How IT is Evolving from Controlling to Enabling
IT and Security Play Catch-Up with the Latest Technology and Requirements
Like a lot of CIOs, my world is changing quickly. You don’t have to look further than the ubiquity of Software-as-a-Service to appreciate just how fundamental these changes actually are. With the ability to access applications using nothing more than a Web browser, lines of business are starting to drive their own technology agendas. While this may be good for business, the big challenge for IT is they’re often the last to know.
The cloud is affecting more than just how applications and computing muscle are delivered to organizations. Easily the biggest change in my mind is in the realm of expectation. These days what end-users care about and – more importantly – expect is access: to applications, pictures, video – anywhere, anytime and on any device. And they no longer require IT’s help to get what they want.
Delivering value at a time when anyone with a browser can ‘deploy’ the next great piece of software is complex. Adopting new tools and processes is only part of the solution. To stay relevant, IT workers require different skills, and in many ways, a different mindset.
The illusion of control
One of the biggest shifts for me was appreciating that my role is no longer about controlling and managing a collection of infrastructure. More and more it’s about enabling applications. The challenge is the lines between applications can blur rather quickly. That has significant implications for the management processes required to support them.
Classifying software used to be easy because things were so static: First, we have what I call ‘mission critical’ applications like our ERP system, which are highly customized and have a heavy workload. These are tightly managed by IT. Second, we have ‘core’ applications like email. These may not define a company they way an ERP system does, but the business still looks to IT to ensure high levels of security and reliability. Lastly, we have ‘non-core’ applications that are used by one department, or perhaps infrequently by the whole company. This is the realm of SaaS and an area in which we historically invested little time, because IT had never been required to provide much support.
A changing dynamic
Here’s the rub: as SaaS applications proliferate, what starts as a ‘non-core’ application can quickly become ‘core.’ About 18 months ago, one of our marketing managers signed his team up to Yammer (essentially Twitter for the corporate world). As the CIO, this barely registered. Fast-forward three months, and we had over 400 employees using it, including our CEO, who had taken to ‘yamming’ our corporate strategy.
A closer look at our environment revealed we didn’t just have a few SaaS applications, either. We had dozens. We also had very little knowledge about the purpose of these applications. Who was using them? Who controlled access? How did we know we were getting value from these investments?
One of the first steps we took was creating a SaaS management system that centralizes procurement, end-user provisioning, reporting and support. But when the core issue is behavior, even the most comprehensive platform is at best a partial solution, especially when users can choose to go around it. The real challenge is making the business feel like it’s in their interest to work with IT on technology decisions. That starts with thinking about the role IT wants to create for itself.
With the cloud and the consumerization of technology, attempting to exert control is looking more and more like a losing proposition – not just in keeping IT relevant, but because it risks squelching business innovation. Instead, IT has to focus on becoming a partner – one committed to supporting the needs and expectations of a growing number of stakeholders. That requires a new level of engagement with the organization. Change management, communications and even marketing new innovations within the organization are a big part of this. Above all, it means using these skill sets to strike a balance between enabling the convenience and flexibility that SaaS provides, with the governance and support businesses need now more than ever.