IBM committed 'ethical transgressions' to win botched project

Big Blue bid way too low, but Gov incompetence was main reason for $1bn blowout

  • alert
  • submit to reddit

Top three mobile application threats

IBM has found to have acted unethically during a bid to win work developing a new payroll application for the Australian state of Queensland's Department of Health, but has not been held directly or solely responsible for the $AUD1bn blowout in costs on the project.

IBM's been under the microscope for its role in this project because it started life in 2007 as a $6m job. That became $27m and has now reached over a billion dollars, because the application is a dud: staff have been overpaid, underpaid, forced to repay money and sometimes not paid at all. With the health sector having a colossal and unionised workforce, those stories and the blowouts became political dynamite. That the only way to get the application working was to throw people at it – as of May 2012 1,010 people worked with the app and handled 92,000 forms a fortnight – meant the system had increased costs instead of producing savings.

Worst of all, despite the mess Queensland's government decided not to pursue IBM for damages, a scandal that meant when a new government formed an inquiry into the matter was a fine idea from both governance and political perspectives.

That inquiry's final report (PDF) emerged today and is not pretty reading for IBM or the State of Queensland.

Let's start with IBM, which as keen readers may recall found itself under investigation thanks to one Michael Burns, a former senior IBM executive who found himself consulting on the project to the Queensland government. Burns agreed with a policy to implement a prime contractor for the project and encouraged IBM to bid.

The report is not kind to Burns (referred to as 'Mr Burns' throughout), who the report says “entertained a distinct partiality for IBM and, indeed, displayed a bias in its favour”. That bias saw Burns adjust assessment criteria to favour IBM's bid.

IBM Global's s commercial and public sector, Lochlan James Bloomfield, also comes off badly, with the report saying he must have known that Burns “was behaving extraordinarily for a man charged with the responsibility of investigating a very substantial government IT program and guiding the procurement process for a contractor to take it over.” The report suggests Bloomfield's “emails to his superiors indicate that he understood that a valuable business opportunity was being offered to IBM which it should do its utmost to exploit. He cannot have thought the same favouritism was extended to his competitors.”

Bloomfield's competitors were Logica and Accenture, both of which were familiar with the Department and its operations, experience that made them well-placed to do the payroll job. But Burns encouraged IBM to bid too, and at some point IBMers also found themselves able to access information about their rivals' bids. There's a suggestion they used the information gleaned from those documents to underbid the pair.

IBM's lower price was the main factor in it winning the deal, but the report says “evidence gives rise to a suspicion that IBM offered a price to win the tender which did not genuinely express its estimation of the true costs involved. I cannot make a definitive finding to that effect but the evidence suggests that is a distinct possibility.”

The report is very clear that none of this activity was corrupt. Indeed, Burns' motives remain obscure as there's no evidence he stood to profit from supporting IBM.

What's crystal clear is that Queensland's procurement and project management processes were hopeless. The report finds that just one person with governance responsibility for the project raised objections to the odd procurement process and that those objections weren't acted upon. The State also offered a terrible brief for the project. Here's how Commissioner Richard N Chesterman describes it's work:

“The State did not adequately communicate to IBM the business requirements for the workforce of Queensland Health which would permit IBM to design a payroll system which accommodated the number and complexity of pay rules. IBM did not actively elicit information about those requirements which would have allowed it to design such a system. The result was ongoing disputes about scope which resulted in changes to the contract, increases in price, and delays to the implementation date.”

The project didn't go well, with partial releases proving inadequate, in part because software was taken live even though it was known to be unready.

Things went predictably badly and by 2010, Queensland wanted to be shot of IBM and received advice it could terminate Big Blue's contract and start lobbing flaming sueballs in its direction.

But the State decided not to do so and instead settled with the company “driven by assumptions that without IBM’s presence there was a substantial risk that the payroll system would fail utterly and that if the State insisted upon its contractual right to terminate, IBM would disregard its disengagement obligations and refuse to assist with the remediation and/or improvement of the system.”

The report says one of the State's negotiators were “timid”, capitulated during negotiations with IBM, and should instead have gone in hard because the State stood to gain tens of millions of dollars in damages.

Commissioner Chesterman makes many recommendations on how Queensland can improve its procurement practices to avoid such messes in future. He's also critical of the concept of shared services, saying this project's failure “may be the most spectacular example of all the unsuccessful attempts to impose a uniform solution on a highly complicated and individualised agency.”

Chesterman also says IBM should never have won the work, due to “ethical transgressions of its employees arising out of the use of Accenture’s information”, lack of scrutiny of its proposed price and because “Mr Burns’ intervention in the evaluation process distorted and seriously flawed the selection of the Prime Contractor”.

He concludes that “The replacement of the Queensland Health payroll system must take a place in the front rank of failures in public administration in this country. It may be the worst.”

The Reg is aware of none to match it in Australia, and few that paint a major global vendor in such a poor light. ®

SANS - Survey on application security programs

More from The Register

next story
Did a date calculation bug just cost hard-up Co-op Bank £110m?
And just when Brit banking org needs £400m to stay afloat
One year on: diplomatic fail as Chinese APT gangs get back to work
Mandiant says past 12 months shows Beijing won't call off its hackers
Whoever you vote for, Google gets in
Report uncovers giant octopus squid of lobbying influence
Lavabit loses contempt of court appeal over protecting Snowden, customers
Judges rule complaints about government power are too little, too late
MtGox chief Karpelès refuses to come to US for g-men's grilling
Bitcoin baron says he needs another lawyer for FinCEN chat
Don't let no-hire pact suit witnesses call Steve Jobs a bullyboy, plead Apple and Google
'Irrelevant' character evidence should be excluded – lawyers
EFF: Feds plan to put 52 MILLION FACES into recognition database
System would identify faces as part of biometrics collection
Putin tells Snowden: Russia conducts no US-style mass surveillance
Gov't is too broke for that, Russian prez says
Ex-Tony Blair adviser is new top boss at UK spy-hive GCHQ
Robert Hannigan to replace Sir Iain Lobban in the autumn
Alphadex fires back at British Gas with overcharging allegation
Brit colo outfit says it paid for 347KVA, has been charged for 1940KVA
prev story


Top three mobile application threats
Learn about three of the top mobile application security threats facing businesses today and recommendations on how to mitigate the risk.
Combat fraud and increase customer satisfaction
Based on their experience using HP ArcSight Enterprise Security Manager for IT security operations, Finansbank moved to HP ArcSight ESM for fraud management.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Five 3D headsets to be won!
We were so impressed by the Durovis Dive headset we’ve asked the company to give some away to Reg readers.
SANS - Survey on application security programs
In this whitepaper learn about the state of application security programs and practices of 488 surveyed respondents, and discover how mature and effective these programs are.