Skip to main content

Geospatial governance distilled

Governance is among the primary levers used by GIS managers in their never-ending quest to improve the quality of geospatial data, content and solutions provided to their organization. It offers a formal structure for making and managing decisions about the long-term direction of a geospatial program and a mechanism to handle the day-to-day issues that inevitably arise when managing a complex enterprise system and capability. When done well, governance empowers managers with the oversight and authority required to ensure that their organization's geospatial program meets its mandate.

Over the past several years, colleagues and I at Esri Canada have worked with various organizations on their geospatial governance models—including local and regional government agencies and organizations from heavy industry and the private sector. The lessons from those engagements have proved invaluable in helping us formulate and refine our thinking on the topic, and we've taken steps to synthesize this knowledge into frameworks that help others with their own governance endeavours. Some of this material has ended up in past blog posts (here, here and here).

Those efforts, I'm confident, have helped to bring greater awareness to the topic of governance and its relevance to the geospatial industry. However, despite those efforts—or perhaps because of them—governance remains a difficult topic. Conceptually, governance is challenging because of the complexity and sheer scope of processes to consider when attempting to devise an appropriate governance model. And in practice, it's even more difficult due to the alignment and agreement required among those with a stake in the geospatial program—be it data or systems ownership or the long-term direction of the program itself. In fact, studies have shown that organizations often leave geospatial governance to other domains like IT governance (if they do it at all)—and much of it comes down to complexity and coordination challenges.

For better or worse, you need geospatial governance. A geospatial program of any significant size, at some point, will need clarity about who has rights to what and who makes those decisions. The trick is to figure out what aspects of your program to focus on and what controls you need to implement. To help make this process easier, we've taken our previous frameworks and put together a simplified version that distills geo-governance into a set of generalized components. The goal is to provide a tool that helps you identify what you're missing and where you need to focus to arrive at a governance model that works for you.

Geospatial Governance Framework

Roles, processes and control mechanisms used by organizations to govern geospatial programs.

We've also created a downloadable image version of this framework.

Structure: Roles, committees and division of authority

Strategy

Direction and approach

  • Strategy owner
  • Executive sponsor
  • Program steering committee
  • Innovation sub-committee

Technology

Apps and infrastructure

  • Application owners
  • Portfolio owners
  • Vendor representatives
  • Technology sub-committee

Data

Content and maps

  • Data owners
  • Data stewards
  • Data custodians
  • Data sub-committee

Delivery

Services and operations

  • Service line owners
  • Project owners
  • Services sub-committee

Workforce

People and skills

  • Practice leads
  • Partner representatives
  • Community of practice

Investment

Budget and resources

  • Budget owners
  • Project portfolio sub-committee
  • Budget approval board

 

Controls: Policies, procedures, standards, plans and guidelines

Strategy

Direction and approach

  • Geospatial vision
  • Guiding principles
  • Geospatial strategic plan
  • Governance charter
  • Stakeholder matrix

Technology

Apps and infrastructure

  • Target architecture
  • Integration standards
  • Technical Roadmap
  • Security policy
  • Upgrade principles

Data

Content and maps

  • Spatial data inventory
  • Data lifecycle plan
  • Cartographic standards
  • Metadata standards
  • Open data guidelines
  • Access and usage policy
  • Privacy policy

Delivery

Services and operations

  • Service catalogue
  • Service level agreements
  • Operational agreements
  • Project charters
  • Business continuity plan
  • Communication protocol

Workforce

People and skills

  • Professional development guidelines
  • Geospatial skills matrix
  • Recruitment plan
  • Succession plan
  • Role definitions

Investment

Budget and resources

  • Business case template
  • Benefits register
  • Project prioritization framework

 

Processes: Management activities and administrative functions

Strategy

Direction and approach

  • Long-range planning
  • Strategic communications
  • Risk mitigation
  • Approval processes

Technology

Apps and infrastructure

  • Business capability mapping
  • Access approvals
  • Architectural approvals
  • Upgrade process

Data

Content and maps

  • Data publishing
  • Data collection
  • Quality control
  • Data model management

Delivery

Services and operations

  • Service request process
  • Project forecast
  • Project health checks
  • Project status reporting
  • Change management plan
  • Maintenance calendar
  • Service communications

Workforce

People and skills

  • Performance reviews
  • Mentorship process
  • Talent outreach

Investment

Budget and resources

  • Budgeting process
  • Funding approval process
  • Out of budget review process

 

Performance: Measures and monitoring systems

Strategy

Direction and approach

  • Goal achievement
  • Stakeholder engagement
  • Benefits realization
  • Business/IT alignment
  • Strategic goal dashboard

Technology

Apps and infrastructure

  • Security compliance
  • Solution availability
  • Unplanned incidents
  • Adoption rate
  • Capabilities supported
  • Total cost of ownership
  • Technology performance dashboard

Data

Content and maps

  • Standards compliance
  • Confidence in data
  • Data usage
  • Open data distribution
  • Defined stewards & custodians
  • Data performance dashboard

Delivery

Services and operations

  • Project delivery time
  • Service delivery time
  • Service level compliance
  • Service satisfaction
  • Service performance dashboard

Workforce

People and skills

  • Training completed
  • Skills competency
  • Partner effectiveness
  • Staff satisfaction
  • Workforce performance dashboard

Investment

Budget and resources

  • Annual investment
  • Project return on investment
  • Innovation spend
  • Benefits realized
  • Investment dashboard

 

The framework covers six foundational domains, each representing a defining aspect of your geospatial program. These are areas requiring focused attention and careful decision making. I've discussed these domains at length in previous articles, but in summary, they cover areas related to direction setting and funding (Strategy and Investment), geospatial technology and content (Technology and Data), and services and human resources (Delivery and Workforce).

The purpose of your governance model is to establish a sufficient level of oversight across each domain to ensure that your geospatial program reaches its objectives. That means determining 1) who is accountable for the critical decisions across each domain; and 2) the controls, processes and measures that create the desired system of control. In our framework, we divide this into four major components.

Structure. The structure of your governance model determines the division of authority across each of the six domains. The purpose is to assign oversight responsibilities to individuals and teams that have the primary stake in that domain. Usually, no single person has authority over a specific domain, so the decision structure typically manifests as a network of committees, sub-committees and working groups. The trick is figuring out the right mix of stakeholders to serve on the committees in a way that creates oversight but also respects your organization's decision making style and culture.

In the framework, we've identified a selection of governance roles and committees that organizations routinely implement. It's not an exhaustive list or the only way to structure your governance model by any means, but it serves as a common starting point. In practice, you'd assign individuals to roles and create groups that align with your situation. But in all cases, your job is to identify the critical roles, outline the responsibilities and key decision rights for each role, arrange roles into groups and define a group-level mandate, and articulate the relationships and interdependencies amongst the groups.

Controls. Decisions made by stakeholders are typically compiled into documents that formalize governance decisions into standard practice. This includes policies, procedures, strategic plans, standards and operating guidelines. These controlling artifacts enshrine key decisions into an agreed-upon set of rules and regulations that govern day-to-day operations as well as future plans. The intention is to encourage behaviour among people and systems involved in your geospatial program that aligns with your program's objectives.

Examples of controls for the strategy and investment domains include strategic plans, governance charters and project prioritization frameworks. On the technology and data side, there are reference technology architectures, data usage policies and cartographic standards. Possible governance controls for the workforce and services domains include a geospatial skills matrix, mentorship guidelines, service catalogues and service level agreements. As a whole, your governance controls form an operational bounding box within which your geospatial program functions.

Processes. Governance is an ongoing activity, so having clearly defined processes is essential to ensuring your program remains a going concern. For geospatial programs, we're primarily concerned with domain-specific processes that maintain and enforce matters like system performance, spatial data integrity and service quality, as well as processes that cut across multiple domains for things like change communication and issue escalation.

Typically, organizations initially focus on efforts that smooth out their decision making process. This often involves processes for recommending and approving new solutions or technology investments. These kinds of processes help with overcoming issues related to funding decisions. Beyond this, many organizations focus on establishing methods for dealing with critical service disruptions. For example, a medium-sized city organization we worked with developed a process to provide manual backfill support when their mapping platform failed to meet uptime requirements. This is a nice example of a process that supports a control (uptime standard) implemented through the governance structure.

Keep in mind that a governance process is different from a functional workflow. A workflow simply illustrates steps to complete a task. For example, you might define a workflow for publishing a new production map to an external corporate site. If there are steps in the process that enforce rules defined via the governance controls, then this could be construed as an important governance process. But if it's just about describing a series of steps to make it easier for people to complete a task, then I'd classify this as more of a functional workflow than a critical governance process.

Performance. The purpose of your governance model is to ensure that your geospatial investment delivers business results. That means that users and stakeholders derive real value from the solutions and services offered through your program, and the constraints of risk and resource utilization are understood and well-managed. In short, governance is about performance. How will you know if your geospatial program is delivering acceptable performance? You need to measure it.

The key here is to select performance indicators that demonstrate that your governance controls are working. Example strategic performance measures include the % of funded projects that are aligned with the geospatial program's strategic objectives. Platform access measures might consist of the number of users accessing a particular solution or map service. A data stewardship measure could be the % of data assets with an identified owner. The point is that the metrics you select indicate your geospatial program's performance against a specified standard.

I'd also include systems you use to track and monitor performance measures as part of this governance component. The City of Calgary, for example, developed a dashboard to monitor the system health of their geospatial environment. The dashboard tracks metrics like service availability and database access request and serves as an excellent governance tool for tracking platform technical performance. You can create dashboards such as this to track any performance measure—technical or non-technical.

Using the governance framework

To use the framework, don't attempt to tackle each and every item in the list. Instead, use it as a simple scorecard to help you 1) prioritize your program's most important governance items, 2) consider the maturity of each item and 3) develop a plan to address the gaps.

Geospatial Governance Framework: Maturity Scorecard

Use the governance framework to assess the maturity of your organization's geospatial governance capabilities and plan targeted improvements.

We've filled in the scorecard below as an example. A (1) beside an item indicates that in the example organization, it is well-defined and effectively implemented. A (2) beside an item indicates that it is partially defined with moderate implementation. A (3) beside an item indicates that it is poorly defined with limited implementation. (N/A) indicates that the item doesn't apply for the example organization.

We've also created a downloadable image version of this scorecard that uses colour coding to indicate the status of each item.

Structure: Roles, committees and division of authority

Strategy

Direction and approach

  • Strategy owner (2)
  • Executive sponsor (2)
  • Program steering committee (3)
  • Innovation sub-committee (N/A)

Technology

Apps and infrastructure

  • Application owners (3)
  • Portfolio owners (doesn’t apply)
  • Vendor representatives (N/A)
  • Technology sub-committee (3)

Data

Content and maps

  • Data owners (3)
  • Data stewards (1)
  • Data custodians (1)
  • Data sub-committee (3)

Delivery

Services and operations

  • Service line owners (N/A)
  • Project owners (1)
  • Services sub-committee (3)

Workforce

People and skills

  • Practice leads (N/A)
  • Partner representatives (N/A)
  • Community of practice (3)

Investment

Budget and resources

  • Budget owners (1)
  • Project portfolio sub-committee (2)
  • Budget approval board (1)

 

Controls: Policies, procedures, standards, plans and guidelines

Strategy

Direction and approach

  • Geospatial vision (1)
  • Guiding principles (N/A)
  • Geospatial strategic plan (2)
  • Governance charter (3)
  • Stakeholder matrix (N/A)

Technology

Apps and infrastructure

  • Target architecture (N/A)
  • Integration standards (N/A)
  • Technical Roadmap (2)
  • Security policy (2)
  • Upgrade principles (3)

Data

Content and maps

  • Spatial data inventory (2)
  • Data lifecycle plan (N/A)
  • Cartographic standards (1)
  • Metadata standards (1)
  • Open data guidelines (N/A)
  • Access and usage policy (2)
  • Privacy policy (N/A)

Delivery

Services and operations

  • Service catalogue (3)
  • Service level agreements (N/A)
  • Operational agreements (N/A)
  • Project charters (2)
  • Business continuity plan (N/A)
  • Communication protocol (2)

Workforce

People and skills

  • Professional development guidelines (2)
  • Geospatial skills matrix (2)
  • Recruitment plan (N/A)
  • Succession plan (N/A)
  • Role definitions (N/A)

Investment

Budget and resources

  • Business case template (N/A)
  • Benefits register (2)
  • Project prioritization framework (2)

 

Processes: Management activities and administrative functions

Strategy

Direction and approach

  • Long-range planning (1)
  • Strategic communications (N/A)
  • Risk mitigation (3)
  • Approval processes (N/A)

Technology

Apps and infrastructure

  • Business capability mapping (N/A)
  • Access approvals (2)
  • Architectural approvals (N/A)
  • Upgrade process (3)

Data

Content and maps

  • Data publishing (N/A)
  • Data collection (3)
  • Quality control (2)
  • Data model management (N/A)

Delivery

Services and operations

  • Service request process (3)
  • Project forecast (N/A)
  • Project health checks (1)
  • Project status reporting (N/A)
  • Change management plan (2)
  • Maintenance calendar (N/A)
  • Service communications (N/A)

Workforce

People and skills

  • Performance reviews (1)
  • Mentorship process (N/A)
  • Talent outreach (2)

Investment

Budget and resources

  • Budgeting process (1)
  • Funding approval process (1)
  • Out of budget review process (2)

 

Performance: Measures and monitoring systems

Strategy

Direction and approach

  • Goal achievement (2)
  • Stakeholder engagement (1)
  • Benefits realization (N/A)
  • Business/IT alignment (N/A)
  • Strategic goal dashboard (3)

Technology

Apps and infrastructure

  • Security compliance (2)
  • Solution availability (N/A)
  • Unplanned incidents (N/A)
  • Adoption rate (3)
  • Capabilities supported (3)
  • Total cost of ownership (2)
  • Technology performance dashboard (N/A)

Data

Content and maps

  • Standards compliance (3)
  • Confidence in data (N/A)
  • Data usage (2)
  • Open data distribution (N/A)
  • Defined stewards & custodians (1)
  • Data performance dashboard (2)

Delivery

Services and operations

  • Project delivery time (2)
  • Service delivery time (N/A)
  • Service level compliance (N/A)
  • Service satisfaction (2)
  • Service performance dashboard (3)

Workforce

People and skills

  • Training completed (1)
  • Skills competency (N/A)
  • Partner effectiveness (N/A)
  • Staff satisfaction (1)
  • Workforce performance dashboard (N/A)

Investment

Budget and resources

  • Annual investment (1)
  • Project return on investment (N/A)
  • Innovation spend (N/A)
  • Benefits realized (2)
  • Investment dashboard (N/A)

 

Prioritize. First, look at the six governance domains. Which of these areas is a priority for you? Usually, these are the areas of greatest concern or where you have a significant, potentially disruptive issue. Narrow it down to the top one or two domains to serve as a starting point. From experience, most organizations focus on data governance to start—particularly in establishing controls concerning data usage and quality. Many others sprinkle in some aspects of strategy and investment governance, such as establishing a strategic plan and formalizing funding guidelines.

Once you've sorted out your focus areas, run through the four governance component categories (i.e., structure, controls, processes and performance) and flag the components you currently have in place and the components you're missing that you feel are acutely needed. What you're doing is teasing out the critical pieces from the framework to create the basis of your initial governance model.

Evaluate. The next step is to consider the relative maturity of each priority governance component. You don't need to develop a rigorous maturity scale to do this. All you're doing is identifying areas of strength and weakness. I've used (1), (2) and (3) (and in the image version, red, yellow, and green) in the example to illustrate this. The key is the areas marked with a (3). These are components with a low level of control, potentially ad-hoc processes, and limited performance measures or set decision rights. These are the highest priority gaps to address.

Plan. Once you've completed the evaluation, you build out your action plan. Usually, this is done by packaging similar governance components into projects that you execute sequentially. Most organizations start with the structural components first. There's often a significant amount of interdependency between the roles and committees involved in your decision structure, so a single project to establish an overall working structure is a prudent starting point. After that, focus on higher-risk controls or processes. This could include the development of data security or privacy policies or escalation processes for resolving disputes over data or application access. Finally, develop performance metrics and implement performance monitoring systems to instantiate measurable management within your governance model.

Governance is a complex and multi-layered topic—too broad for a single blog post to cover. However, the intention of the distilled framework presented in this piece is to provide you with a starting point for establishing key components of your geospatial program's governance model. Work through the framework systematically, and don't be afraid to add or augment the framework with your own controls or processes. Stay tuned for more on this topic in the future.


Thank you to Allen Williams for his valuable contributions to the governance framework.

If you liked this content, check out and subscribe to my newsletter, where I send strategic insights about geospatial technology direct to your inbox.

This post was translated to French and can be viewed here.
 

About the Author

Matthew Lewin is the Director of Strategic Advisory Services for Esri Canada. His efforts are focused on helping management teams optimize and transform their business through GIS and location-based strategies. As a seasoned consultant, Matthew has provided organizations in the public and private sectors with practical strategies that enable GIS as an enterprise business capability. At the intersection of business and technology is where Matthew’s interests lie, and he thrives on helping organizations bridge the gap to achieve their most challenging GIS ambitions.

Profile Photo of Matthew Lewin