution Scope
Define modules (UX research, Login.gov, ID verification, legacy APIs, FedRAMP hosting), responsibilities, and acceptance criteria.
Scope Configuration
- Build responsive citizen portal UI
- Deploy mobile-responsive progressive web app
- Integrate Login.gov and ID verification
- Implement multilingual content and locale routing
- Deliver Section 508 accessibility remediation
- Develop legacy system API adapters
- Implement document upload, OCR, and storage
- Add e-signature and digital consent workflows
- Implement caseworker processing dashboard
- Deploy real-time analytics dashboards
- Configure FedRAMP cloud hosting and networking
- Implement automated notifications via email/SMS
- Deploy CI/CD pipeline with automated security scans
Scope Questions
Build responsive citizen portal UI
- Which primary user groups will use the portal?
- What is the expected peak monthly unique user volume?
- Is a mobile-first design required (prioritize small screens and touch)?
- Do you have an existing agency design system or branding guidelines to apply?
- Which core user flows must be implemented in the initial scope (list key pages and transactions)?
- What acceptance criteria should UI deliver (e.g., time-to-interactive, conversion/completion rate targets)?
Deploy mobile-responsive progressive web app
- Do you require PWA features such as installability and offline caching?
- What level of offline or intermittent connectivity support is needed?
- Which target platforms must be supported?
- Are push notifications or background sync required for mobile users?
- What performance targets should the app meet (e.g., TTI under X seconds)?
- Which browsers and minimum versions must be supported (specify if IE11 required)?
Integrate Login.gov and ID verification
- Will Login.gov be the primary authentication method or optional alongside agency SSO?
- What identity assurance level (IAL) or proofing strength is required for transactions?
- Have you selected an identity proofing vendor (e.g., ID.me, Jumio, Onfido) or will you evaluate options?
- Estimate monthly ID verifications and expected peak verification volume.
- Are there agency-specific identity or privacy constraints (e.g., PII handling, retention rules) that affect integration?
- What acceptance criteria indicate successful auth and proofing (e.g., verification rate, false positive thresholds)?
Implement multilingual content and locale routing
- Which languages must be supported at launch and which are planned later?
- Will translations be provided by the agency or require vendor-managed translation/localization services?
- Do you require dynamic translation of user-generated content or only static UI/content pages?
- Preferred locale routing strategy (how users are served language versions)?
- Are there accessibility or cultural format considerations per locale (dates, numbers, reading order)?
- Approximate number of content pages and translation volume (pages/words) for initial scope.
Deliver Section 508 accessibility remediation
- What is the current accessibility compliance status of your content and applications?
- Which accessibility standard is your target (WCAG version / Section 508 interpretation)?
- Do you require an external VPAT or third-party accessibility audit as part of acceptance?
- Which assistive-technology scenarios must be validated (e.g., screen reader, keyboard-only, voice control)?
- Do you want vendor remediation sprints for fixes, or just a gap report for agency to remediate?
- What are the acceptance criteria for accessibility (e.g., 100% critical issues fixed, VPAT score)?
Develop legacy system API adapters
- How many backend systems will need integration via adapters in the initial phase?
- What types of legacy interfaces exist (select all that apply)?
- Is documentation for the legacy systems available and up to date?
- Is real-time integration required or will batch/scheduled synchronization suffice?
- What authentication/authorization methods do legacy systems require for adapter access?
- What error handling, retry logic, and SLA expectations should adapters meet?
Implement document upload, OCR, and storage
- Which file types and maximum file sizes must be supported for uploads?
- Is OCR required for data extraction and indexation, and what accuracy targets apply?
- Where must documents be stored (FedRAMP cloud, agency on-prem, hybrid)?
- Are PII/PHI redaction, classification, or encryption-at-rest requirements in place?
- Is virus/malware scanning and content validation required at upload?
- What acceptance criteria indicate successful document processing (upload success rate, OCR accuracy, retrieval speed)?
Add e-signature and digital consent workflows
- Are digital signatures legally acceptable for the documents/processes in scope?
- Do you have a preferred e-signature vendor or must we propose options?
- Which documents or user actions require signatures or explicit consent?
- Is an audit trail, tamper-evident logs, and binding to identity proofing required?
- Do you need bulk signing, delegated signing, or caseworker-assisted signing workflows?
- What acceptance criteria should be used for signature workflows (completion rate, legal evidence, timestamping)?
Implement caseworker processing dashboard
- How many caseworker roles and access levels are needed at launch?
- What key tasks must the dashboard enable (triage, review, approve, communicate)?
- Do you need workload balancing, assignment rules, or SLA-driven queues?
- Should the dashboard integrate with existing case management or HR systems?
- What reporting and export formats do caseworkers need (CSV, PDF, API)?
- What are the acceptance criteria for caseworker efficiency and accuracy (throughput targets, error rates)?
Deploy real-time analytics dashboards
- Which KPIs must dashboards surface at launch?
- What data latency is acceptable for dashboard metrics?
- Do you need role-based dashboards with filtered views per user type?
- Will analytics integrate with an existing agency analytics/BI platform (e.g., Splunk, Tableau)?
- What retention window and export/archival requirements exist for analytics data?
- What acceptance criteria define success for analytics (accuracy, refresh rate, actionable alerts)?
-
Mutual Commit
Finalize SOW, milestones, acceptance criteria, ATO ownership, and commercial terms to enable execution.
Agreement Modules
- Statement of Work (SOW)
- Master Services Agreement (MSA)
- Task Order / Funding Instrument
- Milestones & Payment Schedule
- Acceptance Criteria & Final Acceptance Sign-off
- ATO Ownership & Security Responsibilities
- Data Processing & Privacy Addendum
- Change Order & Scope Control Agreement
- Staffing, Clearances & Subcontracting Plan
- Service Level Agreement (SLA) & Support Terms
- Intellectual Property & Licensing Terms
- Governance & Escalation Matrix
- Transition, Knowledge Transfer & Runbook Plan
- Termination, Renewal & Transition Assistance
-
Deployment
Operationalize rollout with readiness checks, sequencing, and validation for secure, measurable launches.
-
Pre-Deployment Readiness
Confirm environments, data access, cleared personnel, security artifacts, and test plans required for phased rollout and ATO.
Readiness Questions
Setting the Scene: Where We Stand
- Who is the program sponsor or primary point of accountability for this deployment? (name, role, best contact)
- What is the target go-live window you and your leadership are most aiming for?
- Which environments are currently provisioned and accessible to our team right now?
- What is the current ATO status for the system and any integrated components?
- Briefly describe any recent deployments, migrations, or environment changes that materially affect readiness (successes, surprises, timing).
What Could Stop This From Shipping?
- If we had to ship next month, what single technical or organizational constraint would force us to cut scope or delay launch?
- Which specific data sources or legacy APIs are most likely to be unavailable or unstable during rollout?
- Are there legal, data sharing, or MOA/MOU approvals still pending that gate access to production or real citizen data? If yes, list them and owners.
- How many personnel with required clearances are currently assigned to deployment tasks, and are they available full-time or part-time?
- Tell us about a previous compliance or integration issue that delayed a rollout—what happened and how long did it take to recover?
Who Actually Holds the Keys?
- Who can immediately grant access, approve emergency changes, or sign ATO-related documents when time is critical, and are they easy to reach?
- Please list system owners, the ISSO, the Authorizing Official (AO), and alternates with contact info (name + role + email/phone).
- Which personnel clearance or background investigation levels do members of the deployment team require?
- If a primary approver is unavailable, what is the formal delegation path for ATO and operational approvals?
- Do any contractors or third parties need sponsoring for PIV/CAC or other access before go-live? If yes, list vendor and access type.
How Safe Is 'Safe Enough'?
- Which required security or compliance artifact, if missing or incomplete, would force a stop to deployment?
- Which of the following security artifacts are already finalized and available to review?
- For artifacts not yet complete, estimate percent complete and target delivery date (e.g., 'SSP — 60% — 2026-06-15').
- Have residual risks been identified that will be tracked via POA&M post-launch? If yes, describe the top three and expected remediation timelines.
- Do remediation SLAs and vulnerability response targets align with hosting/FedRAMP requirements?
Can We Test Like Citizens Will Use It?
- If citizens used the service at scale tomorrow—on mobile, in another language, or using assistive tech—where would the experience likely fail first?
- Which test plans or test suites do you already have documented for citizen-centric scenarios?
- Which environments contain anonymized, production-like data suitable for realistic end-to-end testing?
- Have you completed accessibility testing with assistive technologies and real users who rely on them? If yes, summarize the highest-impact defects.
- What are the quantitative success thresholds you expect from testing (for example: completion rate, acceptable error rate, page-load targets)?
- Describe the rollback strategy and immediate mitigation steps if a phased release produces critical, user-facing failures.
What Does Day One Need to Look Like?
- If leadership asked for one artifact or metric 24 hours before launch to feel confident, what single thing would it be?
- Which monitoring and observability tools will be live on day one?
- Who will own on-call incident response for the first 30/60/90 days after launch?
- Which citizen support channels must be available at launch (select all that apply)?
- What are the acceptance criteria that must be satisfied to expand user populations beyond initial phase (please list measurable gates)?
- Which team will own initial success reporting (completion rate, satisfaction, ATO constraints), and how often will they report to stakeholders?
Phased Launch Map: Who Goes First and Why
- If you had to pick the safest 10% of users to test live right away, who would they be and why are they low risk?
- Which segmentation approaches do you favor for phased rollout?
- What gating criteria should be met before promoting to the next phase (examples: error rate thresholds, SLA achievement, critical security fixes closed)?
- What cadence between phases do you require and what minimal stabilization window should we observe after each phase?
- Who must sign phase-release authority (names and roles) and what concrete artifacts must we deliver to them for sign-off?
- What should the communications and public messaging look like for each phase (stakeholder briefings, citizen notices, media statements)?
-
Deployment Enablement
Schedule sprints, coordinate engineering, ops, and agency teams, and execute phased releases with monitoring and rollback plans.
-
Validation Checklist
Verify accessibility, identity flows, backend integrations, performance, and security; document results for acceptance.
Validation Questions
Start Here: The Program and People We're Solving For
- Which program, service, or customer journey is this project focused on?
- Who are the primary end users or constituent groups we must validate for (demographics, disability needs, language needs)?
- Roughly how many transactions or unique users do you expect to validate under an MVP or phased rollout per month?
- Who on your side will be the day-to-day contact for validation activities (name/title/role)?
- What is your target window for having the first validation artifacts submitted for ATO review (weeks/months)?
Why Does ATO Take Longer Than It Should?
- When you think about recent ATO efforts, what one bottleneck consistently stretched timelines (policy, evidence, testing, roles, vendor experience)?
- Which of these security artifacts has historically delayed your approvals the most?
- How long did your last ATO-involved project take from initial security scoping to final authorization (actual vs. expected)?
- Describe a recent ATO or security-review surprise that forced rework—what happened and how was it resolved?
- If we could eliminate one recurring cause of ATO delay for your agency, which would you choose and why?
Are Our Identity Flows Honest About Real-World Users?
- Where do identity checks typically fail for your constituents (registration, login.gov linkage, ID verification steps)?
- How often do identity failures lead to support calls or in-person visits?
- Which identity providers and verification vendors must we support or integrate with?
- What are the acceptance criteria for identity success (e.g., % of users verified on first attempt, time-to-verify)?
- Tell us about any population-specific identity challenges (e.g., no SSN, name changes, shared devices).
Where Do Back-End Integrations Break the Citizen Promise?
- Which legacy systems or APIs must be integrated for the core transaction to complete?
- How stable are those backend connections today (SLAs, error rates, maintenance windows)?
- Are there current contractual or technical limits (rate limits, throttles, read-only windows) that restrict test automation or load testing?
- What minimum set of backend endpoints must pass validation before we can declare integration success?
- Describe a past integration failure—what was the root cause and how long did recovery take?
Accessibility Isn’t a Checkbox—What’s the User Impact Today?
- Which accessibility standards and audits does your agency require for acceptance?
- How much accessibility testing and evidence do you need—automated scans, manual audits, user testing with assistive technology?
- Where are your highest-risk accessibility failures today (forms, file uploads, keyboard navigation, screen reader compatibility)?
- What evidence format does your acceptance board expect for accessibility (test scripts, recordings, remediation plan)?
- Have accessibility issues ever blocked a release at your agency? Tell us what that looked like.
What Performance Problem Would Make You Lose Trust Overnight?
- What are your performance targets for key transactions (page load, end-to-end transaction time, API latency)?
- Have you defined acceptable error budgets, rollback triggers, or SLA penalties for performance regressions?
- How do you currently load- and stress-test integrations that connect to legacy systems?
- Which monitoring and observability tools must be in place and accessible to your team for acceptance?
- Describe a moment when poor performance damaged constituent trust—what metrics or feedback alerted you?
Security Evidence: What Will Make Your Authorizers Sleep at Night?
- Which security assessments and tests do you require before acceptance (pen test, SCA, code review, vulnerability scans)?
- Who owns remediation and triage for discovered vulnerabilities—your agency, the vendor, or a shared model?
- How do you prefer vulnerabilities to be documented and tracked for acceptance (POA&M, tickets, weekly reports)?
- Are there specific compliance frameworks or baseline controls (FedRAMP Moderate/High, NIST 800-53 rev4/5) that must be demonstrated?
- Tell us about the most recent security item that required executive attention—what evidence finally closed it?
If We Run the Validation Checklist, What’s Acceptance Look Like?
- What specific checklist items must be green for you to sign off on a phased release (accessibility, identity, integrations, perf, security)?
- Which artifacts or deliverables do your approvers insist on seeing before acceptance (test reports, recorded user sessions, SSP, runbooks)?
- Who is the final acceptance authority for each checklist area and how do they prefer to receive evidence?
- What tolerance do you have for open low/medium findings at acceptance—must everything be remediated or can POA&M items remain?
- Are there required templates, naming conventions, or formats we must use when submitting validation evidence?
What Could Derail This in the Final Mile—and How Do We Prevent It?
- What are the top three risks you worry about during validation and early deployment?
- How should we alert you in real time if a critical validation test fails in staging or production?
- What rollback or kill-switch conditions would you require before our teams pause a release?
- Who needs to be on an on-call list during validation windows and what clearance must they hold?
- What support or evidence can we provide to reduce review cycles (pre-submission checklists, walkthrough demos, dry-run packages)?
Next Steps: How Do We Move From Checklist to Confidence?
- Which of these would you prefer as the next immediate activity to accelerate validation readiness?
- What internal approvals or procurement steps must be finished before we can start official validation testing?
- Do you have a preferred cadence for status updates during the validation period (daily, biweekly, weekly)?
- Who else should we involve now to avoid surprises later (legal, privacy officer, accessibility lead, contracts)?
- Is there anything else—hidden constraints, political timelines, or user considerations—that would change how we prioritize the validation checklist?
-
-
Success
Review outcomes against success signals, capture lessons learned, and maintain a shared tracker for issues and enhancements.
Success Reviews
- Success Review & Metrics Validation
- Lessons Learned Retrospective (Cross‑Functional)
- Issue & Enhancement Triage (Tracker Maintenance)
- Executive Outcome Briefing (Agency Leadership)
- Continuous Improvement & Monitoring Handoff
Issues & Enhancements
- Confirm communication plan for public reporting or oversight items.
- Integrate selected lessons into the program playbook and onboarding materials.
- Tracker Health Check
- Keep the shared tracker current and reflect realistic priorities and SLAs.
- Ensure every active item has an owner, timeline, and acceptance criteria.
- Prevent backlog drift by committing a portion of the next sprint to high‑impact fixes.
- Update the tracker statuses, owners, and SLA dates immediately after the meeting.
- Move agreed items into the delivery backlog and notify assigned engineering/product owners.
- Publish the triage minutes and the public‑facing status summary for agency stakeholders.
- One‑Sentence Current State & Consequence
- Secure leadership decisions required to close out success criteria or enable remediation.
- Align on any funding, staffing, or policy changes needed to meet outstanding signals.
- Opening & Objectives
- Circulate the executive decision log and updated dashboard within 24 hours.
- Initiate any leadership‑approved changes (funding requests, SOW amendments) and assign owners.
- Schedule a follow‑up executive checkpoint if material remediation is required.
- Monitoring & Dashboards
- Handoff monitoring and operational responsibilities with clear owners and SLAs.
- Establish a regular governance cadence for continuous improvement and reporting.
- Ensure agency staff have access, documentation, and training needed to operate the service.
- Grant dashboard and tracker access to designated agency personnel and verify permissions.
- Finalize and store runbooks and incident procedures in the agreed repository.
- Schedule the first three governance reviews and circulate invites and pre‑read materials.
- Confirm which success signals have been met, which require remediation, and which are deferred.
- Agree owners, deadlines, and acceptance criteria for any remediation work.
- Capture decisions that change contractual or rollout plans (SOW amendments, phased acceptance).
- Update the shared success tracker with validated metric values and formal acceptance statuses.
- Create remediation tickets with owners, acceptance criteria, and target dates for unmet signals.
- Distribute a one‑page decision log and agreed next steps within 24 hours.
- Retrospective Framing
- Document concrete, evidence‑based lessons that are actionable and measurable.
- Create a prioritized backlog of improvements with owners and expected outcomes.
- Agree a cadence for tracking implementation of lessons (e.g., 30/60/90 day check‑ins).
- Publish the retrospective report with categorized lessons and the prioritized improvement backlog.
- Assign owners and schedule follow‑up check‑ins for top three improvements.
- Runbooks & Escalation Paths
- Top‑Line Metrics
- Timeline Walkthrough
- One‑Sentence Current State
- Severity & Impact Assessment
- Risks & Required Decisions
- Success Signals Recap
- Prioritization & Scheduling
- What Went Well
- Governance & Review Cadence
- Data Review: Metrics vs Targets
- Acceptance Criteria Clarification
- Recommended Path & Ask
- Enhancement Roadmap Process
- What Could Be Improved
- Communications & Stakeholder Notifications
- Gap Analysis & Impact
- Opportunity Brainstorm & Prioritization
- Approvals & Next Steps
- Training & Knowledge Transfer
- Assign Owners & Define Next Steps
- Acceptance Decision & Next Steps