[Insert Project Name]

[Insert Project Name]

Detailed Design Review (DDR)[Insert Date of DDR]

[Insert Clarity ID]

Centers for Medicare & Medicaid ServiceseXpedited Life Cycle (XLC)

1

In preparation for your project’s Design Reviews, model diagrams with examples of System Architecture, Technology Stack, Security Design, Performance Design, Physical Design, and Multi Data Center Integration can be accessed from the following SharePoint site pages. Since these example diagrams are located on an internal SharePoint site, if you would like to see the example diagrams but don’t have access to the site, please request them from your CMS project manager/project lead. PDF: https://share.cms.gov/office/ois/Services/TRB/TRB%20Samples/TRB%20Sample%20Architectural%20Diagrams.pdfVisio: https://share.cms.gov/office/ois/Services/TRB/TRB%20Samples/TRB%20Sample%20Architectural%20Diagrams.vsd

Template Instructions

This document is a template for the Detailed Design Review (DDR).

Sections should not be removed from the presentation. If a section is not applicable, please indicate as such and provide an explanation.

Additional slides may be added to convey information that you feel is important to share that is not addressed by this template.

Please ensure that your presentation is Section 508 compliant by following the URL:

http://www.hhs.gov/web/policies/checklistppt.html

DELETE THIS SLIDE BEFORE FINALIZING YOUR PRESENTATION

2

Template Revision History

DELETE THIS SLIDE BEFORE FINALIZING YOUR PRESENTATION

Version Date Author Description of Changes

1.0 02/2010 K. Maenner, OIS/DITPPA Baseline Version

1.1 07/2011 C. Shaunessy, OIS/EASG/DITG Added EVM slides

2.0 5/2012 C. Shaunessy, OIS/EASG/DITG Reformatted for XLC

3.0 05/2014 C. Shaunessy, OIS/EASG/DITGIncluded new CMS logo, remove slide background graphics, CR 14-004.

3.1 08/2014 C. Shaunessy, OIS/DITG

Added/updated Performance Measures slide per CR 14-010. Removed references to specific SDD sections. Added Clarity ID to title slide. Added note about new model system architecture diagrams.

3.2 02/2015 S. Potu, OEI/DPPIG Updated CMS logo.

3

Presenters

Presenter’s Name Role

4

See this slide’s notes pages for slide instructions.

PDR Findings

[Identify any recommendations and/or findings from the PDR and their resolution.]

5

Project Information

Business Need[Insert condensed business need and drivers from Sections 4.1 & 4.3 of the Business Case or from the AR presentation]

Goals/Scope/Purpose[Insert condensed goals/scope from section 4.2 of the Business Case and the business and functional purpose from sections 3.1 & 3.2 of the Requirements Document or from the AR presentation]

Stakeholders[Insert stakeholder information from Section 4.4 of the Business Case or from the PSR presentation]

Cloud Services[Are you planning to use cloud services now or in the future?]

6

Proposed System

System Scope[Insert condensed system scope from Section 4.3.1 of the High-Level Technical Design.]

High Level Functional Requirements[Insert high level functional requirements from Section 4.3.3 of the High Level Technical Design.]

Summary of Changes[Insert condensed summary of changes of the current system from Section 4.3.4 of the High-Level Technical Design (if applicable).]

7

Response Data

System Security Level: [insert the System Security Level from Section 2.9 of the Information Security Risk Assessment.]

E-Authentication Level: [insert the E-Authentication Level from Section 2.10 of the Information Security Risk Assessment.]

[Please note if either of these assessments have changed since the PDR or if they have remained the same.]

8

Data Design

[Summarize the Logical and Physical Data Models for the application.]

9

User & Machine Readable Interface

[From the System Design Document, list the various user classes/roles associated with the system. For each user class/role, provide estimates of the total number of users anticipated, a maximum number of concurrent users, and the number of external users. Also include the inputs and outputs associated with each user class/role.]

10

System Architecture

[Insert the system architecture diagram from the Preliminary Design Review presentation, which depicts the overall, integrated structure of the system in terms of presentation, application and data regions including data storage and manipulation, user and external interfaces. If not available from the PDR, this information can be obtained from the System Design Document.]

11

Physical Design

[From the information contained in the System Design Document, insert a diagram depicting the physical hardware design.]

12

Software Design

[From the information contained in the System Design Document, provide information on each system software component, indicating the following:a) Services identifierb) Service based design, decomposition of services being used and built from the application

and data zonesc) Definition – the specific purpose and semantic meaning of the serviced) Responsibilities – the primary responsibilities and/or behavior of the service. What does

the component accomplish? What role does it play? What kinds of services does it provide to its clients?

e) Resources – a description of any and all resources that are managed, affected, or needed by the service. Resources are components external to the design such as memory, processors, printers, databases, or a software library. This should include a discussion of any possible race conditions and/or deadlock situations and how they might be resolved.

f) Reporting Design and Integration - if built in, provide details on data traffic and volumes

13

Security Design

[From the information contained in the System Design Document, insert a diagram depicting the security design.]

14

Performance Design

[From the information contained in the System Design Document, insert a diagram depicting the performance/reliability design.]

15

Internal Communications Design

[From the information contained in the System Design Document, insert a diagram depicting the internal communications design.]

16

System Integrity Controls

[From the System Design Document, provide design specifications for the following minimum levels of control and any additional controls as appropriate or necessary:a) Internal security to restrict access of critical data items to only those access

types required by users/operatorsb) Audit procedures to meet control, reporting, and retention period requirements

for operational and management reportsc) Application audit trails to dynamically audit retrieval access to designated

critical datad) Standard tables to be used or requested for validating data fieldse) Verification processes for additions, deletions, or updates of critical dataf) Ability to identify all audit information by user identification, network terminal

identification, date, time, and data accessed or changed.]

17

External Interfaces

[From the System Design Document and Section 6 of the Interface Control Document, if applicable, describe the interface(s) between the system being developed and other systems (e.g. batch transfers, queries, etc.), indicating the location of the interfacing system. Include the interface architecture(s) being implemented (e.g. wide area networks, gateways, etc.) and the interfacing mechanisms (e.g., MQ, Gentran, etc.). If remote connectivity is required, identify the method of access. Provide a diagram depicting the communications path(s) provided in Section 3, System Overview, of the System Design Document. The graphical representation should depict the connectivity between systems, showing the direction of data flow.]

18

19

Performance Measurement Area Technology

Technology Component

Measurement Category/ Grouping

Measurement Indicator Target

Benchmark (if applicable)

(See Notes) (See Notes) (See Notes) (See Notes) (See Notes)

Planned Tests

[Insert information on the planned testing from the Test Plan. Describe the various types of testing (test functions) to be performed.]

20

Features Not Being Tested

[From the Test Plan, list and describe the system functions/features not planned to be tested and explain why.]

21

Defect Management

[From the Test Plan, describe the defect resolution process to be implemented during testing, including the operational definition and assignment of appropriate impact/severity levels.]

22

Test Environment

[From the Test Plan, provide details and a graphical representation of the environmental components required to test the system, including hardware, software, communications, and any other resources used to configure the test environment, as well as any security considerations.]

23

Test Schedule

[From the Test Plan, list the milestone events and dates for all testing activities.]

24

Release Impacts

[From the Test Plan, list the milestone events and dates for all testing activities.]

25

Release Notification

[From the Release Plan, describe any release-specific communication that needs to occur.]

26

Data Conversion Approach

[From the Data Conversion Plan, describe the approach that will be used to extract, transform/cleanse and load data from the source to target destinations during the conversion/migration process.]

27

Data Conversion Schedule

[From the Data Conversion Plan, provide a schedule of conversion activities to be accomplished.]

28

Data Conversion Quality Assurance

[From the Data Conversion Plan, describe the strategy to be used to ensure data quality before and after all data conversions.]

29

Implementation

[From the Implementation Plan, describe the planned deployment, installation, and implementation approach.]

30

Project Management Update:Status

[Provide an update on the status of the project.]

31

Project Management Update:Risks & Issues

[Provide an update on the project risks and issues, including the probability of occurrence and the mitigation for each risk.]

32

Project Management Update:Cost & Schedule

• Cost• Schedule

33

See this slide’s notes pages for slide instructions.

Project Management Update:Deliverables Status

[Provide an update on the status of the deliverables required for the project as documented in the Project Process Agreement. Also provide an update on the status of your Information Security Certification & Authorization process.]

34

Conclusion of Detailed Design Review

for [insert project name]

35