{"id":11243,"date":"2018-02-07T10:55:39","date_gmt":"2018-02-07T16:55:39","guid":{"rendered":"https:\/\/www.mrc-productivity.com\/blog\/?p=11243"},"modified":"2023-06-23T16:44:13","modified_gmt":"2023-06-23T21:44:13","slug":"5-lessons-cios-learned-2017","status":"publish","type":"post","link":"https:\/\/www.mrc-productivity.com\/blog\/2018\/02\/5-lessons-cios-learned-2017\/","title":{"rendered":"5 lessons that CIOs learned in 2017"},"content":{"rendered":"

\"Education\"Summary: As we start a new year, it helps to reflect on (and learn from) the past year. In this article, we take a look at the past year from an IT leader perspective. What are the most important lessons that IT leaders and CIOs learned (or should have learned) in 2017? What important takeaways from the last 12 months will help you succeed in the coming year? We answer those questions (and more) in this article.<\/em><\/span>
\n<\/a><\/p>\n

\"\"<\/p>\n

Thomas Edison is famously quoted as saying, \u201cI have not failed. I just found 10,000 ways that won\u2019t work.\u201d<\/p>\n

It\u2019s a great mentality. Instead of dwelling on mistakes, he learned from them. It\u2019s a trait that many successful people have in common. They learn from past mistakes and improve.<\/p>\n

So, what can you learn from the past? As we\u2019re still in the early days of 2018, let\u2019s take a moment to reflect on the past year. What lessons can you learn? What key takeaways from last year will help you succeed this year?<\/p>\n

Today, let\u2019s explore this topic from an IT leader\/CIO perspective. What lessons did CIOs learn in the last year, which will help them succeed this year? We\u2019ll cover the first 5 lessons in this article, and follow up with the remainder in a future article. Sound good? Okay, here are 5 lessons that CIOs and IT Leaders should take away from last year.<\/p>\n

Lesson #1: Cybersecurity needs a larger portion of your IT budget (and focus)<\/h3>\n

Last year saw many high-profile breaches. From Equifax to Yahoo to the leaked NSA tools that led to the WannaCry ransomware, it seems like no one was safe.<\/p>\n

\u201cIn 2017, the number of cyber-incidents DOUBLED,\u201d says Robert Douglas, President of PlanetMagpie IT Consulting<\/span><\/a>.<\/p><\/blockquote>\n

Not only are security breaches becoming more prevalent, they\u2019re expensive. The 2017 Ponemon \u201cCost of Data Breach Study<\/span><\/a>\u201d found that the average cost of a data breach is $3.62 million. This accounts for all aspects of a data breach, including negative press, data recovery, fixing the problem, etc\u2026<\/p>\n

The problem is, most companies are woefully underprepared. An IBM study<\/span><\/a> finds that 68% of companies aren\u2019t ready for cyber attacks. Why? For some it\u2019s ignorance. For others it\u2019s resources. Others simply don\u2019t think it will happen to them.<\/p>\n

What can we learn from last year\u2019s security incidents? Prepare for the worst. Dedicate more of your IT budget to cybersecurity.<\/p>\n

\u201cGoing into 2018, it’s now a necessity to devote a larger portion of IT budgets to network security expenses,\u201d explains Douglas. \u201cAt a minimum, every company needs front-end and end-point protection, timely patching, content filtering, cloud backups, employee cybersecurity training, and routine network penetration testing and analysis.\u201d<\/p><\/blockquote>\n

Now, one more point that needs mentioning: While dedicating more of your budget to security is important, understanding your current security capabilities is equally important. Many businesses lack the security expertise in-house to properly protect themselves. In these cases, consider bringing in security experts to help you get set up.<\/p>\n

“Smaller IT staffs have long done all the work on their network, sometimes putting network security at lowest priority,\u201d explains Douglas. \u201cIn fact, most IT technicians rarely work on network gear. To protect against network penetrations, even in small environments, doing your own security work is unwise. Just like most people can’t service their own car anymore without diagnostic computers, IT Departments should employ network security experts to set up, manage and test their networks.”<\/p><\/blockquote>\n

Lesson #2: The best CIOs challenge the status quo<\/h3>\n
\"\"
photo credit: geralt<\/a> via pixabay<\/a> cc<\/a><\/figcaption><\/figure>\n

We\u2019re living in a time of rapid technological change. New tools and technologies are constantly emerging. Entire industries are being disrupted. You don\u2019t have to look very hard to find lists of companies that have recently disappeared.<\/p>\n

How can your company avoid this fate. It starts with agility. This article over on Forbes<\/span><\/a> sums things up nicely: \u201cIn today\u2019s market, not only is change happening quickly, it\u2019s forcing businesses themselves to change quickly. It\u2019s a constant flow of innovation, disruption \u2014 and sometimes chaos \u2014 that is moving us ahead, even faster than we ever imagined. Many say agility is the key to surviving in the age of technological hairpin turns. In fact, 68% of companies identify agility as one of their most important initiatives.\u201d<\/p>\n

What\u2019s one of the biggest enemies of agility? The status quo. In today\u2019s rapidly changing world, this is one of the most dangerous places you can be. This mentality resists change. It keeps outdated processes and tools around because \u201cWe\u2019ve always done it that way,\u201d or \u201cThat\u2019s just how things work around here.\u201d<\/p>\n

More importantly, it keeps your business stuck in the past while your competition moves forward.<\/p>\n

The most successful CIOs are those that challenge this way of thinking. They must constantly ask \u201cWhy are we doing this?\u201d and \u201cIs there a better way?\u201d They must challenge existing processes, tools, and roles.<\/p>\n

One example: The role of the IT department. For many businesses, the IT department is still viewed as a back-office function. It\u2019s more of a necessity to keep the business running. These days, that outdated way of thinking needs to be addressed. As explained below, the modern IT department must be viewed as a business driver.<\/p>\n

\u201cIT is often viewed as the framework or structure of a business,\u201d says Matthew Anderson, IT Development and Applications Director at Pearson Frank<\/span><\/a>. \u201cFor us, IT is using the latest technologies to help streamline our business processes and performance which means we can work more efficiently, more effectively, and smarter. Ultimately, this allows us to better focus on the needs of our customers.\u201d<\/p><\/blockquote>\n

Lesson #3: The line of business can take on some work<\/h3>\n
\"\"
photo credit: OpenClips<\/a> via pixabay<\/a> cc<\/a><\/figcaption><\/figure>\n

In 2017, we saw an increased need for speed. As technology plays a larger role in organizations, business users demand solutions faster than ever. They expect new applications\u2013from reports, to mobile apps, to portals, and everything in between\u2013right away.<\/p>\n

The problem: IT departments are already overworked and understaffed. They\u2019re struggling to meet the growing demand.<\/p>\n

At a recent Application Strategies & Solutions Summit, Gartner shared a surprising statistic: \u201cThrough 2021 market demand for app development will grow at least 5x faster that IT capacity to deliver it.\u201d<\/p>\n

How are CIO\u2019s and IT Leaders dealing with this increased demand? Over the past year, we\u2019ve seen self-service platforms really take hold in the enterprise. More and more, IT departments supply end users with controlled, self-service platforms. These tools give IT control data and user access, while giving end users the ability to create their own solutions.<\/p>\n

Gartner sums up the trend nicely in this report<\/span><\/a>: \u201cToday, the trend toward citizen development is accelerating in organizations of all types and sizes. Most are finding that citizen development projects can reduce IT workloads when managed appropriately; for example, citizen development projects that meet a \u2018sweet spot\u2019 for deployments can streamline the IT effort and enable corporate IT resources to focus on critical success factors rather than on small, and less business-critical, projects. Citizen development also enables IT to focus on moving \u2018big rocks,\u2019 rather than juggling \u2018small pebbles.\u2019\u201d<\/p>\n

Going forward, the lesson is clear: If IT departments are going to play an increased role in the business, they must move some development tasks over to the end users. With the growing demand and rise of simple, self-service platforms, this is a trend of the future.<\/p>\n

\u201cGiven the rapid adoption of \u201cno-code\u201d development tools, we saw many IT leaders \u201chand off\u201d mobile app development to the line of business,\u201d says Patricia Oswalt, SVP, MobileFrame<\/span><\/a>. \u201cSeeing as how they\u2019re driving the requirements and often want bespoke solutions that preclude the use of off-the-shelf-software, the line of business \u201cwants what they want\u201d. No-code tools let them build accordingly, without the need for inefficient back and forths with internal dev shops. Many of these tools are powerful enough, that if\/when IT is asked to assume ownership, they can easily pick it up and continue to evolve the applications. This \u201ccitizen developer\u201d approach is helping to alleviate the burden on technical staff to meet aggressive timelines and large project volume, while simultaneously fulfilling the demands of the LOB.\u201d<\/p><\/blockquote>\n

Lesson #4: Faster patching can keep you out of the headlines<\/h3>\n
\"\"
photo credit: JavadR<\/a> via pixabay<\/a> cc<\/a><\/figcaption><\/figure>\n

They say any press is good press, but I\u2019ll bet companies that experienced a data breach last year would beg to differ. No CIO or IT Leader wants their business in the news for a data breach.<\/p>\n

What can you learn from some of the biggest security incidents last year? Faster patching can keep you out of the news.<\/p>\n

Some of the biggest breaches last year came as a result of unpatched software. For instance, a failure to install current network security patches opened the door for Equifax security breach. As another example, the WannaCry ransomware targeted unpatched Windows PCs.<\/p>\n

The lesson here is obvious. The modern business can\u2019t afford slow patching processes.<\/p>\n

\u201cBased on numerous events in 2017, it is clear that organizations need to stay on top of their patching schedules,\u201d says Erik Gerard, Principal Advisor at Impact Advisors<\/span><\/a>. \u201cIf they had, they would not have been breached and would have avoided technical, legal and PR difficulties. In order to mitigate these challenges, organizations need to develop a monthly standard operating procedure (SOP) that incorporates downloading, testing and distributing patches to the vast majority of their PCs within 48 hours of their release. Some will say they can\u2019t do that, but these days, they can\u2019t afford not to! I\u2019ve worked at organizations that do this monthly and will have 95% of their 160,000 PCs patched in the first 24 hours.\u201d<\/p><\/blockquote>\n

Lesson #5: Don’t put all your eggs into one cloud basket<\/h3>\n
\"\"
photo credit: FutUndBeidl<\/a> via photopin<\/a> cc<\/a><\/figcaption><\/figure>\n

Early last year, Amazon AWS experienced an outage, which brought down a good chunk of the internet for a few hours. It wasn\u2019t the first time this has happened, and it probably won\u2019t be the last.<\/p>\n

Now, I\u2019m not trying to single out Amazon, or even tell you to avoid AWS. I only bring this up to highlight the importance of redundant solutions. Do you really want your entire business to grind to a halt when one service fails? Of course not!<\/p>\n

The big lesson we can take away from this: You need a multi-cloud strategy. Not only does this provide redundancy, it lets you capitalize on the best tools from each vendor.<\/p>\n

\u201cCIOs need to develop a multi-cloud strategy,\u201d says Nic Grange, CTO of Retriever Communications<\/span><\/a>. \u201cWhile AWS has been ahead of the game for a while in many areas, Microsoft Azure and Google Cloud have come a long way in the last few years and in some areas are starting to be a much better choice. That doesn’t mean you need to migrate everything to the new cloud. You just need to develop a strategy and capabilities that allow your teams to leverage the best tools for the task at hand. Otherwise your innovations are going to be limited by the capabilities of one vendor and what they charge.\u201d<\/p><\/blockquote>\n

Summary<\/h3>\n

These are just 5 lessons that CIOs learned in 2017. We’ll cover more in a future article. Would you like to add to this list? Feel free to comment below!<\/p>\n

\r\n\r\n

If you enjoyed this article, sign up for email updates<\/h3>\r\n

Sign up below, and we'll notify you of new blog articles via email. We value your privacy and will never share or sell your information. To learn more about how we handle data, please review our privacy policy<\/a>.\r\n\r\n\r\n<\/div>\n","protected":false},"excerpt":{"rendered":"

Summary: As we start a new year, it helps to reflect on (and learn from) the past year. In this article, we take a look at the past year from an IT leader perspective. What are the most important lessons that IT leaders and CIOs learned (or should have learned) in 2017? What important takeaways …<\/p>\n

5 lessons that CIOs learned in 2017<\/span> Read More »<\/a><\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"site-sidebar-layout":"default","site-content-layout":"default","ast-global-header-display":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","theme-transparent-header-meta":"","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","slim_seo":{"title":"5 lessons that CIOs learned in 2017 - mrc's Cup of Joe Blog","description":"Summary: As we start a new year, it helps to reflect on (and learn from) the past year. In this article, we take a look at the past year from an IT leader persp"},"footnotes":""},"categories":[8],"tags":[106],"class_list":["post-11243","post","type-post","status-publish","format-standard","hentry","category-education","tag-cio"],"_links":{"self":[{"href":"https:\/\/www.mrc-productivity.com\/blog\/wp-json\/wp\/v2\/posts\/11243","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.mrc-productivity.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.mrc-productivity.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.mrc-productivity.com\/blog\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/www.mrc-productivity.com\/blog\/wp-json\/wp\/v2\/comments?post=11243"}],"version-history":[{"count":5,"href":"https:\/\/www.mrc-productivity.com\/blog\/wp-json\/wp\/v2\/posts\/11243\/revisions"}],"predecessor-version":[{"id":15008,"href":"https:\/\/www.mrc-productivity.com\/blog\/wp-json\/wp\/v2\/posts\/11243\/revisions\/15008"}],"wp:attachment":[{"href":"https:\/\/www.mrc-productivity.com\/blog\/wp-json\/wp\/v2\/media?parent=11243"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.mrc-productivity.com\/blog\/wp-json\/wp\/v2\/categories?post=11243"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.mrc-productivity.com\/blog\/wp-json\/wp\/v2\/tags?post=11243"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}