Archive for April, 2010

Should A CIO Bother With That ITIL Stuff?

Wednesday, April 28th, 2010
Image Credit Johnson & Johnson’s CIO Had An Out-Of-Control Growth Problem That ITIL Solved

Johnson & Johnson’s CIO Had An Out-Of-Control Growth Problem That ITIL Solved

Johnson & Johnson Had A Problem

I’m sure that when you picture yourself becoming a CIO in the future you see yourself sitting at the corporate strategy table with the CIO using your deep understanding of IT to help the company move faster and do more. Umm, one problem with that vision – you’re not going to make it to the big table if you don’t solve the problem of run-away IT costs. Johnson & Johnson’s CIO had this very same problem and she tackled it using the ITIL framework. Maybe this would be a good time to look into that ITIL thing…

Just What Is the ITIL?

You’ve probably heard about the IT Infrastructure Library (ITIL); however, do you really understand what it is? First off, it’s an old (10 years is old by IT standards) set of best practice guidelines for how to do IT service management. It was originally developed by the U.K. government in order to help them do a better job of modeling their outsourced IT projects. It’s quite popular in European IT shops and is only now starting to pick up steam in the U.S.

What makes the ITIL so attractive is that it allows a CIO to run the IT department like a business. This is exactly what Johnson & Johnson’s CIO was looking for back in 2001. J&J was going gang-busters from a business point-of-view; however, their IT costs were going through the roof – they were going up by over 10% every year.

J&J had previously tried the old stand-by CIO trick of pulling together IT operations from all around the sprawling company into a single centralized organization in order to get on top of their costs. However, even though now they knew where the money was going, they still were seeing out-of-control growth on infrastructure tasks. Something had to be done!

J&J’s CIO decided to implement a program based on the ITIL. Now mind you, this is not some silver-bullet magic cure-all. Instead, the ITIL can help with specific parts of running an IT shop. Specifically if you go about implementing ITIL correctly, your IT department can boost the quality of service that it is providing to the rest of the company.

J&J’s IT department was able to use ITIL to decrease how long it took to resolve problems. This in turn resulted in J&J’s systems having more uptime and therefore allowing more work to be done quicker. Needless to say, end users were very happy about this.

Sure happy customers are nice, but what about the money? J&J says that if you count both cost savings and costs that they were able to avoid, then starting in 2005 they believe that they’ve been able to save at least $30M a year.

Why Did This Solution Work

ITIL is not the only way to standardize the way that a CIO runs his / her IT department. Other methods include the Capability Maturity Model (CMM), Control Objectives for Information and Related Technology (COBIT), Six Sigma, and Lean Manufacturing. However, ITIL has been around the longest and its been shown to work.

Taking the ITIL path was the right choice for J&J for a number of reasons. Not the least of which was it provided J&J’s CIO with a way to both quantify and measure the quality of the service that J&J’s IT department was delivering. Who was the wise man who said “If you can’t measure it, you can’t improve it”?

What All Of This Means For You

When you become CIO you’ll be facing the same twin set of conditions that can keep you from doing all of that strategic stuff that you want to be doing: rising IT costs and ever increasing user demands for more service. You are going to have to deal with this issue and do it quickly.

ITIL is not a new “flavor of the day” approach to solving the challenges that an IT department faces. In fact, it’s a rather old approach. However, if you’re willing to make the investment in time and energy that it can take, ITIL just might be the solution that you are looking for.

Knowing that there is a solution framework out there that works is what allows most CIOs to be able to sleep at night. Actually implementing a solution and saving the company, well that’s a job that will be waiting for you when you become the CIO.

- Dr. Jim Anderson
Blue Elephant Consulting –
Your Source For Real World IT Department Leadership Skills

Question For You: Would ITIL work at your company or do you think that a different approach would be better?

Click here to get automatic updates when The Accidental Successful CIO Blog is updated.

What We’ll Be Talking About Next Time

Just when you think that you’ve got this Internet thing figured out, it goes and changes on you.  There are some fantastic tools out there for you, but will you know what to do with them when you are the CIO?

Tags: , , , , , , , , , ,
Posted in ITIL | No Comments »

CIOs Need To Get Involved In Some Risky Business

Wednesday, April 21st, 2010
Image CreditRisky Business Can Be Good If You Are A CIO

Risky Business Can Be Good If You Are A CIO

What You Don’t Know About Risk Might Hurt You

Does anyone besides me remember the movie “Risky Business” from the ‘80s? You know, it’s the one that launched Tom Cruise’s career – he plays a kid who takes some big chances, has an adventure, and then ends up with the girl in the end. Well, CIOs have a opportunity to star in their own version of Risky Business – but their role has to do with selecting and implementing risk management applications that just might save the company…

All About Risk-Management Solutions

The global economic meltdown of 2008-2009 revealed that most companies really have no idea what kind of risks they are taking when they make business decisions. The world has gone global and so just about every decision that a company makes could come back to haunt it. If only there was some way to see into the future.

Sadly, a magical crystal ball that will reveal the effects of a company’s decisions has not yet been invented. However, we’ve already got the next best thing: risk-management systems.

As more and more companies start to investigate how a risk-management system could help them to make better decisions, the opportunity for future CIOs to step up and lead the charge has arrived. Robert Iati over at the TABB Group says that spending on risk-management solutions grew at 11.5% from 2009-2010.

As a future CIO, you may be called on to help sort out just exactly what kind of risk-management solution would work best for your company. Many solutions are designed specifically for financial services firms (this is where this type of application was born after all). However, there are a number of solutions that allow firms to monitor operational risks in their non-financial industry.

How To Use A Risk-Management Solution

The way that a risk-management system works is by collecting information from other systems and then processing it. The CIO is going to play a big role in making sure that the needed data is both accessible and available in a timely manner. Depending on the type of data, the risk-management system may need near real-time updates and this can put a strain on even the best run IT department.

As we in IT are only all too well aware, any risk-management application is only going to be as good as the quality of the data that is being fed to it. This means that there may be additional data scrubbing and / or normalization activities that need to take place before the data is presented to the risk-management solution.

After having gone through the effort of selecting, purchasing, and hooking up a complex risk-management solution the CIO has one more role to play – doubter. We all know how this goes: an application cranks out a pretty looking result and everyone stands around looking at it as though it had just come down the mountain carved into a couple of stone tablets.

The CIO needs to be the one to step back and remind everyone that any risk-management solution is not some sort of magic box no matter how much data you might be feeding into it. Instead, everyone needs to be reminded that the application is telling you what might happen in the future. It will tell you what you should do, but it won’t take the action for you – that’s going to still require human decision making.

What All Of This Means For You

We’re always talking about that IT / Business alignment thing and trying to come up with different ways to make it happen. The global economic crises of 2008-2009 has caused firms to start to seek out risk-management solutions and this opens a door of opportunity for CIOs to help out the business.

There are many different types of risk-management solutions and a CIO can help with the selection process. The system needs company data in order to operate correctly and where that data will come from (and how frequently) is something that the CIO will need to determine.

Opportunities to use IT to help out the entire company like this don’t come along often enough. CIOs need to size this moment and use it to once again show the value of the IT department to the rest of the company.

- Dr. Jim Anderson
Blue Elephant Consulting –
Your Source For Real World IT Department Leadership Skills

Question For You: Do you think that a CIO should play a role in selection which risk-management solution a company chooses?

Click here to get automatic updates when The Accidental Successful CIO Blog is updated.

What We’ll Be Talking About Next Time

I’m sure that when you picture yourself becoming a CIO in the future you see yourself sitting at the corporate strategy table with the CIO using your deep understanding of IT to help the company move faster and do more. Umm, one problem with that vision – you’re not going to make it to the big table if you don’t solve the problem of run-away IT costs…

Tags: , , , , , , , , , , , , ,
Posted in risk | 2 Comments »

What Does A CIO Need To Do When The Company Gets Sued?

Wednesday, April 14th, 2010
Image Credit
E-Discovery Is Something That CIOs Need To Prepare For In Advance

E-Discovery Is Something That CIOs Need To Prepare For In Advance

Lawyers Cost A Lot Of Money

When you become the CIO, you’re probably hoping that you’ll be spending your time setting the strategic direction for your company’s technology future, striking deals with vendors, and generally moving the company forward. However, perhaps you’ve forgotten about the lawyers. Specifically the lawyers who work for the people who will undoubtedly someday sue your company. They are going to be well within their legal rights to ask for a lot of company information, are you going to be ready to find it and provide it to them?

Andrew Conry-Murray was looking into this and he discovered that the Office of Federal Housing was sued they had to search their systems for emails related to the case. They forgot about a disaster-recovery backup that they stored off-site and this mistake ended up costing them an additional $6M in additional expenses to search even more data. Clearly this is something that a CIO has to worry about!

It’s All About The Team

The fancy name for what has to be done in the 21st Century when a company has to produce documents as part of a lawsuit is called “e-discovery” . This is where at the request of the suing party, a company has to dig through all of their electronic documents (emails, reports, etc.) and provide them to the suing party as a part of preparing to go to trial.

Considering how many separate email systems, databases, and siloed data storage systems a typical company has, when you become CIO finding and delivering this information could be a huge undertaking. A clever CIO realizes that this is the type of problem that can’t be solved just by the IT department: it’s going to take a team.

The ability to see into the future is not something that we are born with. However, CIOs need to anticipate that their company will need to have an e-discovery team in place BEFORE you get sued. It makes sense to put together a team before it is needed. The team should have representation from both the Legal and the IT departments on it.

It will do you no good to just have identified who is on the team – they actually have to do some work. Specifically, they should be responsible for setting the company’s policies on data retention, making sure that people are following the policies, and actually doing the e-discovery work when it is required.

The Electronic Discovery Reference Model

If this all seems just a bit overwhelming to you (“I’m not a lawyer”), don’t despair. Smart minds have created something called the Electronic Discovery Reference Model which lays out just what an IT department needs to do in order to conduct a successful e-discovery program.

There is a lot of work that needs to be done as a part of an e-discovery program and not all of it is IT work. In the EDRM, the job of an IT department comes primarily in the first 4 steps. These steps are:

  1. Information Management
  2. Identification
  3. Preservation
  4. Collection

Too Much Data Is Too Much

A CIO’s role in an e-discovery project starts long before the first call from the lawyers comes in. Lawyers are not bad people (necessarily), but at the same time they aren’t IT savvy. This means that they often don’t know how to ask the right questions during an e-discovery project.

Lawyers might ask for any email that contains the word “contract”. Clearly this could quickly create a mountain of results. The IT department can help make sure that only relevant results are returned by working with the legal team to better frame what is being searched for. A search for emails based on “contracts with xyz corporation sent during the summer” will produce much more manageable results.

What All Of This Means For You

In a perfect world, there would be no lawyers or lawsuits. However, since we don’t live in a perfect world, when you become CIO you are going to have to be ready for the lawsuits when they come your way.

The key thing for a CIO to realize is that an e-discovery project is not something that can be handled just by the IT department. Instead, before the first lawsuit shows up, you are going to need to pull together a team that consists of folks from both the Legal and the IT departments.

Even though you can’t stop lawsuits from happening, as CIO you can make sure that your company is ready for them when they come. A bit of planning can end up saving your company a lot of money and you a lot of hassle…

Question for you: what do you think a CIO is going to have to do in order to get the IT and Legal departments to work together smoothly?

Click here to get automatic updates when The Accidental Successful CIO Blog is updated.

What We’ll Be Talking About Next Time

Does anyone besides me remember the movie “Risky Business” from the ‘80s? You know, it’s the one that launched Tom Cruise’s career – he plays a kid who takes some big chances, has an adventure, and then ends up with the girl in the end. Well, CIOs have a opportunity to star in their own version of Risky Business – but their role has to do with selecting and implementing risk management applications that just might save the company…

Tags: , , , , , , , , ,
Posted in document discovery | 1 Comment »

What CIOs Need To Do In Order To Get Some Respect

Wednesday, April 7th, 2010
Image Credit
An Article Over At CIOZone.com Talks About CIO Respect

An Article Over At CIOZone.com Talks About CIO Respect

When you become CIO things are going to be different aren’t they? You’ll be one of those CIOs that has the respect of both their peers in the company and in their industry, right?

Lisa Yoon over at CIOZone.com just got done interviewing me for an article that she was writing titled “CIOs and the Road to Validation in the C-Suite”. I think that she’s done a pretty good job of answering the question of what CIOs need to do in order to get some credibility.

For her article, Lisa and I had a free ranging discussion that covered a lot of different points. The big issues that we touched on included just exactly why today’s CIO’s don’t seem to be able get a seat at the company’s planning table with the other C-level executives.

The reason that I think that you might want to pop over and take a look at Lisa’s article is that instead of just talking about the problem, we also discussed what an up and coming CIO (like you) needs to do. I don’t want to give the answer away, but let’s say that just like with everything else in life it has to do with who you know…

What do you think that a CIO needs to do in order to get a seat at the company’s strategic planning table?

Click here to get automatic updates when The Accidental Successful CIO Blog is updated.

What We’ll Be Talking About Next Time

When you become the CIO, you’re probably hoping that you’ll be spending your time setting the strategic direction for your company’s technology future. However, perhaps you’ve forgotten about the lawyers

Tags: , , , , , , , , ,
Posted in career | 1 Comment »