CIOs are frequently asked, "What are our IT risks?" Unfortunately, this question is too generic, since there are multiple kinds of risk. Before starting any risk assessment, IT needs to understand both the concern prompting the request and which risks need to be assessed. Moreover, everyone needs to understand that nearly all risks that affect an IT organization affect the entire business.
Risks fall into four categories that require different mitigation tools:
Business operations risk. An assessment determines the risks involved in addressing or ignoring a particular competitive threat. Analyzing competitive threats helps the company decide whether to invest the resources necessary to combat the threat.
Determining appropriate responses to competitive threats from nontraditional sources can be particularly difficult. For example, many high-tech corporations initially dismissed Microsoft as just a bunch of Harvard dropouts. They paid dearly for underestimating that risk.
The appropriate mitigation tool is a good business case that evaluates all associated risks. For new business opportunities, a thorough risk assessment may be as important to success as accurate financial projections.
Program risk. For approved or existing programs, management concerns focus on whether the program or project will be delivered on time, within budget and with high quality. Risk is mitigated by effective project management and regular monitoring.
Business interruption risk. This type of risk affects the company's ability to continue operating under difficult circumstances. Scenarios span the gamut from a failed server to a destroyed building. In most cases, a failed server causes minor problems for certain people. In contrast, a destroyed building can bring all company operations to a halt.
Risk is mitigated by a continuity of operations (COOP) plan that describes how the business will function in the event of various difficulties. Most organizations start with an IT disaster recovery plan (DRP) for the data centre. Eventually, the DRP needs to be broadened to focus on restoring business processes and evolve into a full-blown COOP.
Market risk. This category is divided into geopolitical and industry-specific risks. Geopolitical risks include war, terrorism and epidemics, as well as nationalization and import restrictions. These risks vary depending on the country, the complexity of the corporate supply chain and the importance of the industry to political leadership. Industry-specific risks also vary. For example, financial services must contend with credit squeezes and meltdowns of collateralized debt obligations and structured investment vehicles. Consumer product makers may be plagued by "flash mobs" trashing their products via social networks.
Scenario planning mitigates risk by developing responses to various unlikely events. Most important, it attempts to discover previously unknown risks, because the most dangerous risk is often the one you don't identify.
Outsourcing endeavours -- particularly offshore -- have increased risks in each category. Risk assessments for these must address specialized concerns like communication and logistical difficulties, supplier viability and intellectual property rights.
Before embarking on any risk assessment, clarify which types of risk are of concern to your executive management. Then select the appropriate mitigation tools to address potential difficulties. Depending on the financial consequences, risk insurance may be warranted.
Thorough risk assessments leverage creative thinking into constructive preparations for addressing potential threats, and they're essential to success. As the old adage goes, "Forewarned is forearmed."
Bart Perkins is managing partner at Leverage Partners in the US, which helps organizations invest well in IT. Contact him at BartPerkins@LeveragePartners.com.
Read up on the latest ideas and technologies from companies that sell hardware, software and services. Solve Exchange Mailbox Storage Issues Once and for All
How to improve employee productivity in small and medium businesses
IT Service Management Needs and Adoption Trends: An Analysis of a Global Survey of IT Executives
Achieving the impossible: Unlimited application scalability
Business Intelligence and Enterprise Performance Management: Trends for Emerging Businesses
Gaining Competitive Advantage Through Enterprise Planning
Controlling storage costs with Oracle database 11g
Strategies for Eliminating .PST Files
- White PaperJoin Ed Thompson, Research VP, featured analyst firm, Gartner, Inc., and Brad Wilson, General Manager CRM Microsoft Dynamics, for a new webcast, Delivering the Power of Choice with Microsoft Dynamics CRM, available now. Our panel will break down the best practices for getting the most out of CRM and you'll learn key recommendations you can implement in your organization. Additionally, you'll also hear Microsoft's vision for CRM.
- White PaperLearn to tie virtualized computing to virtualized storage, to offer a dynamic set of capabilities within the data centre and create improved performance and system reliability. Discover how best to utilize EMC Celerra in a VMware ESX environment.
- White PaperView this webcast and discover the drivers for changing network design practices, why many organisations are changing their approach to network architecture and how enterprises should be moving forward with open architecture multi-vendor network solutions. Register now and learn how your business can maximize the business value of the enterprise network.
Discover how SOA can create smarter outcomes for your business.
Attend and learn:
- How SOA is helping leading companies to become more agile
- Where you should be applying SOA processes in your company
- The top SOA implementation mistakes to avoid
Click here for more information.
- +
CIO Live Podcast #79: Brent D Taylor, author of The Outsider's Edge: The Making of Self-Made Billionaires Part II 05 October, 2007 06:00:00
For his new book, The Outsider's Edge: The Making of Self-Made Billionaires, social researcher Brent D Taylor spent four years of intensive research investigating the psychological make-up and backgrounds of some of the world's richest men and women, including IT luminaries Bill Gates, Larry Ellison and Steve Jobs. Taylor discovered that, despite working in different industries and coming from different upbringings, they all have one thing in common -- they are all outsiders. - +
CIO Live Podcast #78: Brent D Taylor, author of The Outsider's Edge: The Making of Self-Made Billionaires 28 September, 2007 17:34:25
For his new book, The Outsider's Edge: The Making of Self-Made Billionaires, social researcher Brent D Taylor spent four years of intensive research investigating the psychological make-up and backgrounds of some of the world's richest men and women, including IT luminaries Bill Gates, Larry Ellison and Steve Jobs. Taylor discovered that, despite working in different industries and coming from different upbringings, they all have one thing in common -- they are all outsiders. - +
CIO Live Podcast #77: Panasonic Speeds Up Trans-Pacific File Transfers, Part III 21 September, 2007 07:00:00
Part three in our three-part special report from CIO's sister publication Network World in the US, as Paul Desmond reports from the Network World IT Roadmap Conference in Santa Clara, California. With development teams in the US and Japan, Panasonic needed a more efficient way to move very large files between the two locations. Iben Rodriguez, IT consultant for Panasonic Research and Development, explains how a storage-area network and virtual server technology helped speed up WAN performance. - +
CIO Live Podcast #76: Panasonic Speeds Up Trans-Pacific File Transfers, Part II 14 September, 2007 07:00:00
Part two in our three-part special report from CIO's sister publication Network World in the US, as Paul Desmond reports from the Network World IT Roadmap Conference in Santa Clara, California. With development teams in the US and Japan, Panasonic needed a more efficient way to move very large files between the two locations. Iben Rodriguez, IT consultant for Panasonic Research and Development, explains how a storage-area network and virtual server technology helped speed up WAN performance. - +
CIO Live Podcast #75: Panasonic Speeds Up Trans-Pacific File Transfers, Part I 07 September, 2007 07:00:05
Part one in our three-part special report from CIO's sister publication Network World in the US, as Paul Desmond reports from the Network World IT Roadmap Conference in Santa Clara, California. With development teams in the US and Japan, Panasonic needed a more efficient way to move very large files between the two locations. Iben Rodriguez, IT consultant for Panasonic Research and Development, explains how a storage-area network and virtual server technology helped speed up WAN performance.
- +
Virtually every Windows PC at risk, says Secunia 04 December, 2008 08:00:00
Almost all PCs scanned by patch tool have an unpatched app; 46% have 11-plus.More than 98% of Windows computers harbor at least one unpatched application, and nearly half contain 11 or more programs at risk from attack, a Danish security company said Wednesday. - +
US Open used Web filtering to prevent online gambling 03 December, 2008 07:44:00
USTA took security measure to retain "squeaky clean" imageThe US Open tennis tournament provides network access for the players, guests and media, but this past summer the association running the event took an extra security step to make sure access wasn't too open. - +
CBS website bitten by iFrame hack 02 December, 2008 07:30:00
Russian malware distributors have launched another iFrame attack on a sub-domain of the cbs.com site.TV network CBS has become the latest big name to have it website used to host malware, a security company has reported. - +
Excerpt: Counterterrorism Strategies for Corporations 27 November, 2008 12:36:00
Mike Ackerman calls terrorism "the skunk at the globalization lawn party." His new book lays out 10 principles for how businesses can prepare and respond.Mike Ackerman calls terrorism "the skunk at the globalization lawn party." His new book lays out 10 principles for how businesses can prepare and respond. - +
The 10 Ackerman Principles of Counterterrorism 27 November, 2008 12:43:00
Consultant and author Mike Ackerman's 10 counterterrorism principles for business.Consultant and author Mike Ackerman's 10 counterterrorism principles for business.
Charles Sturt University Commences Unified Communications Deployment With Interactive Intelligence 04 December, 2008 08:30:00
AOC Launches 18.5” Widescreen Green 16:9 LCD Monitor in Australia and New Zealand 03 December, 2008 15:30:00
FrontRange Solutions eases software license management with new License Manager 3.0 03 December, 2008 14:56:00
Progress Software's Cure for Managing Services-based Applications 03 December, 2008 14:42:00
Informatica Powercenter added to Nec Infoframe Solution Suite 03 December, 2008 11:36:00
|
||
|
||
|
|
||
|
Controlling storage costs with Oracle database 11g
Organisations must embrace new ways of storing data that don't involve adding more of the same hardware to accommodate data growth and dealing with duplication as well as uncompressed information. Simple steps such as tiering storage, moving data across these tiers and reducing the amount of data to be managed, can dramatically reduce capital and operating expenses. Read on to learn how to implement these steps in your business.
Buying Guides
Latest Products
