1. Don’t Risk IT: Managing & Mitigating Risk in Your Business Melinda Fieldus
2.
3. Evolving towards a Smarter Planet 162 million Almost 162 million smart phones were sold in 2008, surpassing laptop sales for the first time. 90% Nearly 90% of innovation in automobiles is related to software and electronics systems. 1 trillion Soon, there will be 1 trillion connected devices in the world, constituting an “internet of things.”
4. Evolving towards a Smarter Planet “ We have seen more change in the last 10 years than in the previous 90.” Ad J. Scheepbouwer, CEO, KPN Telecom New possibilities. New complexities. New risks....... Information Explosion Emerging Technologies Privacy Risks Complex Regulatory Landscape
5. Not all Risks are Created Equal Frequency of occurrences per year Frequent Infrequent Consequences (single occurrence loss) in dollars per occurrence Low High Viruses Worms Disk failures System availability failures Pandemics Natural disasters Application outages Data corruption Network problems Building fires Terrorism/civil unrest Data driven Event driven Business driven Regulatory compliance Workplace inaccessibility Failure to meet industry standards Regional power failures Governance Source: IBM Data growth Long term preservation Mergers and acquisitions New products Marketing campaigns Audits
6.
7.
8.
9.
10.
11.
12. Why IBM? IBM has a unique perspective on Managing Risk 400,000 employees across 130 countries with private data to protect Helping customers build smarter cities, smarter grids, rail systems, new data centers, trusted passport systems and more A leading provider of security and business resiliency solutions across a vast array of industries and services segments A leading provider of software, hardware, and service solutions around the world Trusted Advisor Security Company Solution Provider The Company
13. A smarter business needs smarter systems . Reduce the cost of security and resiliency. Protect data and manage compliance. Secure your data center . IBM can help you manage risk .
14. Textit Live Polling Q: Is addressing RISK a key focus in your current IT Strategy? Y / N
Notas do Editor
Risk is an issue being addressed by almost every company in business today. My name is Melinda Fieldus, I am the Risk Marketing Manager for IBM’s Global Technology Services division and I will over the course of the next 25 minutes be taking you on a journey…. - The Risk Landscape companies are facing today The Key Success Factors for managing risk So, let’s define what we mean by risk. Risk is the threat a business faces if something were to happen to it that would affect its ability to generate revenue, to sell its product, to make a profit. Companies faces risk differently. And the implications of different types of risks can include: downtime, non-compliance, litigation, fines and even bankruptcy. So, risk is commonly on the agenda of the senior mgmt team. In fact, IBM’s Global CIO Study last year found that 71% of CIOs rank risk as 1 of their top 3 priorities.
Risk is an issue being addressed by almost every company in business today. My name is Melinda Fieldus, I am the Risk Marketing Manager for IBM’s Global Technology Services division and I will over the course of the next 25 minutes be taking you on a journey…. - The Risk Landscape companies are facing today The Key Success Factors for managing risk So, to start with …let’s define what we mean by risk. Risk is the threat a business faces if something were to happen to it that would affect its ability to generate revenue, to sell its product, to make a profit. Companies faces risk differently. And the implications of different types of risks can include: downtime, non-compliance, litigation, fines and even bankruptcy. So, risk is commonly on the agenda of the senior mgmt team. In fact, IBM’s Global CIO Study last year found that 71% of CIOs rank risk as 1 of their top 3 priorities.
The situation is is that the world is becoming smaller, flatter, and smarter. More and more people and machines are becoming digitally aware and connected. This year, it is estimated that 1 trillion devices will be connected to the net. While this new, digitally-connected planet is creating many exciting new opportunities and capabilities, it is also creating an explosion in the amount of data and the number of transactions and assets that must be managed and controlled. And from this we are seeing the introduction of a number of risks… The rapid growth in data and digitally aware devices is straining our systems and infrastructure. The exponential growth in communications subscribers and services is exposing limitations in bandwidth and storage capacity. And, the connection of more and more networks, to the internet is exposing businesses to cyber threats. In addition to addressing system and infrastructure deficiencies that threaten future growth, organizations must also address rising customer expectations for quality service and increasing competitive pressures.
So, as you can see, with a smarter planet comes… The reality of living in a globally integrated world impacts us all
Unfortunately, not all risks are created equal – they vary greatly by industry, macroeconomic factors, company size, geographic location and technology availability to name a few. But generally speaking the risk landscape can be discussed in the context three different types of threats or risks that a company must be protect itself against. When you look at how these risks are plotted…certain events such as computer viruses may occur frequently and have a lower impact on the corporation; whereas other less frequent events such as a natural disaster could have devastating impact. You only have to look at the recent Icelandic volcano activity just over a week ago which some analysts claim have cost airlines approximately $1million an hour. What’s clear is that companies today must be able to address a spectrum of risks that could potentially impact their business if they are to survive and grow.
Our own research is backed up by analysts’ findings showing that our clients are no longer able to accept outages of any kind, from any cause, and that critical applications are not the only applications on the “need to be available 24/7” list. IT managers are being squeezed on all sides to reduce planned downtime for maintenance, upgrades, backups, etc.--all of which can create exposure from lack of preventative and necessary maintenance. Additionally IT is being asked to support security or compliance requirements and reporting as security attacks increase and unencrypted data is lost through a variety of sources – malicious or accidental. IT is also expected to provide an environment where new services or applications can be brought on line as fast as possible with minimal disruption to existing business processes and provide scalable hardware that allows for expansion when required. And we see the effects of downtime. It’s amazing that in some industries, downtime can equal 16 percent of revenue. That’s a staggering number. And for 32 percent of organizations, just four hours of downtime could destroy the company's revenue numbers for the year. We also know that some industries are facing fines from regulators if business is disrupted or if information and data are not available for a specified period of time – or recoverable within a designated time frame. Increasingly information, data, applications and systems availability are required 24x7. Consolidation and virtualization, global expansion, and the need to have systems geographically dispersed all increase the need to provide the highest levels of availability possible. It’s very important to understand the cost of outages or potential disruptions for any enterprise. The way to determine that, once you have completed the outage analysis, is to do a business impact analysis for your existing and planned applications and systems which support individual business units
Our own research is backed up by analysts’ findings showing that our clients are no longer able to accept outages of any kind, from any cause, and that critical applications are not the only applications on the “need to be available 24/7” list. IT managers are being squeezed on all sides to reduce planned downtime for maintenance, upgrades, backups, etc.--all of which can create exposure from lack of preventative and necessary maintenance. Additionally IT is being asked to support security or compliance requirements and reporting as security attacks increase and unencrypted data is lost through a variety of sources – malicious or accidental. IT is also expected to provide an environment where new services or applications can be brought on line as fast as possible with minimal disruption to existing business processes and provide scalable hardware that allows for expansion when required. And we see the effects of downtime. It’s amazing that in some industries, downtime can equal 16 percent of revenue. That’s a staggering number. And for 32 percent of organizations, just four hours of downtime could destroy the company's revenue numbers for the year. We also know that some industries are facing fines from regulators if business is disrupted or if information and data are not available for a specified period of time – or recoverable within a designated time frame. Increasingly information, data, applications and systems availability are required 24x7. Consolidation and virtualization, global expansion, and the need to have systems geographically dispersed all increase the need to provide the highest levels of availability possible. It’s very important to understand the cost of outages or potential disruptions for any enterprise. The way to determine that, once you have completed the outage analysis, is to do a business impact analysis for your existing and planned applications and systems which support individual business units
In short, managing risk matters -- now more than ever.
In short, managing risk matters -- now more than ever.