Published May, 2015.
I’ve read recently a 2012 Forrester report where it’s stated that out of 156 senior IT decision-makers with cloud responsibilities, 98% had major cloud application management issues, and 90% believed that managing the transition of critical business applications to the cloud was a major challenge. What does this tell us? It simply tell us that there’s still a lot to do. This was true in 2012, and it’s still true in 2015. It goes without saying that underneath all the pomp, organizations are implementing cloud services without the appropriate due diligence to adapt their existing governance and management capabilities to support cloud services.
What are the consequences of not having a proper CGMS (*) and ITSM in place? The consequences are so huge that thinking about not having it it’s just a mindboggling thought…Perish the thought! If the issues are not addressed, at best they become the norm, i.e., they become a normal, more costly, and less effective way of doing business.
In some of the Companies I know of, the norm is to allow the technology adoption to move at a brisker pace than process adoption, thus increasing the risk of the cloud implementation failing altogether.
Fulton’s book has a very sensible approach to cloud governance adoption, instantiated through the use of three frameworks: CobiT 5, ISO 38500:2008, and Peter Weill and Jeanne W. Ross work done at the MIT Sloan School of Management (their work was published in “IT Governance: How Top Performers Manage IT Decision Rights for Superior Results”; incidentally Weill and Ross’ book is one of my IT “Bibles”:
(my own battered copy)
A few others frameworks should have been referenced. To wit: ISO 17799 (Security), and MOF.
Fulton’s wisely makes a clear distinction between “Corporate Governance” and “IT Governance” (some publications I’ve read recently usually mix the two). For starters, this was a good omen for the rest of the book.
What does it contain?:
The book is divided in two parts: concepts and implementation. Unfortunately the 104 pages of it don’t do justice to the theme’s complexity. What would I have liked to see here? To name just a few: IT Architecture, ITSM, IT Sourcing, SOX, Risk Management, Demand Management, and Portfolio Management. It’s the juxtaposition of these fields that really instantiates the Critical Success Factors of a Cloud Governance Implementation.
Is it worth reading? Yes, because everybody poops. If you want to categorize it in the bathroom reading material (I’m not minimizing it; the bathroom, i.e. thinking room, is where more critical decisions are made…), treat yourself to this amazing and very, very, very, very short read while you’re on the throne. It’ll surely make the go more enjoyable and you’ll also learn something worthwhile.
NB: (*) Cloud Governance Management System.