Tim Worstall

Amateurs in Charge

So says the Telegraph leader on Government IT projects.

First, the high turnover rate among senior civil
servants means there is little continuity in the running of schemes.
The MPs found that half the senior civil servants in charge of IT
projects are doing such work for the first time. In an area where
expertise is invaluable, it seems – quite perversely – to be positively
discouraged. This "lack of relevant experience, combined with a regular
turnover of post-holders, adds unnecessary risk to the management of
IT-enabled change", observes the PAC.

The
committee is even more exercised by the stupefying level of neglect
shown by government ministers. The prudent expenditure of public funds
should be a priority for all ministers of the Crown. Yet the PAC has
discovered that in many of the most sensitive IT schemes, the senior
officials in charge had not held a single meeting with ministers to
discuss progress. This unforgivable laxity was found in 20 per cent of
all "mission critical and high risk" computer systems.

Well, yes, I take the point about the civil servants….but that also applies to Ministers. You get to be an MP by proving that you can lie effectively to the voters, kissing babies and making great show of your ability to understand and reflect their desires and foibles. Ministers are drawn from those who pass this test…and appointed on the basis  of the internal politics of the ruling party. At no point is there actually a test of competence in running an organization. We should not be surprised therefore when we end up with these very large organizations being run by those with no such competence.

While I see no viable alternative to democracy itself, the lesson from the above is that given the paucity of management competence the system implies, we should reduce that portion of the economy managed in such an incompetent manner to something proportional to the amount of expertise on offer. We can joke about having the odd whelk stall available, but being serious for a moment, what is there in the CV of John Reid that makes us think that he’s competent to manage  the implementation of the most complex ID card and national database system the world has yet seen?

Having left school at 16, Reid worked as a clerk at a Glasgow Law office, following this he attended the Open University in his mid-twenties to study a Foundation Course and then later attended the University of Stirling, gaining a Bachelor’s degree in history and a Ph.D in economic history, with a thesis on the slave trade written from a Marxist perspective[1].
After graduation he worked as a research officer for the Labour
Party and as a trade union organiser. He entered parliament at the 1987 general election as MP for the Motherwell North constituency.

This?

Patsy Hewitt, who one might think has at least some experience of the real world:

In this role she was a key player in the first stages of the
modernisation of the Labour Party, and along with Lord Hollick, helped
set up the Institute for Public Policy Research and was its deputy director 1989-1994. She became head of research with Andersen Consulting 1994-1997.

Has not exactly shone in charge of the world’s largest IT project to date (the NHS Spine) nor the more minor MTAS system now has she?

This solution looks good on the surface:

The common factor in all these cases is the sheer amateurishness of the
government machine when it comes to cutting a deal. If the men from the
ministry are incapable of driving a hard bargain, they should get
people in who can.

Yes, but those who can are off making a fortune in industry.

The only viable answer is that as the State is run, necessarily so, by incompetent managers, it really shouldn’t be trying to manage very much.

In

10 responses

  1. Kay Tie Avatar
    Kay Tie

    Tee hee, it’s fun watching it all crash and burn in slow motion, isn’t it?

    Reply
  2. Bob B Avatar
    Bob B

    We do need reports, and more reports, to bring attention to this until effective reforms are pushed through:
    To my personal knowledge as a long follower of media reports on failing, large-scale computer projects – and not just government projects [*] – for reasons of my last job before retirement in June 1998, specialist periodicals like Computer Weekly, the highly respected IT industry magazine for professionals, and The Economist have been going on about this scandalous waste on failing computer projects for years. Despite that, to all appearances no one in government takes any notice.
    For a taster, try this from FIVE years ago in The Economist for 2 May 2002 (sorry, subscription only):
    “Government IT disasters: IF GORDON BROWN is still basking in the apparently widespread approval for his plans to revive the National Health Service with a massive transfusion of cash, a small item of seemingly unrelated news last week, reported in Computer Weekly, should worry him. A leaked memo from the Lord Chancellor’s department indicated that Libra, a £319m IT project designed to link magistrates’ courts with other organisations, such as the police, customs and the Crown Prosecution Service, was on the brink of collapse. Libra’s problems are the latest in a long list of government IT horror stories (see table) which bode ill for the government’s ambitions. NHS reforms, like all public service improvements, depend heavily on IT. . . There is now a raft of Whitehall-wide guidelines aimed at trying to learn from past mistakes. These include: the need for projects to be ‘owned’ by one responsible and competent individual; recognition of the fact that projects are often over-ambitious and need to be broken down into bite-sized chunks; the realisation that the way people work has to change when new technology is installed; the importance of drawing up contracts that have the right mix of sticks and carrots to make vendors deliver on their promises; and, above all, the need for clear and precisely-defined objectives. . . ”
    http://www.economist.com/displaystory.cfm?story_id=E1_TTTTJJD
    In the years I’ve been following this, the government has launched a succession of new, failing IT projects costing many billions – like the notorious NHS database of personal medical records – in the face of professional warnings.
    On the NHS computer database, check out:
    http://news.bbc.co.uk/1/hi/health/6184043.stm
    “The expert in charge of the government’s ailing £12bn computer modernisation programme for the NHS might expect to face criticism from IT experts, disgruntled doctors and even political opponents. But this weekend, it was his own mother who revealed he failed his university computer studies course.”
    http://observer.guardian.co.uk/uk_news/story/0,,1946060,00.html
    [*] For a notorious example of a failed private sector computer project, try the Taurus Project for the International Stock Exchange:
    http://www.scit.wlv.ac.uk/~cm1984/qmp/failures/NINE.HTM

    Reply
  3. Kay Tie Avatar
    Kay Tie

    BobB, it’s this institutional incompetence that is our best guarantee of freedom. How can the Government spy on all of us when it does its IT so badly?
    The “trajectory” of this is that they will try, it will fail, and so many innocent people will be hurt by false positives that the system will be scrapped. It’s happened with the CSA, and MTAS, and we just have to watch the NFpiTITSINP system (or whatever that stupid NHS computer clusterfuck is called) and the National Identity Register go the same way.

    Reply
  4. Bob B Avatar
    Bob B

    Kay: “How can the Government spy on all of us when it does its IT so badly?”
    Believe me, I take the point but, however regretable it may be, the opponents of ID cards are simply not facing facts.
    It’s not just personal paranoia which leads me to believe there have been periods when I’ve been spied upon, including break-ins into my home in which, amongst other things, a file of old school reports was taken besides a number of advanced academic texts (which could only have a relatively small readership) as well as other personal effects.
    The school reports were of sentimental value to me and worthless to anyone else unless it was to support identity fraud. I don’t know how, but someone obtained a set of keys to my house and was letting themself in. And that’s not all. There have been times when I’ve experienced some amazing coincidences unless use was being made of public CCTV cameras to track where I was going. I’ve been told by some placed to know that face recognition software is now (disturbingly) effective – which is why full-length burqas are an excellent disguise.
    The trouble is that large scale indentity fraud is for real. I’ve mentioned before here that early one morning in January 2005 I had a phone call from a guy complaining that I’d not sent him the computer memory he had bought from me on eBay. I’d not been on eBay, let alone sold any computer memory chips there but the vendor, who failed to deliver, had left my name and phone number as the contact reference. Fortunately for me, the purchase payment was made into a PayPal account and I don’t have a PayPal account.
    The fact is that I’m quite often and reasonably asked for proof of identity when applying for various retirement benefits or need to collect a parcel from the Royal Mail sorting office because I was out when an attempt was made to deliver it. The present ludicrous situation is that showing a recently receipted utility bill is taken as proof of personal identity.
    Another inescapable if unpalatable fact is that in Britain, we already have over 4 million CCTV cameras installed in public places. Emails and the time and target of phone calls are routinely recorded and have already been cited as evidence in court cases. Speed and congestion charge cameras track vehicle movements. Oyster cards track movements on public transport.
    Of course, there are inevitable concerns that ID cards made result in yet another multi-billion botched computer project but there is certainly a problem of identity fraud. Regardless of ID cards, passports are already set to include personal biometrics which will be kept on some database. The police are gradually building a national database of personal DNA records because they routinely take and file a DNA swab when anyone is arrested and the file is no longer destroyed in the event of an acquittal.
    When I visit my GP – a young guy who went to the same excellent school down the road, which my son attended, before going on to medical school – he looks up my medical records on a computer screen.
    On one occasion, I asked where the computer database with my records was kept and he had absolutely no idea. There’s nothing especially untoward about my medical records at my age but that’s not true for everyone and access to medical records could leave some very vulnerable to blackmail attempts – think on it: someone is up for a job and the prospective employer or a rival could be interested in records of past treatments for STDs, abortions, prescriptions for anti-depressants or other mental health ailments etc.
    That’s the reality nowadays already. In additional to all that, from time to time my PC is seriously hacked – perhaps because I can post messages to online comment columns like the one which include documentary links that some find embarrassing.

    Reply
  5. Umbongo Avatar
    Umbongo

    Don’t let’s be partisan about this. The present leader of the Conservative Party has had one job outside politics: a particularly undistinguished career as Director of Carpets and PR at Carlton Communications as recalled by Jeff Randall in the Telegraph.

    Reply
  6. Stephen Avatar
    Stephen

    Yes, and when the present leader of the Conservative Party takes his place in power he can be judged on the exercise of that power; until then it doesn’t really matter if he was the tea boy.

    Reply
  7. Kay Tie Avatar
    Kay Tie

    Bob, ID cards won’t help one whit with any of those situations you quoted. The ID card scheme is only (theoretically) secure if you IN PERSON turn up to conduct the transaction AND the other side has a fingerprint reader to verify you. All other transactions are open to the same abuse they are now.
    Even your Post Office parcel collection example is no more secure: someone can make up a piece of plastic and pretend it’s your ID card because the Post Office will not be fingerprinting people to collect parcels* so will not be able to verify whether the card holder is you.
    The only thing that ID cards and ID fraud have in common is the letters “I” and “D”. The cards will not stop the fraud. In fact, like with Chip-and-PIN, they may well worsen security because people assume they can’t be faked and become less wary.
    It is a great lie that ID cards are going to help. It is important to understand what is being proposed. The ID card project is like HIPs in so many ways, except a thousand times more expensive.
    *I will explain if anyone is truly interested.

    Reply
  8. Bob B Avatar
    Bob B

    Kay: ” . . Even your Post Office parcel collection example is no more secure: someone can make up a piece of plastic and pretend it’s your ID card because the Post Office will not be fingerprinting people to collect parcels* so will not be able to verify whether the card holder is you. . . ”
    I’m not convinced of all that. I’ve a Microsoft computer keyboard with a small window for fingerprint recognition which effectively functions as an extra system password to access the PC. The outfit is nothing special, I bought it down at the local PC World superstore.
    Presumably, it wouldn’t be too difficult for the Royal Mail sorting office to have something similar to check on the biometrics included in ID cards. At least that would be more secure than me having to flash a recently receipted utility bill to establish my identity.
    I think the whole campaign against ID cards has gone way over the top. The NHS database of personal medical records is a far greater threat to personal privacy and only the medics have gone out on a limb to hightlight the risks to protecting the confidentiality of patient records.
    The fatcs are: (1) passports are set to include biometrics anyway so what’s all the fuss about ID cards? (2) the police are slowly building a national database of personal DNA profiles from swabs taken from anyone arrested. (3) A selection of those arrested for terrorist offences and social security fraudsters have multiple identities – ID cards would render that more difficult.

    Reply
  9. Kay Tie Avatar
    Kay Tie

    “Presumably, it wouldn’t be too difficult for the Royal Mail sorting office to have something similar to check on the biometrics included in ID cards”
    Yes, but remember, this is a GOVERNMENT fingerprint reader. Do you think the IT procurement in Government is going to use something readily off-the-shelf, or something custom and expensive?
    “The NHS database of personal medical records is a far greater threat to personal privacy and only the medics have gone out on a limb to hightlight the risks to protecting the confidentiality of patient records.”
    And what do you think will be used to index these records? That’s right, your ID card. The fact that no data will be stored on the card is missing the point: it’s a snip to use the ID card to look the records up on all those databases. Once a single ID value indexes all the databases, they effectively become one super large database that can at a single point be used to bring up and process everything about you. Tying your tax records to your mental health records to your council tax records to your police records. All kinds of interesting information can be inferred. Right now that doesn’t work – it requires that everyone has a “gold standard” ID.
    “(1) passports are set to include biometrics anyway so what’s all the fuss about ID cards?”
    This is exactly what the No2ID campaign predicted. There is no IATA requirement to for fingerprints in passports (no standards for it, in fact). But the Government increases the costs for passports, decides to collect fingerprints, blames the IATA, then hopes that the public will say “passports are set to include biometrics anyway so what’s the fuss about passports?”. A classic bit of “watch the shiny penny, look at the penny, don’t look at the man behind the curtain”. You fell for it.
    “(3) A selection of those arrested for terrorist offences and social security fraudsters have multiple identities – ID cards would render that more difficult.”
    No it wouldn’t. It’s a snip to get a false identity: you just apply for a real card using fake documentation. Then once you’ve got your “gold standard” ID you go where you like, and people don’t even bother to check that rucksack with TATP because, well, he had a valid ID, didn’t he?
    There is a zero level of thinking about ID cards. You can’t expect ministers to think the details, not with a Prime Minister that famously can’t load his iPod, but you would hope that civil servants would do some logical analysis. Maybe they did, which explains why Gordon Brown ordered the gateway review documents on the ID card scheme to be shredded rather than comply with the FOI order to publish them.

    Reply
  10. Bob B Avatar
    Bob B

    OK – the consequences are that identity fraud will continue to flourish unchecked and, presumably, receipted utility bills will continue to be accepted as proof of identity when I apply for retirement benefits and collect parcels from the Royal Mail.

    Reply

Leave a Reply

Discover more from Tim Worstall

Subscribe now to keep reading and get access to the full archive.

Continue reading