CIO Symmetry

July 31, 2014  1:39 PM

To build or not to build a mobile app? Think like a digital customer

Fran Sales Fran Sales Profile: Fran Sales
Digital disruption, Mobile, Mobile Application Development, Mobile technology, Small businesses

If you’re the owner of a small company and are looking to maintain or even ramp up your business, odds are you’ve thought about developing some sort of mobile presence, either in the form of a mobile-optimized website or the creation of your own mobile app.

You’ve also likely heard from fellow small business owners who’ve incorporated mobile computing into their businesses about some of the competitive benefits mobile confers — as well as the challenges. But if you are on the fence about whether to forge ahead with mobile, here is an easy way to think about it: Take stock of how you are using mobile computing in your personal life. Chances are you’re using mobile computing in much the same way your customers are. And thinking like a customer when it comes to mobile already puts you one step closer to understanding what quality of services they expect from your business.

In my case — and I’m a mobile consumer if there ever were one — it wouldn’t be a leap to estimate that outside of the hours I put in for work, I spend more leisure time on my smartphone than I do my personal computer (and my PC doesn’t even come in second place — my Roku device takes that spot). And even for work purposes, if I’m on the go, my smartphone, particularly its apps, give me numerous options to stay plenty productive.

Here’s just a sampling of mobile apps I use regularly on a weekday: Android’s Email app, to which I link my Outlook account; Gmail; Google Calendar; Google Hangouts; Facebook; Spotify; Twitter; Yelp; Google Tasks; HBO Go; Todoist; YouTube; GO Weather… I could go on. And with regard to mobile-responsive sites, more often than not, the only time I have to catch up on current events is when taking public transit to work. You can bet that The AtlanticThe Washington Post and Quartz, among many other sites, get plenty of daily mobile visits from me.

But don’t take just my word for it. Nielsen’s 2014 Digital Consumer Report found that the average American consumer last year spent 34 hours a month on their mobile devices, compared with 27 hours on the Web via a PC.

I mentioned earlier that many of the apps I use on a day-to-day basis also enable me to be more productive. Stats from recent studies also confirm that small businesses reap internal benefits from mobile apps as well. According to a 2012 study by the Small Business and Entrepreneur Council, 78% of small business owners reported saving a median four hours per day of work due to company use of mobile apps. The study estimates that this saved time translates to small business savings of approximately $14,317 per year — that’s no small fish for a small company.

In part two of this blog post, learn about some of the plusses and minuses of building a mobile app or website.

July 25, 2014  7:09 PM

Nordstrom dives into text analytics; Uber sets enterprise mobile pace

Fran Sales Fran Sales Profile: Fran Sales
Analytics, Big Data, CIO, Cloud Computing, Cloud Security, CTO, Dark data, Enterprise, Gartner, Governance, grc, Hadoop, Information security, Mobile strategy, SaaS, social, Text analytics

SearchCIO’s CIO Innovator Essential Guide is out! Make sure to take a look through the collection of CIO profiles to meet the IT execs, your peers, who are using IT enable the business, and see what they’re doing in mobile, cloud, big data, agility and social collaboration.

Elsewhere on SearchCIO…

Matt Fisher, Nordstrom’s program manager for product reviews and ratings, never imagined “falling in love with data” when he took the post last year. In SearchCIO’s latest installment of its Business POV series, senior news writer Nicole Laskowski sat down with Fisher for details on how Nordstrom uses text analytics to dive deeper into thousands of customer reviews.

Hadoop’s ecosystem has developed in leaps and bounds, but Gartner analysts Nick Heudecker and Merv Adrian warn CIOs to practice caution before implementing the distributed computing framework. In Data Mill, Laskowski details why security and governance around Hadoop still have a ways to go for the framework to really meet enterprise needs.

If there was a crucial message panelists at MassTLC’s Mobile Summit drove home earlier this week, it’s that enterprises can’t afford to wait to fully understand the breadth of mobile’s disruption — just take a look at Uber’s shake-up of the taxi market. In this week’s Searchlight, find out why slow might not be the way to go when incorporating mobile your business strategy.

Only a few years ago, CTO and SearchCIO contributor Niel Nickolaisen fought hard to control his company’s environment, applications and users — and earned a reputation for being out of touch with and a barrier to IT progress. In his tip, Nickolaisen discusses how he’s learned to go about life the “bring your own anything” way.

Gone are the days of yore, when sharing content meant sending emails or placing ads in print or media outlets. To take advantage (and tackle the challenges) of the “digital business era,” as expert SearchCIO columnist Harvey Koeppel calls today’s convergence of social, mobile, analytics and cloud (SMAC), CIOs should study its implications on how they live and do business.

Just because you’ve finally deployed a mobile app after thorough development and testing doesn’t mean that the work is done; there’s still the matter of how successfully the app performs out in the field and how widely it’s used. SearchCIO contributor and mobile expert Bryan Barringer lays out how mobile application performance management (mAPM) tools can help counter performance degradation.

And in other SearchCIO happenings…

The latest issue of Modern Infrastructure: CIO Edition covers the range of issues CIOs must confront as the number of SaaS services — sanctioned and unsanctioned — continues to grow. Click through the ezine to learn how CIOs are rising to the task of SaaS governance.

And from the stories in the June/July CIO Decisions ezine on infonomics, we’ve gathered our favorite quotes from CIOs, thought leaders and analysts in a nifty CIO Citings infographic. Check them out and visit the individual ezine articles for more information on why it’s important to treat corporate information as a valuable asset.

It’s time for SearchCIO’s next tweet jam! Make sure to join our editors and other participants on Wednesday, July 30, at 3 p.m. EST, to talk cloud services. Use the #CIOchat hashtag to discuss how cloud can be used for competitive business gain, as well as CIOs’ relationships with cloud service providers.

The work isn’t done after you’ve completed your disaster recovery test, participants agreed in our last #CIOchat tweet jam on DR processes. Find out what best practices and advice they offered on what should go into a post-test after-action report.

Over on SearchCompliance…

The digital age has sped up the accumulation of “dark data,” or legacy data that no longer generates value. But companies can’t afford to disregard this information — doing so leads to missed benefits and further risk. In this SearchCompliance Ask the Expert, Derek Gascon, executive director of the Compliance, Governance and Oversight Council, explains why it’s time for organizations to start addressing dark data’s GRC challenges, and which tools can help.

In a video excerpt from SearchCompliance editor Ben Cole, Patrick Gilmore, CTO at data center services provider Markley Group discusses a prevalent question when it comes to securing information in the cloud: Who’s responsible, the provider or the customer?

In GRC news from around the Web from the past few weeks, a growing number of risks is continuously changing the regulatory landscape, and various organizations are feeling the effects. Check out SearchCompliance’s roundup to see how Wall Street banks are adapting, how CISO roles are evolving, and whether many enterprises’ risk management strategies are up to the task.

And that’s a wrap for this week’s news, everyone! Stay tuned for next week’s Symmetry roundup; in the meantime, stay updated on our stories during the week by following @SearchCIO, @SearchCIOSMB and @ITCompliance.

July 18, 2014  8:41 PM

Mindful awareness key to employee well-being — and competitive advantage

Fran Sales Fran Sales Profile: Fran Sales
Apple, CIO, Compliance, Employee engagement, Employee performance, IBM, Internet of Things, IT services, MapReduce, Microsoft, regulatory compliance, Startups

Digital overload and extreme multitasking are doing a number on employee engagement and efficiency — and the U.S. economy, SearchCIO senior news writer Nicole Laskowski reports. A few employees at Intel decided to take an unexpected tack to tackle this problem: mindfulness. In this two-part feature, find out how mindful awareness, not multitasking, could lead to competitive advantage.

What do the groundbreaking Apple-IBM deal and Microsoft’s massive job cuts have in common? Well, we could be witnessing the beginnings of big-tech enlightenment, as I cover in this week’s Searchlight. And it might do CIOs good to take a page from these big names’ playbooks and stir up their business processes.

For many new businesses, it isn’t just a matter of having a brilliant idea and the guts to put it into action; they face heaps of obstacles that range from searching for office space to looking for willing investors. Fortunately, PayPal’s here to help. From the Small Companies with Big Partners event that was held at its Boston headquarters this week, features writer Kristen Lee reports how PayPal’s Start Tank program goes beyond monetary support.

Hybrid cloud computing offers many perks, including lower costs, agility and faster IT service delivery. But it also comes with many challenges. In this two-part feature, contributor Dina Gerdeman covers how CIOs should handle being an IT services broker in a hybrid environment and what early adopters of hybrid computing advise their fellow CIOs in order to reap its benefits and avoid its pitfalls.

Elsewhere on SearchCIO…

What’s the next big thing after MapReduce? That was the looming question at a panel hosted by The Hive, a San Francisco meetup for big data startups. Considering its known imperfections and the takeover of the Internet of Things, the answer could lie in its — and other paradigms’ — evolution, Laskowski reports in Data Mill.

Continuing SearchCIO’s video coverage of the MIT CIO Sloan symposium, Laskowski chatted with Daimler Trucks CIO and Leadership Award finalist Dieter Haban about the power of sensor data. Check out this video for an inside look at how Daimler’s truck sensors link to its Internet of Things, and how that’s transformed Daimler’s business.

And in another interview, Laskowski sat down with Dell CIO and fellow award finalist Andi Karaboutis to discuss how she’s “stopped asking people what they want,” citing Steve Jobs’ quote that once a product is built, customers will want something new. Watch this video excerpt to find how she and her team “surprise and delight” both the business and customers.

Over at SearchCompliance…

Increasing digitization of records and global operations means that businesses need to turn to new technologies to help with their associated data management processes, which is easier said than done, particularly in terms of meeting compliance requirements. SearchCompliance contributor Jeffrey Ritter offers four tips to help ensure that tech investments can pass muster.

SearchCompliance has another #GRCchat tweet jam lined up, this time on the topic of compliance automation! Join editors and experts on Thursday, July 24, at 12 p.m. EDT, to discuss how, in the face of regulatory compliance challenges, companies can benefit from automating compliance management processes, as well as what impact that might have on GRC jobs.

And that’s all the news this week, folks! Check back in next week for another Symmetry wrap-up; meantime, stay on top of our stories during the week by following @SearchCIO, @SearchCIOSMB and @ITCompliance.

July 11, 2014  8:21 PM

Startup Hopper’s chief data scientist puts Spark in travel industry

Fran Sales Fran Sales Profile: Fran Sales
Apache, Big Data, Big Data analytics, CIO, Cloud Computing, Cloud Disaster Recovery, Data protection, Data Science, Information governance, Information security, IT hiring, IT talent, MapReduce, Mobile information management, Spark, Startup

Come one, come all, and take a gander at the inaugural video for our new series Startup Spotlight! SearchCIO features writer Kristen Lee gives us a peek inside the Cambridge, Massachusetts, offices of Hopper, a startup lauded by the press for its flight-search tools that allow customers to travel more cheaply. Lee speaks with chief data scientist Patrick Surry about the big data technology his team uses and how Hopper has garnered such creative IT talent.

Senior news writer Nicole Laskowski also picked Surry’s brain on the technology Hopper’s innovative business model runs on, particularly the relatively new Apache Spark, a large-scale, in-memory processing engine his team is currently experimenting with. Read about how Spark is helping Surry address the latency issues inherent in MapReduce, and why some experts have dubbed Spark the next big thing.

It might be time for CIOs to take another page from those Silicon Valley startups know-it-alls. On Searchlight, I cover how, in the race to snag top tech talent, startups and tech giants alike — from Dropbox to Facebook — are widening their hiring net to teens and tweens. Find out why high-tech employers are overlooking traditional resume credentials in today’s digital age, and why you should jump on the bandwagon.

In other SearchCIO matters…

As big data continues to get bigger, infrastructure bottlenecks increase and businesses are often forced to sacrifice insightful big data, such as highly personalized search results, for information that’s just good enough — or “fast data,” as Scott Jarr, co-founder of in-memory database provider VoltDB, refers to the business problem. In this week’s Data Mill, Laskowski details why a legacy, one-size-fits-all approach can no longer handle big data.

Over at TotalCIO, Lee kicks off her month-long investigation into the economics of cloud computing. In her first blog post of the series, Lee recounts her conversation with David Linthicum, senior vice president of cloud migration services provider Cloud Technology Partners, about how CIOs should work with their business colleagues to identify their “value drivers” for the cloud.

The latest installment of our CIO Briefings series is out! Check out the Essential Guide to get advice and resources from CIOs and disaster recovery (DR) experts alike on how to ensure your organization can continue to run efficiently should a data breach, natural catastrophe, human error or equipment failure occur — as well as how to prevent these disasters from happening again.

To dig deeper into disaster recovery, click through our slideshow on the topic, where we highlight top tweet responses to the question “What is the No. 1 pitfall to avoid when doing a disaster recovery test?” See what advice SearchCIO’s Twitter followers and DR tweet jam expert Paul Kirvan suggested for better disaster planning and recovery.

We also continue our recaps of the #CIOchat on DR, focusing on participants’ two cents on question, “How important is it to perform cloud-based disaster recovery tests?” Discover the perks and risks of cloud-based DR, and find out why CIOs should approach cloud with the assumption that it will fail.

In another installment of our coverage of the MIT Sloan CIO Symposium, SearchCompliance site editor Ben Cole sat down with Patrick Gilmore, CTO at Markley Group, a data center services provider based in Boston, to talk about what skills he looks for when rounding out his IT team. Watch this SearchCIO video to find out why security is squarely in Gilmore’s radar, and why he’s on the lookout for security experts who think offensively.

And on SearchCompliance…

Laws and regulations are constantly changing, and threats are constantly evolving, making it hard for organizations to ensure their IT policies and procedures remain compliant. Compliance expert and contributor Jeffrey Jenkins lists three steps IT and the business must take to develop a focused compliance scope.

Some things never change: A leading pain point for CISOs is how hard-pressed they are to articulate security threats to the rest of the C-suite. As contributor Richard Stiennon points out, perhaps it’s time for IT security officers to educate the business using network visibility to get a “visceral reaction.”

Keeping corporate and personal data separate on both employee- and corporate-owned devices while making sure that information is managed with the appropriate governance policies continues to be a struggle for organizations. In this Ask the Expert, Derek Gascon, executive director at the Compliance, Governance and Oversight Council, offers tips on how businesses can address these mobile information governance issues with the right processes and data management and security tools.

On the IT Compliance Advisor blog, we round up the latest news from around the Web, with data privacy and security once again taking the limelight. See the Obama administration and Microsoft’s take on users’ data protection rights and how consumer data risks are driving GRC job growth.

That’s all for the news we’ve got for the week! Stay tuned for next week’s Symmetry roundup; meanwhile, stay abreast of our stories during the week by following @SearchCIO, @SearchCIOSMB and @ITCompliance.

July 3, 2014  7:34 PM

Prepare for IoT security, and how to develop a SaaS risk strategy

Fran Sales Fran Sales Profile: Fran Sales
BYOD, CIO, Cloud Security, cybersecurity, FCC, Forrester, Internet of Things, Net Neutrality, Risk strategies, SaaS, SaaS applications, SaaS security, Sarbanes-Oxley Act, SMB

The Internet of Things provides consumers with many conveniences, but as ASIP CTO Andy Thurai and IBM VP of product management Michael Curry cautioned CIOs at MassTLC’s recent IoT conference, its massive attack surface and the lack of security standards also mean that breaches to these connected devices are inevitable. Features writer Kristen Lee lists four key elements of IoT security, according to Curry, to help CIOs prepare for these attacks.

But our IoT coverage isn’t all doom and gloom! At the MongoDB event in New York City, Amazon CTO Werner Vogels waxed enthusiastic about the widespread impact of IoT. In this week’s Data Mill, senior news writer Nicole Laskowski lays out Vogels’ standout examples of IoT forays in the fields of science, retail, sports and more.

In other SearchCIO matters…

CIOs walk a tightrope when it comes to managing SaaS apps. On the one hand, losing track of the business’ use of cloud apps could put their organization at greater risk of a security breach; at the other extreme, cracking down on shadow app use, even for security purposes, could restrict employee efficiency and productivity. In part one of her feature, executive editor Linda Tucci lays out how CIOs should begin developing a balanced SaaS risk strategy. In part two, she gets tips from French Caldwell, governance, risk and compliance expert at Gartner, on how to create a top-down SaaS governance policy.

Recently, Laskowski ran into Massachusetts Congressman Joe Kennedy at the offices of CyberArk, an information security company, and discovered that cyberattacks are a growing concern at the Capitol. If it can happen to Target and eBay, then it can happen to smaller players, Kennedy explained. In her CIO Matters column, Laskowski details why Washington’s answer to cyberwar shouldn’t be about mandates and regulatory compliance.

There’s no shortage of SearchCIO coverage on the ubiquity of BYOD in enterprises, but how many corporate employees actually use their own devices for work? Well, if we’re talking tablets, just the few at the very top, according to Forrester. In this week’s Searchlight, associate editor Emily McLaughlin explains what could be behind the research’s findings; plus, get her take on Facebook’s recent psychological experiment and Google Glass’ more nefarious uses.

Deepak Tiwari, analytics head for Google’s consumer operations division, has learned many lessons and discovered the value of failing fast ever since he began at the company three years ago. Here on the CIO Symmetry blog, Laskowski outlines Tiwari’s top takeaways for enterprises and small businesses alike from his presentation at the recent Useful Business Analytics Summit.

In SearchCIO’s latest tweet jam, disaster recovery expert Paul Kirvan and other participants emphasized the importance not only of having a comprehensive DR plan, but also of frequently testing these plans to ensure that they can work in the event of a real disaster. Check out this #CIOchat recap for more on how to best implement a DR plan test schedule.

And on SearchCompliance…

The Federal Communications Commission’s proposal to amend Open Internet rules and allow ISPs to charge content providers a fee for prioritized delivery has drawn much criticism from various parties, including consumer advocacy groups, technology companies and even talk-show host John Oliver. In SearchCompliance’s latest installment of its FAQ series, find out if ISPs truly could control performance quality and speeds should the U.S. government enforce the net neutrality proposal. And in a recap from the latest #GRCchat, see tweet jam participants’ predictions on the impact of the proposal’s usage-based pricing structure on small and medium-sized businesses (SMBs).

U.S. companies have the not-so-easy task of complying with a wide variety of regulations; large financial institutions, for instance, must adhere to the Sarbanes Oxley Act (SOX), the Gramm-Leach-Bliley Act, the Payment Card Industry Data Security Standard and a host of other laws. In this SearchCompliance tip, contributor Judith Myerson focuses on four steps toward meeting SOX’s data compliance mandates.

And that’s all for the week’s news, folks! Watch out for another Symmetry roundup next week; in the meantime, keep track of our stories during the week by following @SearchCIO, @SearchCIOSMB and @ITCompliance.

June 30, 2014  3:52 PM

An analytics team how-to for small business, from Google

Nicole Laskowski Nicole Laskowski Profile: Nicole Laskowski
Analytics, CIO, Data scientist, Google, IT centralization

Experimentation has become trendy. The test-and-learn philosophy — a variation on the fail fast approach — has been embraced by companies for building products or adding new features to a website. CIOs should also be incorporating the same approach in how they structure IT teams, hire new employees and even work with the business. That was the big takeaway from Deepak Tiwari’s short presentation at the recent Useful Business Analytics Summit.

As the head of strategic analytics and insights for Google’s consumer operations division, Tiwari has lived through his share of trials, errors and successes. Three years ago when he joined Google, he oversaw a team of two. Today, he’s leading 30-plus employees to provide support for and user insights in to Google consumer products. Here are five “lessons learned” he shared with attendees.

Remain independent. Arguments have been made for a decentralized approach to analytics, but for Tiwari and his team, centralization is crucial. While they serve and support the lines of business, they don’t report to them.

The buffer ensures a consistency across the organization rather than having to bend to the different dynamics of each business group. “Even if you’re a small analytics team, that’s how you’ll succeed and make your mark,” Tiwari said. “Make sure you remain independent in some way shape or form.”

Build a solid team culture. Tiwari’s “hire the best people” and “pay them well” are two obvious pieces of advice, but it’s important to remember that “best people” is subjective. A good fit at Google could be a bad fit at a non-Google company. And, while “salary matters,” Tiwari said, “that’s not the only thing that will keep them there.” Music to a small businesses’ ears, no doubt.

Tiwari made three additional suggestions: Hire slowly and take time to find the right people, give incoming employees interesting business problems to solve and build a solid team culture. Tiwari said his team “loves hanging out,” frequently grabbing lunch and dinner together. While that’s easy to do at Google (hello, free food), it’s also a possibility for smaller businesses to plan group down time.

Hire philosophers. Tiwari encourages businesses to avoid getting caught up in a data scientist game of hide and seek. The reality is, there is no simple method for finding the elusive data scientist or even a consistent job description to refer to.

In other words, “there is no secret sauce,” Tiwari said. That might mean thinking about the role of a data scientist as a team of people rather than a single individual or expanding your search to include candidates who don’t call themselves data scientists.

That’s good news for small businesses, which may not have the money to hire someone with a data scientist title. Instead, find people who are “hungry to look for patterns or hungry to do this kind work,” he said. Those qualities don’t begin and end with engineering, programming or computer science.

“You’re almost hiring philosophers,” he said. “And a philosopher, you can find in anybody.”

Find places to automate. As the team goes on to solve bigger — and harder — problems, the tediousness of, say, churning out reports can present a hurdle. One solution? Find ways to automate, Tiwari said.

Attribution modeling is an example. Businesses use this to pinpoint what events contributed to a certain outcome, such as a sale. So if revenue went up by 10% instead of the predicted 9%, “somebody would have to go and do an analysis,” Tiwari said. The good news? “If you have the data structure in place, if you have the data in place, attribution can be achieved with the click of a button,” he said. That frees up the team for exploring the data. “If you’re going to hire good people,” he said. “Make sure they’re not spending a lot of time on reporting – that they’re doing more insightful and strategic work.”

Not everyone needs to code. It’s also worth thinking about where to implement self-service technology so that it can, as Tiwari put it, “give power back to the people.”

He and his team are doing just that by “building experimentation platforms so even someone who is not very technical, someone, maybe, who is writing content, can actually go in and look at the impact of their content,” he said.

That kind of a project might be out of a small business’ scope, but figuring out ways to open up data and build processes the business can operate without IT can be a time saver. As, Tiwari pointed out, “not everyone has to learn how to code in Python.”

June 27, 2014  4:48 PM

The dawn of the chief marketing technologist; cloud ERP to the rescue

Fran Sales Fran Sales Profile: Fran Sales
Big Data, C-level, CIO, Cloud Computing, Cloud ERP, Customers, Data Analytics, Data brokering, Data privacy, Data Science, Data scientist, Disaster Recovery, Enterprise Resource Planning, Governance, Internet of Things, IT governanace, Marketing, Mobility, SaaS, Transparency

Marketing and brand awareness today sure aren’t what they looked like in the age of Mad Men, associate editor Emily McLaughlin writes in this week’s Searchlight. Marketing to today’s digital consumers requires the bridging of marketing and IT, resulting in the rise of the chief marketing technologist (CMT), an exec with both technical and marketing know-how.

The buzz around sensor data, commonly known as the Internet of Things (IoT), continues to snowball, and deservedly so; compelling use cases abounded at MassTLC‘s recent Value of Things conference about sensor data’s instrumental value in such arenas as urban planning, medical procedures – and even wine-making. But as senior news writer Nicole Laskowski writes in the Data Mill, the hype around IoT will be just that if companies don’t also keep the basics in mind.

Another field in which data analytics is making a splash: education. At the Useful Business Analytics Summit in Boston earlier this month, Alfred Essa, vice president of analytics and R&D at McGraw-Hill Education, detailed how he and his team leverage data science to tackle education’s leading challenges and get closer to their customers in the process.

In another installment of SearchCIO’s video coverage from the recent MIT Sloan CIO Symposium, , managing editor Rachel Lebeaux spoke with Houghton Mifflin Harcourt CIO Brook Colangelo about how he meets the demands of both internal and external customers, and how communicating IT’s value to the business factors into that strategy.

Elsewhere on SearchCIO…

Hailed by industry professionals and drawing investors’ attention, fast-growing craft brewery startups Golden Road Brewing and Avery Brewing Co. looked to be on the fast track, but poorly managed back-end processes and lack of insight into profit margins were holding them back. Luckily, SAP offered a solution in the form of its customized cloud ERP software OBeer. Contributor Christina Parizo explains how the startups’ phased-in implementations of the cloud solution eased inventory management, forecasting and more.

Disaster doesn’t mean what it used to: On top of natural catastrophes like hurricanes, we now have to deal with man-made disruptions such as cyberbreaches. Plus, newer technologies like virtualization, cloud and mobile mean more DR options to choose from. Take our disaster recovery quiz to make sure your business’ DR plan has what it takes to tackle this complex landscape.

On the CIO Symmetry blog, get my two cents on how the developments in mobility and the ubiquity of bring your own device (BYOD) can help round out small and medium-sized businesses’ (SMBs) DR strategy. Despite the risks associated with BYOD, mobile-based DR tools have proven useful in emergency situations and could ultimately bolster SMBs’ DR/BC response when larger disasters strike.

Moving applications and processes to a SaaS model offers CIOs and their teams plenty of opportunities, including business process efficiencies and reduced operational costs. According to expert contributor Harvey Koeppel, IT should treat SaaS governance holistically, taking into account business process support, in order to better align with the business.

It’s been a while since CTO and expert contributor Niel Nickolaisen has had to use an office phone or interoffice mail to communicate and collaborate with his colleagues. Email came along and changed his life; now, social networking is driving the pace of change even faster. Read Nickolaisen’s tip on why it’s time for IT to embrace social networking tools and reap their potential business benefits.

Moving on to SearchCompliance…

The heated debate around the Federal Communications Commission’s recent proposal to lift current net neutrality rules shows no signs of dying down, if SearchCompliance’s recently hosted #GRCchat on the topic is any indication. Editors and tweet jammers alike sounded off on the true implications of passing that proposal on Internet service providers, content providers and consumers.

Companies’ increased handling of and rapid transactions around big data today is making manual segregation of duties (SoD) increasingly fraught with human error and other complications — not good news when mandates such as the Sarbanes Oxley Act (SOX) have made SoD a compliance requirement for many organizations. Site editor Ben Cole interviewed Michael Rasmussen, chief pundit at GRC 20/20 Research LLC, to talk about how automating SoD can help with these challenges.

We’ve also rounded up the top data privacy news from around the Web and discovered a common thread: Consumers are growing ever more wary of companies’ use of their data, and they’re insisting on more privacy. The lesson for companies and data brokers: gain your customers’ trust and increase transparency in your data dealings.

That sums up for this week’s news! Tune in to our Symmetry wrap-up again next week; in the meantime, keep up with our stories during the week by following @SearchCIO, @SearchCIOSMB and @ITCompliance.

June 25, 2014  3:42 PM

Mobile disaster recovery could play a starring role in SMB strategies

Fran Sales Fran Sales Profile: Fran Sales
BYOD, CIO, Data Leakage, Disaster Recovery, Disaster recovery planning, Mobile, Mobile devices

It’s hard enough for enterprises to make sure their disaster recovery (DR) and business continuity (BC) plans are up to the task of meeting all kinds of disasters — not only natural catastrophes, but also those revolving around man-made errors and crises. Disaster nowadays doesn’t just mean “a catastrophe that bring down data centers”: As data becomes more valuable to the business (“data is the new currency!”), its loss, whether in the form of breaches or misplaced devices, becomes another calamity with which large companies must deal.

But small businesses might have it even tougher. They must maintain similar recovery and continuity capabilities, often while drawing on a more-limited pool of resources. And, to make matters more complex, bring your own device (BYOD), which is now commonplace in smaller businesses, probably means more DR-planning headaches when it comes to backing up and securing data on personal devices, not to mention the greater risk of corporate data leakage.

In AT&T’s 2013 business continuity survey of 500 IT executives, 64% responded that they have incorporated wireless network capabilities into their BC plans, while at the same time, 84% reported concern about the potential threats that face mobile networks and devices.

Luckily, new and less-expensive capabilities and services grounded mobility are ripe for the picking to help facilitate companies’ DR/BC planning. Yes, I said mobility — despite the risks associated with BYOD, mobility-based DR/BC products have proven useful in emergency situations and disasters and in ensuring business processes can go on.

For starters, many corporate users already do some work using smart devices, whether company-provided ones (which Nemertes Research predicted 70% of employees carried in 2012) or their own, in order to access or download corporate data, for collaboration or social networking efforts, or other productivity purposes. They also do work on their devices either at the office or remotely. I can attest to this firsthand: Many has been the time that my Internet was down, or I needed to contact my team if I was going to be late to the office, or I was on the train and needed to get in last-minute urgent edits (!). Thankfully, my work email is linked to my smartphone and hasn’t failed me yet.

If, like me, my fellow employees and many others in small- to medium-sized businesses (SMBs) already use their mobile devices for everyday tasks like downloading documents, it makes sense that mobility could foreseeably play a key role in business continuity when greater disasters strike, such as snowstorms and hurricanes. And perhaps, since these same employees are already adept at and comfortable with being productive on their devices in both the personal and business spheres, the learning curve in terms of applying mobile connectivity and productivity in the DR arena won’t be a very steep one. It could mean that they’ll play a more active role in your company’s overall DR plan, whether that means backing up their own devices’ data or being proactive in collaboration and social networking if the office goes out of service, for instance. That could, in turn, make a noticeable difference in how quickly business processes can get back up and running.

A note of caution, however: Any company with a deeply mobile workforce should already have a formal mobility policy in place, and if it plans to use mobile devices as DR tools, such a policy is doubly necessary. Planning for incorporating mobile into your DR plan should start with establishing a mobile security strategy, whether in the form of mobile device management, desktop virtualization, restricted data access, cointainerization or other forms of data monitoring and protection. Plus, adding these devices to the roster of machines that can access your company’s network means the corporate data on these devices must be backed up as well. This can seem a bane to CIOs who don’t want another layer of complexity in their management, so if you’re IT leader seeking to avail your SMB of mobile DR’s perks, make sure you’ve done your homework.

As more of our smartphones and tablets gain access to company networks and mission-critical data, it’s now more of a priority to make sure the servers that support those mobile management applications are also covered in your overarching DR strategy, which should also include redundancy, remote office sites and other layers. Mobility can be an incredibly useful, flexible and cost-effective tool to add to your DR/BC arsenal, especially if you’re a small business, and while you shouldn’t treat it as a one-stop shop, it can bring you one step closer to covering all your DR bases.

June 20, 2014  5:17 PM

A CIO’s hiring strategy predicated on ‘Einsteins’ and ‘Edisons’

Fran Sales Fran Sales Profile: Fran Sales
Big Data, Business Continuity, CIO, cybersecurity, Disaster Recovery, IT leadership, ITSM, Mission Statements, Mobile information management, PCI DSS, Startup

SearchCIO this week continued its video coverage of notable CIOs from the recent MIT Sloan CIO Symposium. Senior news writer Nicole Laskowski caught up with Dieter Haban, CIO at Daimler Trucks North America and a CIO Leadership Award finalist, to talk about how his postdoctoral work influenced his current leadership style, and how he’s learned not to look for particular IT skills when building a team. Watch these video excerpts to see why Haban has made the decision to invest in “Einsteins” and “Edisons.”

In other event news, features writer Kristen Lee swung by the Boston TechJam meetup last week, which teemed with local entrepreneurs, startups, leading tech companies, academics, venture capitalists and many others. The event is an effort by Boston’s tech groups and companies to promote Boston’s “innovation economy,” and comprised a startup pitch competition — and food trucks and beer! Lee’s blog post on TotalCIO shares some must-read advice for startup success.

In other SearchCIO matters…

Save the #CIOChat date: Is your organization ready for when inevitable disaster strikes? With information security a paramount concern for businesses, it’s time for CIOs to push disaster recovery (DR) and business continuity (BC) planning higher up the priority list. On June 25 at 3 p.m. EDT, join us and DR authority Paul Kirvan to discuss how to craft an effective DR/BC plan.

SearchCIO’s e-handbook on IT service management (ITSM) is out! If you’re struggling to manage IT services while keeping up with cloud, mobile and self-service IT, never fear: We’ve got recent stories and advice on innovative service management, how to make ITSM fun and the benefits of revamping your ITSM processes.

As high-profile data breach victims Target and Neiman Marcus move to add CISOs, it’s clear that CIOs and their C-level brethren should think beyond the financial hit of cybercrime. In this week’s Searchlight, associate site editor Emily McLaughlin details how the ever-burgeoning field of data theft is also costing these execs their job, and why they can’t afford to take a wait-and-see approach to security.

Michael Alton, one of Intel’s applied data scientists, says that the problem with big data is “relationships”: The more data businesses collect, the more data points they have to analyze, challenging CIOs to figure out how it all fits together. In Data Mill, Laskowski reports how Intel is using application programming interfaces to connect distributed computing systems to data science tools to make updating newer technologies more seamless.

As employees increasingly use their own devices to store enterprise data, the pressure is on for IT departments to prevent spyware from infiltrating them. In this Ask The Expert, application security expert Michael Cobb offers advice on choosing the best mobile device management product, creating an enterprise store, selecting mobile devices that offer container or workspace capabilities, and more.

It’s not only important to craft mission statements that clearly describe your organization’s purpose — it’s also necessary to continuously update them to reflect its current and long-term goals. Check out our collection of free IT mission statement examples from around the Web to ensure that you and your senior staff are communicating clear goals throughout your company.

Onto SearchCompliance happenings…

The U.S. Securities and Exchange Commission (SEC) recently published a risk alert that reveals its plans to assess the cybersecurity preparedness of more than 50 registered broker-dealers and investment advisers. Expert Jeffrey Ritter’s tip explains how the SEC’s initiative shows its strengthening stance toward regulating the private sector’s information systems and ensuring that their security strategies are adequate — and why your business should take heed.

Organizations that deal with financial data know the importance of making sure they comply with Payment Card Industry Data Security Standard (PCI DSS) requirements. But is passing the yearly PCI DSS audits all it takes? Nope, says Airlines Reporting Corporation’s security exec Rich Licato. While meeting compliance obligations is necessary, organizations must shift their corporate culture to one that targets overall operational risk reduction. Licato details how CISOs are in the prime spot to drive that conversation.

As bring your own device (BYOD) and mobility integrate into companies’ environments, information governance and compliance officers must employ a strong mobility management strategy to tackle the complex risks they pose. From sidestepping mobile security traps to developing a tough encryption policy, check out our top five tips to help bolster your mobile information governance strategy.

That’s it for our news this week! Check in with us again at next week’s Symmetry wrap-up; stay tuned in the meantime by following @SearchCIO, @SearchCIOSMB and @ITCompliance.

June 17, 2014  6:03 PM

Boston TechJam: Beer, live music, and tips on how to be a successful startup

Kristen Lee Kristen Lee Profile: Kristen Lee

The Boston TechJam, now in its second year, is an effort by the city’s tech companies and industry groups to promote the local “innovation economy.” And the boosterism was certainly front and center, including on the event’s website. Would-be attendees were told that “Massachusetts has the world’s greatest concentration of entrepreneurs, emerging and leading tech companies, top-tier academic institutions and students, world-class venture capitalists, incubators, and an eco-system of supporting service providers.” For good measure, the online notice proclaimed, “There is no better place on earth to launch and scale innovative ideas that tackle the toughest challenges.”

No better place on earth may be overstating the case, for sure, (Hello, Silicon Valley!) but the mood was upbeat enough inside Faneuil Hall, the 1742 meeting hall that’s now a popular tourist stop on the city’s 2.5 mile Freedom Trail. When I arrived, the first of six startup companies was trying to convince a panel of judges why it deserved to win this year’s pitch competition. (Prizes included a personal training with boxer/entrepreneur George Foreman III.)

As it turned out, the very first startup to go — Sharalike, a Cambridge-based mobile app that allows users to design slideshows — would end up with the prize, beating out what seemed to me the hands-down winner: Time Out, a mobile app that detects concussions designed by five high school girls from the nearby City of Winchester. (You’ll be hearing more about their software app on our Small Business IT page.)

In between the pitches, some of Boston’s most successful entrepreneurs took the stage to give advice about lessons learned while they struggled to get their companies off the ground.

Here are five tips for startup success that these entrepreneurs passed on to the audience of techies:

1) Have a business plan: “You have to think really hard about what you’re going to accomplish.”

Of course, you say. But having a rigorous business plan is easier said than done, said Rich Doyle co-founder of Boston-based Harpoon Brewery, best known for its India Pale Ale.  “Part of that is forecasting: you have to think really hard about what you’re going to accomplish and hold yourself to those standards or else you’ll never achieve them and you’ll never have a benchmark to know where you should be.” Doyle, who co-founded Harpoon Brewery in 1986 and was an instrumental player in the growth of the American microbrewery industry, wrote his business plan for the Harpoon Brewery during his second year at Harvard Business School after recognizing there was an unmet demand for European style beers.

While it is important to come up with a business plan, it is just as important to acknowledge that most business plans fail, said Donna Levin, co-founder and vice president of operations at, whose mission is to help connect families and caregivers. She said she wished she had known this when starting out as an entrepreneur.

“Don’t be discouraged if it looks like your plan that you worked so hard on doesn’t make it the first time,” Levin advised the crowd. It is important for startups to have a plan a, b, c, and d.

2) Assemble the right team:Happy cows make great cheese.”

By right team, serial entrepreneur Suzie Kim Riley, means people who will stand by you through thick and thin.

“You go from the highest highs to the lowest lows and sometimes they can all happen within one hour,” said Riley, founder and CEO of Aquto, a mobile ad platform. “And I would say that the key is not losing hope and having a strong team around you.”

All five of the entrepreneurs who offered tips talked about the importance of a strong team and why startups, in particular, need to create a culture that empowers their employees and makes them want to stick around.

“Happy cows make great cheese,” Brian Kalma, design chief at Blade, a venture capital firm and tech development studio, said. “So the lesson that you learn from that is basically that culture is king. It is arguably more important to hire for culture and hire the right people than it is to hire for talent and for the specific role that you need at that time.”

And Kalma added that “employees stick around when you build a culture that works for everyone.”

So how do you make sure you hire the right people who will positively influence your company’s culture and help you be successful?

Levin suggests trying the “elevator test.” Basically, when considering hiring someone, ask yourself if you could be stuck in an elevator with that person for three or four hours without wanting to kill yourself.

“And if the answer is ‘I would kill myself’ then they probably shouldn’t be on the team,” Levin said.

3) Communicate with your team: “Transparency is key.”

“Communication matters,” Doyle said. He was seconded by Andy Miller, chief innovation architect at Constant Contact, a company that helps its clients with marketing campaigns. Miller encouraged leaders of startups to share the good and the bad with their employees, if they want to build trust and loyalty. “I truly believe that transparency is key,” he said.

4) Be realistic: “Make a ‘to-not-do’ list.”

It can be difficult to admit you’re not good at something; especially when that means relinquishing control over part of your business to someone more capable than you.

“What are you good at? And how is that likely to mesh with the stages of your business? Are you good at getting something off the ground? Or maybe you aren’t really good at managing people,” Doyle said. “Understanding where you are and what your talents are in the life-cycle of business is really important to know.”

Levin said she wished someone had helped her realize sooner that sometimes, “there comes a point in time when you have to recognize that it’s time to bring in a specialist. And sometimes this means you have to give up the stuff that you really love doing.”

Doyle also suggests making a “to-not-do” list, emphasizing that it’s important to eliminate projects that aren’t worth your time. On Doyle’s “to-not-do” list? Getting rid of things that aren’t creative.

5) Know why you’re starting this company: “It’s that passion that’s going to keep you going.”

The reason is different for everyone. Some do it for money, some do it to be their own boss, some do it because they’re passionate about their idea, etc.

“For me, I always started my companies because I came up with an idea and I felt like if I see somebody else doing this I will die. I just would hate that feeling knowing that it was my idea but somebody else is doing it,” said Riley. “It’s that passion that’s going to keep you going.”

Let us know what you think about the story; email Kristen Lee, features writer, or find her on Twitter @Kristen_Lee_34

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: