CIO Symmetry


January 13, 2012  8:43 AM

Strategic innovations roadblocked by project management

Wendy Schuchart Wendy Schuchart Profile: Wendy Schuchart

It’s a very special time of the year and no, it’s not just Girl Scout cookie season. We just completed our annual poll on IT salary satisfaction. Being kind of a data junkie, I’ve dived into our readers’ responses with gusto and have been delighted in reading them. You’ve been painting quite the compelling picture about your support of strategic innovations.

We asked how much time in a given month is being spent on strategic innovations such as business and IT integration, long-term planning, and IT product and services development. The majority of midmarket CIOs and senior IT executives reported spending only 10% to 25% of their time on those crucial activities. Only 20% of our midmarket respondents spend more than 50% of their time doing strategic planning.

It begs the question: What exactly is filling your days? The biggest challenge for most CIOs is in becoming a trusted partner with the rest of the senior leadership team. This statistic seems to reflect that CIOs and senior IT executives are still struggling to build those relationships and set themselves as valued partners in steering the company toward profits.

What’s the secret? One of our survey respondents, Chadd D. Carr, CIO at Advanced Concepts Research Group in Gainesville, Va., had an interesting take on the ideal strategic relationship. “Perhaps the most important is the support and commitment from leadership. Operating within a technology-aware organization allows me to forgo the usual hurdles relative to aligning IT spending with the organization’s business objectives, and focus in on securing and enabling the IS needed to sustain strategic advantages.”

So, what are CIOs and senior IT execs spending time on? Boring, guts-no-glory activities like project management. By far, our midmarket respondents spent more time managing projects in 2011 than they did in 2010. Budget crunches and shrinking IT staff caused senior IT leaders to roll up their sleeves and get their hands into the mix.

But this trend could have disastrous results for the IT talent pool. “I think many of the CIOs have been asked by their executive management teams to carry a disproportionate share of the burden in these lean times. In support of keeping their organizations afloat, many CIOs have been asking their staffs and themselves to do more with less and for less money. Most have done a fantastic job for an extended period of time. If they believe that when the economy picks up, their own organizations will not ‘make them whole,’ it seems highly likely they will move on to an organization that will provide better opportunities for personal and professional fulfillment,” remarked Ken Desforges, director of information services for the city of Diamond Bar, Calif.

Desforges’ predictions are supported by our CIO/IT Strategy Group poll on IT salary satisfaction. Many of our respondents reported being excited and driven by their role in strategic innovations, indicating that strategic innovations play a big part in their job satisfaction.

Over the next few weeks, we’ll be sharing the data on SearchCIO-Midmarket.com and our sister site SearchCIO.com, and some of the findings will surprise you. Don’t miss Editorial Director Scot Petersen’s discussion about IT job satisfaction between midmarket senior IT executives and midlevel IT directors.

January 10, 2012  4:47 PM

IT salary satisfaction survey says IT directors squeezed in midmarket

Scot Petersen Scot Petersen Profile: Scot Petersen

A question for all of you midlevel IT managers and directors out there: What’s got you down? According to new data from the CIO/IT Strategy Group poll on IT salary satisfaction, your subgroup in midmarket-size companies is the least satisfied with compensation.

Almost 31% of you were “somewhat dissatisfied” with your compensation — the largest slice of the pie (see charts). “Satisfied” was the next group, at almost 26%. “Not at all satisfied” came in just under 10%. So, more than 40% of you are not happy with your pay. The question is, are you just not getting enough money or are you working too hard for the money that you do get?

Senior IT executives in the midmarket are not much happier. More senior IT respondents are “satisfied” or “somewhat satisfied” (53%)  compared with their direct reports (45%), though 26% still say they are “somewhat dissatisfied” — which is the second highest count.

Midlevel counterparts at large enterprise and small business register as a little more satisfied with their salary than midmarket directors. What to make of all this? It could be a kind of middle child syndrome. Because you really are in the middle of the middle-sized companies. Enterprises get all the money, but perhaps small business directors are more satisfied because they have more control over their jobs.

There’s a lot of data to discuss. Read more about it in our reports coming out starting next week. In the meantime, if you have any thoughts to share, please email me at spetersen@techtarget.com.


January 9, 2012  9:08 AM

Are your big data analytics ready for 2012?

Wendy Schuchart Wendy Schuchart Profile: Wendy Schuchart

Welcome to Q1 and the year of big data. Now that you’re back in the saddle after a rousing holiday season, we’ve primed the well with our weekly dose of news from around the blogosphere, including the scoop on new releases of Linux and Hadoop, who exactly is still using Internet Explorer 6.0, and opinions on whether big data analytics give you the biggest bang for your strategy buck.

  • Before you stress too much about your big data analytics strategy, take heart: Bain says maybe big data is not so big.
  • If you’re going to the International Consumer Electronics Show (CES), swing by the Microsoft booth for old time’s sake. This show will be the industry giant’s last CES, leaving the IT world wondering if CES has become irrelevant.
  • Looking to ditch the ubiquitous laptop messenger bag? Think about going Inspector Gadget with a technophile’s trench coat.
  • Speaking of Redmond, fewer than 1% of U.S. Web browsers are using Internet Explorer 6.0 as the entire country leans toward the light. China, however, still sees one in four users still surfing the old beast. Just remember, gentle readers: Friends don’t let friends use the Exploder.
  • Just about every blogger has decreed that 2012 will be the year of big data analytics, and just in time, we finally get a buh-bye to beta with the Hadoop 1.0 release.
  • Not sure how to conceptualize all of your social media efforts? The Twitterize Yourself app from Visual.ly uses big data analytics to help you visualize your Twitter posts.
  • Looking to avoid an Olympic-sized Twittergate, the London Olympic Games have banned its volunteers from discussing the games over social media platforms. Now that’s a buttoned-up social media policy!
  • Customers of the so-called freemium model are more demanding than paying customers, according to developer Tyler Nichols, who found that his freemium-model customers were making him question whether his free service was even worth it.
  • Attention Linux lovers! Linux 3.2 has been released, according to Sir Torvalds himself.


January 6, 2012  3:27 PM

Can social media policies prevent HIPAA violations?

Wendy Schuchart Wendy Schuchart Profile: Wendy Schuchart

I’m starting to feel like the girl who cried wolf about social media policies, but in at least one instance, the wolf has indeed attacked, in the form of a patient’s medical records being shared on a Facebook wall.

A medical health center employee allegedly posted a photo of a female patient’s medical record that included the patient’s name and date of admission. The employee of Providence Holy Cross Medical Center in Santa Clarita, Calif., also allegedly accompanied the photo with commentary on the patient’s sexual health concerns in his Facebook wall. When questioned about it, the employee is reported as defending his posting, indicating that the name was not identifiable and saying “It’s just Facebook. … Not reality.”

This is nothing new. Last year, a little over 100 miles down the 405 from Santa Clarita, five Oceanside, Calif., nurses were fired for discussing patient cases on Facebook. There have been numerous slips and ill-advised social media gaffes that have ended up in terminations, akin to reputation-fouling personal attacks.

Obviously, for Health Insurance Portability and Accountability Act-regulated industries, this is an absolute nightmare, but it should serve as a warning for all CIOs across verticals. It’s disturbing that this employee earnestly believes that information shared on social media doesn’t count somehow. It is absolutely within the rights of an employer to protect its own reputation, including taking action to cease the relationship with individuals who initiate public speech that is harmful to the organization. It all comes down to communication, though. When was the last time you updated your social media policies? What’s more, do you require that each and every employee reads and signs your social media policies on a scheduled basis?

Unfortunately, much of what the public understands about the U.S. Constitution comes from Hollywood — they mistakenly believe that they have guaranteed free speech as some kind of Teflon-coated protection from all things. I suspect that the misguided Facebook poster at Providence Holy Cross didn’t understand that it only means he won’t go to prison, but his continued employment is totally on the table.  It’s not certain whether his employer has its social media policies locked and loaded, but I’d be willing to bet that it will after this incident.

Sadly, it won’t be in time to stop the patient’s privacy from being violated.


January 3, 2012  9:55 PM

BYOD backlash leads 2012 technology trends

Scot Petersen Scot Petersen Profile: Scot Petersen

I got a kick out of SearchHealthIT.com’s 2012 technology trends not to watch. Since the site launched in late 2009, it has written extensively about electronic medical records, personal health records and a few others. Now, it seems, many of these trends are showing signs of slowing growth.

Victims of hype? No. More likely, victims of expectations that were set too high for very complex technology initiatives. In the world of the CIO, we see this all the time. So in that spirit, here are a couple of trends I think will retreat in 2012.

Bring your own device (BYOD). This will be the year of BYOD backlash. Certainly, many companies are already allowing employees to use their own iPads, etc., for day-to-day work. But I sense that there will be some more serious thought put behind it this year. For one thing, companies may be all for iPads but will start to buy them and hand them out as company issue. Kind of takes the fun out of it, doesn’t it? Likewise, a good percentage of IT or security managers will revolt outright and ban the use of outside devices or make users register their own so usage can be monitored.

Big data. Raise your hand if you are sick of hearing about big data. Just remember that you cannot buy “big data” products, as much as vendors would like you to know they are the big data source. Big data is not even a set of technologies; it more closely resembles a strategy toward business intelligence. Watch this space this year for more information about how to create a BI strategy that can embrace all the data you have at your disposal. Until then, consider the benefits of “small data.”


December 22, 2011  4:26 PM

Just one way to become a CIO

Wendy Schuchart Wendy Schuchart Profile: Wendy Schuchart

People often ask us how to become a CIO. Happily, our expert Scott Lowe has offered to detail exactly the path he took — and the many steps required — to become a CIO:

This month’s topic here at SearchCIO-Midmarket.com is career management. It happens to overlap with what has become a period of significant change in my own career path. Recently, I left my CIO role and this week, I shared with you the lessons I learned along the way. Here’s my story of the steps I took to become a CIO and the experiences that supported my CIO career.

In 1994, I had just completed two years at a community college as a computer science major and had planned to transfer to a four-year institution to complete a Bachelor of Science degree. However, at the urging of my father, I applied for a job with a title of telecommunications technician for a New York state agency charged with supporting the efforts of K-12 school districts. I quickly grew to love what I was doing and made the decision to forgo — for a time — that computer science degree. I discovered that the job title was a bit misleading, as I was responsible for designing both voice and data networks, managing servers, developing and maintaining complex databases and directly supporting users. It was certainly a “jack of all trades” kind of job. I learned that I liked being a generalist.

During this period of time, I set a personal goal to become an IT director by the age of 35. It was sort of an arbitrary deadline but seemed reasonable. Four years later, I moved to my next job, where I managed the systems and network and services department for a college. Here, I got my first real taste of management and worked for someone that was willing to help me develop in this space.

Bear in mind that I was 24 years old; now, at the ripe “old” age of 38, I can say that I was a kid and I did what many kids of the male variety do … I followed a girl. I moved to the Washington, D.C., area. The girl is now history, but what I gained in that transition has been incredible. This was during the dot-com days, so moving around was more accepted. My first job in D.C. was not a good fit; I was bored, and it showed. After less than a year, I moved to a financial services firm on a contract basis, where I learned the ins and outs of working in a large-scale hosted environment. Although I’ve worked primarily in small settings, this “big shop” mentality really helped me build robust environments later.

By the time the contract was over, I had secured my first senior IT management position for a nonprofit association. I managed a team of two. We spent the next two-and-a-half years building custom content management systems for state agencies and creating communication solutions for the association membership.

My goal was to become an IT director at 35, but sheer luck helped me make it happen seven years sooner.

I also got married. My wife and I had our son in December of 2003. Although I’d been through a number of job changes and had moved a lot, having a child was, by far, the most impactful event of my life. We did it again in February of 2005, when our daughter was born. Why do I include these events? Because these life events have had more of an impact on my career than all of the planning in the world ever could! I mean that in the most positive way possible; my wife and kids are the most important things in my life.

My wife made the decision that she wanted to stay home with our children. Living in the D.C. area on one salary was simply not an option. Since I loved working in higher education, I chose an IT director position at a small private college in upstate New York, just 30 miles from my hometown. I learned how to manage a larger team of 15, to delegate better, undertake larger projects and work across a larger organization. I made another move to a CIO position for a small, private college in Missouri in 2006. Although a small organization, the work was more complex and I engaged with the organization in a much deeper way, managing technology and undertaking and leading major, non-IT focused organization-wide projects.

Unfortunately, as is often the case, financial challenges and crises in leadership reared their heads in the organization. For the first time in my career, I felt “burned out.”

My stress level was off the charts. I realized that, with that state of mind, I was about to become a CIO who wasn’t helpful to the organization or to my team. I saw no light at the end of the tunnel and felt that it was no longer possible to achieve my goals at work. The organization needed someone that could better meld with the emerging culture, and that wasn’t me. It was time to go. Luckily, I’ve built a solid history as a consultant, trainer and writer, which can sustain my family while I decide on my next CIO role. — Scott Lowe


December 20, 2011  9:15 AM

Responsibilities of a CIO: Long on demands, short on time

Scot Petersen Scot Petersen Profile: Scot Petersen

You never know where you might gain more insight on the responsibilities of a CIO. Somewhere along the line, my job title and the websites I work on got mixed up, and as a result I often am confused with the CIO of TechTarget. This, of course, is not true.

This might sound like a step up in the world, or it could even be amusing, except for the fact that about half the external calls and emails I get address me as TechTarget’s CIO. Comparing solicitations from media relations staff with those I get from salespeople who think I’m the CIO reveals very different assumptions on the part of the senders. Media requests are generally friendly and respectful of my time. Sales pitches are aggressive and pushy — almost rude, in my opinion. The salesperson doesn’t ask if I have time available; he says something like, “I have to talk to you now, please respond.” It’s the email equivalent of those guys lining Las Vegas streets pushing flyers into your hands.

I told TechTarget’s real CIO that I feel sorry for him, and asked how he deals with it. He said he tries to screen out as much as possible; and when it comes to buying products, he decides when and where he will respond to something that he might need. Better yet, he or his staff will perform their own research and reach out to a vendor or solution provider themselves when it’s time.

This experience has given me better insight into the demands put on CIOs, which I think everyone takes for granted. Given everything being asked of CIOs, from being a technology tactician to being a strategic innovator, the most difficult piece has to be finding time to give adequate attention to everything. As a result, there doesn’t seem to be any time for career development or advancement.

Take some time to evaluate where you are in your career in 2012, and see what other kinds of opportunities await.


December 19, 2011  5:50 PM

Should you practice Facebook resistance?

Wendy Schuchart Wendy Schuchart Profile: Wendy Schuchart

Whether you’re experiencing the end-of-year slowdown or a flurry of last-minute requests along with annual performance appraisals, December is always a little out of the ordinary. Here’s our weekly summary of the best and brightest links from the blogosphere, hoping to light up your winter solstice with news of Facebook resistance, a sign of economic growth and free airport Wi-Fi during the holiday travel season.

•  Is resistance futile? Not if you’re practicing Facebook resistance.

• Don’t you hate it when family asks you what you want for the gift-giving holiday of your choice? Here’s a quicky list of techno geek gift ideas to help you out. Who wouldn’t want a shower-proof notepad?!

• Going somewhere for the holidays? VoIP vendor Skype will be offering free Skype Wi-Fi in 50 U.S. airports from Dec. 21 through Dec. 27.

• Good news for once: Credit availability will increase in 2012.

• Were you a calculus nerd in high school? 2012 is going to be your year, according to Derrick Harris.

• One of the secrets to success is seeking perfection, says the Chobani yogurt king, Hamdi Ulukaya.

• We’re all looking for ways to put our customers first without killing our budget in the process. Emily Heyward has three commonsense ways to put your customer first.

• A California judge may have just added to the growing Facebook resistance: The judge has ruled that Facebook’s method of advertising is in direct violation of a California commercial endorsement law.


December 16, 2011  4:57 AM

Can you trust your KPI scorecard?

Wendy Schuchart Wendy Schuchart Profile: Wendy Schuchart

Mark Twain is attributed with the saying, “There are three kinds of lies: lies, damned lies and statistics.”

Any CIO faced with a meaningless key performance indicator (KPI) scorecard and performance dashboard knows that feeling about statistics: They can paint a rosy glow on your IT team’s performance, while anecdotal evidence tells a different story.

It’s a discussion that I had recently with our senior news writer, Linda Tucci, when it comes to outsourcing KPIs. My argument is that if you allow your consultants or your outsourcing team to designate the metrics and the KPI scorecard — essentially to grade themselves — the metrics themselves fall into question. In theory (and I know of at least one situation where this actually happened) they could lie outright about their own performance, especially if it’s tied to their own revenue stream.

The problem with metrics, KPIs, dashboards and every other self-performance measurement that we try to put into place is this: At best, you get exactly what you’re measuring; at worst, someone games the system but you take the numbers at face value.

A great example of a bad series of metrics comes from my tenure managing a newly outsourced help desk. One of the metrics was the number of completed issues (aka closed tickets). After three months, the contractor numbers were in the green, with greater than 99% of all tickets closed. The onshore help desk had never managed even to graze 97%, so senior leaders were ecstatic! Unfortunately, the user satisfaction scores were in the toilet. What the KPI dashboard wasn’t showing was that the number of user problem tickets had gone through the roof. Further root cause analysis revealed that when users called in, the agents closed tickets as soon as the call was completed, rather than keeping the ticket open to make sure that the actual problem was solved. When the user called back, they generated another ticket and another “solution” as soon as the agents got the user off the phone. Lather, rinse and repeat, with one user problem generating as many as 10 tickets in less than a week’s time.

It was our own fault. We weren’t measuring the actual solution and the users’ satisfaction. Aside from the obvious fact that a completed issue is a meaningless metric in the first place (all issues are not equal), the internal help desk staff members hadn’t needed an artificial construct to encourage them to satisfy the users — the members of the small, four-person team had known that if they didn’t solve the problem on the first pass, when the user called back, the help desk would pass the user through to the original agent. They worked with the product development team to deflect potential user problems proactively, and trained users as much as they helped them with problems. Why? Because we staffed four agents regardless of call volume — that bit of extra work made the agents’ lives easier in the long run. However, with the new outsourcing model, the contracted agents were staffed for call volume. Seemed like a good idea at the time, but why solve a problem if it means that your own hours are going to get cut next week?

We didn’t measure the user satisfaction KPI because it had been an invisible KPI all along. We changed the variables (the help desk agent structure) and were surprised when the same metrics no longer yielded similar results. Shame on us.

We are predicting (along with everyone else) that 2012 will be the Year of Big Data, but the devil is in the details. For some CIOs, the hardest thing they ever tackle will be their very own subset of “small” data on their very own KPI scorecard.  May it be more valuable than Twain’s bemoaned statistics.


December 13, 2011  3:33 PM

Cloud security planning should be part of strategy from beginning

Scot Petersen Scot Petersen Profile: Scot Petersen

What are you doing about cloud security planning? I say planning because, in a survey of attendees at the recent SearchCompliance.com Making the Case for the Cloud virtual seminar, more than half of the IT professionals responding said they don’t have a cloud strategy in place — though 100% said they would within the next year.

The point is that a cloud security strategy should be part of a cloud plan from the beginning. How that plan gets formulated is up for grabs, however. Responding to an instant poll taken during one seminar session on cloud incident response, 45% said their cloud security plan consists of reliance on SAS 70 Type II audit reports; another 32% said they rely on service contracts and lawyers to sort out the details; and 23% answered that they “can’t get management on board” for any security plan.

That’s pretty shocking. Even overlooking the 23% who are throwing up their hands, the other two options are not much better, certainly not by themselves. The SAS 70 standard was not designed with cloud security in mind.

According to IT security consultant Kevin Beaver, the speaker in the incident response session, SAS 70 had its place but is being phased out. “But it’s not that simple,” he said. “The bottom line is, you have to dig in deep; you can’t just assume that if everything checks out in the SAS 70 Type II audit report, everything must be fine. Because that is not the case, based on what I am seeing in my security work.”

First steps for cloud security planning? Get a good lawyer, a good security consultant and your CEO, and put them in a room together. Order lunch. And get down to business.


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: