July 2012 Archives
'Whistleblowing' is a 'hard' control, and it, alone, cannot deal with corporate crimes, very well. If you want to study why people commit corporate crimes and protect the company from such events you must look at the whole set of 'soft' issues, as well. These relate to behavioral aspects such as integrity, ethical values, employee motivation and information flow throughout the organization.
Every time we add a new technology, be it installed in production, or as a proof of concept, we make our operating environment more complex. Complexity is the enemy of security. But we can't simply start hacking technologies out of the environment until we get to a manageable number. To be successful, we need to have designed a risk-based defense in depth (DiD) strategy.
Being a 115 year old organization, there were too many processes and systems that were built over a period of time. These processes were layered over each other and were too complex. We wanted to consolidate our disparate HR systems onto a single platform, standardize HR processes and streamline enterprise data collection across our group companies. Both HR and IT were equally accountable to make this happen.
IT should be managed as an investment, not as an expense. The only factors that should gate IT spending are the quality of the investment opportunities and the capacity of the organization to manage IT-enabled change. When it comes to IT, it takes money to make money and it takes money to save money. CIOs that are doing their jobs will spend whatever budget they have and will keep asking for more.
Research in Motion has become a classic case of acting too late or too slowly leading to a disastrous consequence. Most of these critical issues for the tech firm originate due to a weak and divided top leadership who never got into motion, and existed as if there was no competition in the market. They have been too late in responding to what competitors were doing.
Information Technology should work on business strategy besides deploying systems with bare minimum intervention. But unfortunately when we deploy IT systems that are available off-the-shelf, none of them, barring a few, work without intervention on a daily basis from IT staff, which is never away from fire-fighting.
Winning teams today do not focus on requirements, they ask questions and create solutions that solve real business problems or capture real business opportunities. I believe that the future holds a lot of promise to those who follow the new way of thinking and discard the old requirements lead approach. What do you think?
Hacking a business Twitter account seems to be a favorite pastime for those wanting some kind of retribution and for others it's just plain fun. Once the businesses Twitter account is hacked their reputation is sullied making them look like they aren't protecting their client's data either. In the past year NBC, Fox News, USA Today and a CNN anchor were the most visible of those attacked.
The growth of cloud computing, rapid use of enterprise mobility and an all pervasive application of technology have changed the way businesses look at IT. Working in silos has been a thing of the past and CIOs have to be more in sync with the needs of the business today than ever before.The need of the hour is an enterprise-wide outlook when it comes to business process transformation and not just an isolated business process management.
If one looks at the old set up that still exists in many government hospitals today, there is a huge amount of paper strewn all over the place. Even in some corporate hospitals, doctors are still using paper to write prescriptions. As the records get spread all over the place, it becomes almost impossible to analyze data which exists in the physical form. The road to a paperless hospital is dotted with challenges.