Transformation Innovation

Stateless Computing

By G C Network | August 15, 2008

A few days ago I read a review of Merrill Lynch’s Jeffrey Birnbaum LinuxWorld keynote on stateless computing. “With stateless computing, users’ settings and data are automatically saved to the…

Cloud Services

By G C Network | August 14, 2008

38% of 456 business technology professionals in a Information Week survey indicated that they currently use or will consider using services from a cloud provider. This seems much betterthan the…

Amazon, Elastra and the New Enterprise Data Center

By G C Network | August 13, 2008

Last week Amazon made an investment into Elastra. Some see this as Amazon’s enterprise play. Others see it as move towards the viability of private clouds. I see it as…

Microsoft Midori

By G C Network | August 12, 2008

Last week word got out that Microsoft’s new research project codenamed Midori. According to Information Week “the Midori system is being called Microsoft’s first cloud-based OS, and it could one…

Dell Trademarking Cloud Computing

By G C Network | August 11, 2008

There has been quite a bit of chatter lately over Dell’s attempt to patent “cloud computing”. Last week, the US Patent and Trade Office put an end to those aspirations…

Rob Enderle Cautions on Cloud Computing

By G C Network | August 8, 2008

Words of caution from Rob Enderle in “The Real Truth and Technology and IT”: “The key to success in the cloud will be keeping solutions simple, plus understanding and mitigating…

3 Important Point for Federal Government Cloud Computing

By G C Network | August 7, 2008

Point 1: In May, Verizon and AT&T were awarded a DHS task order for just under $1B to provide telecommunications services to the department. Verizon won the lead provider’s spot…

A Cloud Methodology

By G C Network | August 7, 2008

Although this was published in June, I just saw it and felt it was to good not to repeat: A Methodology for Cloud Computing Architecture Peel off the applications individually,…

IBM Invests Nearly $400M on Cloud Computing Centers

By G C Network | August 6, 2008

In a press release last week, IBM says that it will spend $360 million to build its most sophisticated, state-of-the-art data center at its facility in Research Triangle Park (RTP),…

Cloud Computing and the NCOIC

By G C Network | August 5, 2008

According to their website, The Network Centric Operations Industry Consortium (NCOIC) has scheduled a session on cloud computing at their upcoming plenary session in September. In case you haven’t heard…

4 Factors Driving Digital Transformation ROI

The critical assessment factors for cloud ROI risk probability are the following:     

  • Infrastructure utilization
  • Speed of migration to cloud
  • Ability to scale business/mission processes
  • Quality delivered by the new cloud-based process 

These four factors directly drive digital transformation ROI because they affect revenue, cost, and the time required to realize any investment return. Differences between actual and projected values in these metrics indicate a likely failure to achieve the desired goals.

Although business alignment is always a primary digital transformation drive, ROI remains a key decision component. This metric should, however, be addressed from multiple vantage points to include cloud workload utilization, workload size versus memory/processor distribution and the virtual hardware instance to physical asset ratio. 

Value delivered through innovation should also be part of the business value calculation. Value can be delivered through operational cost reductions, optimization of resource capacity, and a reduced total cost of ownership. Business process time reductions, product quality improvements and customer experience enhancements are also useful outcomes.

Security Controls

Business/mission model changes can also introduce operational risk. Acceptance of these risk are based on executive risk tolerance. Their risk mitigation decisions result in the implementation of security controls. A control will restrict a list of possible actions down to what is allowed or permitted by the organization. Encryption, for example, can be used to restrict the unauthorized use of data.

The security control continuum extends over three categories:         

  • Management (administrative) controls: policies, standards, processes, procedures, and guidelines set by corporate administrative entities (i.e., executive to mid-level management)         
  • Operational (and physical) controls: operational security (execution of policies, standards and process, education, and awareness) and physical security (facility or infrastructure protection)
  • Technical (logical) controls: Access controls, identification and authentication, authorization, confidentiality, integrity, availability, and non-repudiation 

They also encompass the following types:

  • Directive controls: often referred to as administrative controls, advise employees of the behavior expected of them during their interfaces with or use of information systems
  • Preventive controls: include physical, administrative, and technical measures that preclude actions that violate policy or increase the risk to system resources
  • Deterrent controls: use warnings and a description of related consequences to prevent security violations
  • Compensating controls: Also called an alternative control, a mechanism that is put in place to address security requirements deemed impractical to implement
  • Detective controls: Refer to the use of practices, processes, and tools that identify and possibly react to security violations
  • Corrective controls: involves physical, administrative, and technical measures designed to react to a security-related incident in order to minimize the opportunity for an unwanted event to reoccur
  • Recovery controls: restore the system or operation to a normal operating state once integrity or availability is compromised 

The costs associated with the implementation of any security control should be weighed against the value gained from digital transformation business/mission process improvements.

Would you like to learn more about digital transformation innovation? Pick up a copy of my new book, Click to Transform! 

A book about business and technology
Posted in

pwsadmin