Institutional Cost and Software Data Reporting (ICSM)
Institutional Cost and Software Data Reporting (ICSM) is a structured method used to capture and report cost and performance data related to software development and software maintenance activities on government contracts, commonly referred to as Cost and Software Data Reporting (CSDR).
What Is Institutional Cost and Software Data Reporting?
Institutional Cost and Software Data Reporting (ICSM) is a structured method used to capture and report cost and performance data related to software development and software maintenance activities on government contracts. It is more commonly referred to as Cost and Software Data Reporting (CSDR) within Department of Defense acquisition regulations [citation:1][citation:4].
The intent of CSDR is to capture software resource and effort data at the Software Release and Computer Software Configuration Item levels that are significant either for a current program or when a similar effort may be required for a future program. The collected data serves as the primary data source utilized when completing cost estimates for major defense acquisition programs [citation:2].
Key Characteristics
Captures detailed cost data for software development and maintenance including labor hours, materials, overhead, and support costs [citation:1]
Uses standardized reporting formats through specific DD Forms (3026-1, 3026-2, 3026-3) for consistency across programs [citation:2]
Supports cost transparency and program oversight for major defense acquisitions
Enables analysis of software cost trends over time to improve future cost estimation
Mandatory for major defense acquisition programs and major automated information system programs as specified in DoDI 5000.02 [citation:4][citation:10]
How It Works in Government Contracting
ICSM/CSDR is used during software development and sustainment phases of the procurement lifecycle, particularly for major defense acquisition programs.
Where it appears: Government agencies and prime contractors use ICSM/CSDR to track actual software costs and effort across programs. The data helps agencies evaluate program performance, compare costs across contracts, and improve future cost estimates [citation:1].
Reporting components: The CSDR system has two principal components: contractor cost data reporting and software resources data reporting [citation:4][citation:10]. Reports include Software Development Reports (DD 3026-1), Software Maintenance Reports (DD 3026-2), and Enterprise Resource Planning Reports (DD 3026-3) [citation:2].
Reporting process: Contractors collect cost and technical data throughout the project and submit reports according to contract requirements. Each report requires approximately 16 hours of effort per response, with an estimated 35 respondents submitting approximately 430 annual responses [citation:2].
Regulatory Framework
ICSM/CSDR reporting is governed by specific provisions in the Federal Acquisition Regulation (FAR) and the Defense Federal Acquisition Regulation Supplement (DFARS) for applicable software-intensive contracts [citation:1].
10 U.S.C. 3227(b) and (c) require, unless waived, submission of cost data for contracts expected to exceed $20 million or $50 million for acquisition and sustainment programs expected to exceed $100 million [citation:1]
DFARS Subpart 234.71 establishes policy and procedures for cost and software data reporting requirements [citation:1][citation:10]
DoDI 5000.02, Operation of the Adaptive Acquisition Framework, and DoDM 5000.04, Cost and Software Data Reporting, provide detailed implementation guidance [citation:1][citation:4]
The clause at DFARS 252.234-7004, Cost and Software Data Reporting, is included in applicable solicitations and contracts [citation:10]
Why It Matters for Contractors
Business implications: ICSM/CSDR affects how contractors track and report software costs. Accurate reporting supports compliance with contract terms and audit readiness. Approximately 304 unique contractors (including 112 small entities) per year are required to comply with CSDR reporting requirements [citation:1].
Compliance impact: Contractors must implement standard CSDR systems in compliance with DoDI 5000.02 and the CSDR Manual. Prior to contract award, contracting officers consult with the Defense Cost and Resource Center to verify the offeror's proposed CSDR system meets requirements [citation:4][citation:10].
Strategic importance: Reliable CSDR data can strengthen cost proposals and improve credibility with government customers. The data facilitates more accurate cost estimation and comparison across acquisition programs, benefiting both government and industry [citation:1].
Risk considerations: Poor data quality increases compliance risk and can impact future contract awards. The government uses CSDR data to accomplish more accurate cost estimation, making reliable reporting essential for contractor past performance evaluation [citation:1].
Common Misconceptions
ICSM is only required for large defense programs.
While primarily applied to major defense acquisition programs, CSDR requirements extend to contracts expected to exceed $20 million or $50 million in support of acquisition and sustainment programs expected to exceed $100 million [citation:1].
ICSM only tracks labor costs.
CSDR captures comprehensive cost data including labor hours, materials, overhead, and support costs, as well as software resource and effort data at the release and configuration item levels [citation:2].
ICSM data is optional if internal systems already exist.
CSDR reporting is mandatory when contract clauses are included, and contractors must use standard CSDR systems compliant with DoDI 5000.02 and the CSDR Manual [citation:4][citation:10].
Frequently Asked Questions
What types of activities are covered under ICSM?
ICSM/CSDR covers software development, enhancement, testing, integration, and maintenance activities. Specific reports include Software Development Reports (DD 3026-1), Software Maintenance Reports (DD 3026-2), and Enterprise Resource Planning Reports (DD 3026-3) [citation:2].
Is ICSM required on all government contracts?
No. ICSM/CSDR requirements depend on contract type, agency, and specific contract clauses. They apply to contracts exceeding certain thresholds ($20M or $50M) in support of programs exceeding $100M, and for major defense acquisition programs as defined in 10 U.S.C. 4201 [citation:1][citation:10].
Who is responsible for submitting ICSM data?
The prime contractor is typically responsible, though subcontractors may be required to provide supporting data. The clause at DFARS 252.234-7004 is included in applicable solicitations and contracts [citation:10].
How often is ICSM data reported?
Reporting frequency is defined in the contract and may be periodic or milestone-based. The OMB information collection indicates annual reporting with approximately 16 hours of burden per response [citation:2].
Related Government Contracting Topics
Software Development Lifecycle: The phases involved in building and maintaining government software systems, which CSDR tracks for cost and performance data.
Cost Reporting: Processes used to track and submit allowable contract costs, including the structured CSDR framework.
Earned Value Management (EVM): A performance measurement method integrating cost and schedule data, complementary to CSDR reporting.
Defense Federal Acquisition Regulation Supplement (DFARS): Defense-specific acquisition rules that contain CSDR requirements at Subpart 234.71 [citation:1][citation:10].
Major Defense Acquisition Program: Programs as defined in 10 U.S.C. 4201 that are subject to CSDR requirements [citation:4][citation:10].
Cost Estimating: Techniques used to forecast future contract costs, which rely on CSDR data as the primary source for cost estimates [citation:2].
Strategic Importance
Institutional Cost and Software Data Reporting (ICSM/CSDR) serves as a critical tool for government oversight of major defense acquisition programs, enabling more accurate cost estimation and comparison across acquisition programs. The data collected through CSDR directly supports statutory requirements under 10 U.S.C. 3227 and helps the Department of Defense accomplish its mission of effective acquisition management [citation:1].
For contractors, CSDR compliance represents a significant undertaking affecting approximately 304 unique contractors annually, including 112 small entities. The burden includes approximately 6,880 annual hours across 430 reports, with each report requiring 16 hours of effort [citation:2]. Contractors who implement robust CSDR systems and maintain accurate reporting demonstrate their reliability as government partners and contribute to the broader defense acquisition community's ability to develop realistic cost estimates for future programs.