Chief Information Officer (CIO)
The Chief Information Officer (40 U.S.C. § 11315 (P.L. 107-217; P.L. 108-458 (Intelligence Reform and Terrorism Prevention Act of 2004) § 8401(4)) leads all aspects of BIS to include planning, directing, organizing, controlling, and coordinating the agency’s information technology (IT) and data enterprise. The CIO is also a member of the government-wide CIO Council (44 USC 3603 (P.L. 107–347 (E-Government Act of 2002))).
Laws designating the work of BIS includes but is not limited to: 40 U.S.C. SUBTITLE III —INFORMATION TECHNOLOGY MANAGEMENT (§§ 11101 – 11704); 44 U.S.C. CHAPTER 35 - COORDINATION OF FEDERAL INFORMATION POLICY; P.L. 107-314 (Bob Stump National Defense Authorization Act for Fiscal Year 2003); P.L. 107-347 (E-Government Act of 2002); P.L. 115-435 (Foundations for Evidence-Based Policymaking Act of 2018); P.L. 104-106 (Clinger-Cohen Act of 1996); P.L. 104-13 (Paperwork Reduction Act of 1995); P.L. 96-511 (Paperwork Reduction Act of 1980).
The current RRB approved organizational chart includes the following BIS sections:
Risk Management
Risk Management is led by the Chief Information Security Officer (CISO) and responsible for the agency's information assurance and cybersecurity. (44 U.S.C. § 3554 (P.L. 113-283 (Federal Information Security Modernization Act of 2014))).
Infrastructure Services
Infrastructure Services is composed of three groups: Systems Engineering, Networks Engineering, and System and Networks Operations. Infrastructure Services is responsible for the administration, engineering, operations, maintenance, and management of the agency’s mainframe and distributed platform environments. (47 U.S.C. Chapter 15 (P.L. 116-260 (Consolidated Appropriations Act, 2021))).
Enterprise Applications
Enterprise Applications is composed of five groups: Payment Services, Adjudication Services, Citizen-Centric Services, Collection Services, and Entitlement Services. Enterprise Applications plans and carries out systems analysis and programming services to support fiscal, taxation, master benefit records; the payment of annuities and unemployment/sickness benefits; claims adjudication, Medicare, and earnings functions; and systems analysis and programming services to support the Internet, Intranet, document imaging, and personal computer programming functions. Enterprise Applications performs the technical administration, management, and design of the RRB’s website and Intranet. (45 U.S.C. § 231 (P.L. 93-445 (Railroad Retirement Act of 1974); P.L. 107-90 (Railroad Retirement and Survivors' Improvement Act of 2001))).
Data Integrity and Governance
Data Integrity and Governance is led by the Chief Data Officer (CDO) and Chief Artificial Intelligence Officer (CAIO) and is responsible for the entire data enterprise; the CDO also is a member of the government-wide CDO Council (15 U.S.C. § 9401 (P.L. 116-283 (National Artificial Intelligence Initiative)); 15 U.S.C. § 9411 (P.L. 116-283 (National Artificial Intelligence Initiative)); 44 U.S.C. § 3506 (P.L. 107-347 (E-Government Act of 2002)); 44 U.S.C. § 3520 (P.L. 107-198; P.L. 115-435 (Foundations for Evidence-Based Policymaking Act of 2018)); P.L. 115-435 (Open Government Data Act)).
Policy & Compliance
Policy & Compliance is composed of three groups: Records Management, Privacy Management, and Project Management. Policy & Compliance supports the CIO for information resources management in fulfilling responsibilities required by the Federal Records Act, Paperwork Reduction Act, Privacy Act, Computer Matching and Privacy Protection Act, Federal Information Security Management Act, and various OMB directives. Policy & Compliance develops and enforces data administration policies and standards. Policy & Compliance guides and coordinates the RRB's forms, correspondence, and directives programs. (40 U.S.C. § 11315 (P.L. 107-217; P.L. 108-458 (Intelligence Reform and Terrorism Prevention Act of 2004)); 44 U.S.C. CHAPTER 31 - RECORDS MANAGEMENT BY FEDERAL AGENCIES (P.L. 94-575); 44 U.S. Code § 3504 (P.L. 90-620; P.L. 94-575; P.L. 104-13 (Paperwork Reduction Act of 1995); P.L. 117-219)).
Business Operations
Business Operations consists of three groups: Enterprise Architecture, Customer Support, and Administrative Services. (29 U.S.C. § 794d (P.L. 107-217; P.L. 104-106 (Clinger-Cohen Act of 1996); 40 U.S.C. § 11313 (P.L. 104-106); 40 U.S.C. § 11316 (P.L. 104-106)).
Innovation, Strategy, and Architecture
Currently under development (44 U.S.C. § 3505 (P.L. 107-347 (E-Government Act of 2002)).