Dark IT

Dark IT is a more specific term than "Shadow IT" and self-explanatory. Dark IT is a threat to corporate interests for which the IT department is accountable. But the IT department can't do a damned thing about Dark IT in the absence of effective enterprise governance of IT (EGIT).

That's the issue we need to solve before we can address Dark IT.

Does ISACA offer value to its real members?

ISACA's membership is - reportedly - no longer dominated by security and audit folks. ISACA has a new constituency: the general IT practitioner. Supposedly ISACA wants to align its culture with that new audience, and COBIT 5 is built to be useful in all contexts.

So why aren't we seeing any change? Read the ISACA journal, go to events... the security and audit themes predominate.

I know it takes a long time to change culture but its five years now since ISACA first talked about this.

How to deal with Shadow IT

The issue arises when a business unit decides that they are exempt from organisational IT policy; that they have a right to act in the interests of their business unit rather than the enterprise as a whole; that they have no accountability to a central It function. When this happens, it is an indicator of a total failure of corporate governance, a dereliction of duty by the governors of the organisation. Shadow IT is ungoverned IT.

The nett result of new technology

Any new technology solves one set of problems and introduces another; it simplifies one area and complicates another; it reduces some costs but increases others; it brings new risks. The question is whether there is a nett gain in value. It's called a business case and we so often forget it in our haste to embrace the shiny and new.

Here comes China

© Can Stock Photo Inc
If you still think of China as a poor, backward, or primitive country, you are woefully out of date. You owe it to yourself and your kids to know better.

This is the fastest growing economy executing the biggest public infrastructure build-out in history, fast eclipsing anything the US or Europe has ever done. They are not coming up, they are already overtaking us.

Don't believe me? Read on.

where does DevOps work in the enterprise?

Gartner have been talking about bi-modal and tri-modal models of IT: some systems are legacy ones to be handled with legacy methods, with an emphasis on risk and control.

The Chicken ITles are at work on IT project success rates

Did you know Standish Chaos reports ("70% of IT projects fail") have been well discredited? No? Stop using the numbers. We're bad at IT projects but we're not that bad. And considering what we're up against, perhaps we're not that bad at all.

of course IT is an entity

I find it wearisome when people criticise those who talk about "IT and the business". Apparently we are not allowed to refer to all the units that internal IT serves as "the business". We are told "IT must be part of the business" etc.

Of course IT is an entity within the business, distinct from the business. What are they on about?

The corporate yoke

The symbolism of a company-branded lanyard and ID card hung around my neck is too potent for me. I'll do all I can to avoid wearing it. When the only option proffered is a logo-covered lanyard - no belt clip option - it says it all to me.

DevOps buzzword bingo

Buzzword Bingo is funny, but it is also a good test of whether you are across a topic. See how many of these words you know...

Syndicate content