SlideShare uma empresa Scribd logo

ISACA Puget Sound November 2002 - CRM Security & Controls

P
prosenzw69

ISACA Puget Sound - CRM Security & Controls

NegóciosTecnologia
1 de 17
Baixar para ler offline
Customer Relationship Management Security & Controls ISACA Puget Sound Chapter – Seattle – November 19, 2002 1
Contact Information: Peter Rosenzweig 2
CRM – The Security and Controls Challenge – Introduction The integration of Customer Relationship Management (CRM) strategies has traditionally posed a great challenge for internal and external auditors, security professionals, and other security stakeholders. While security and controls always have to be carefully balanced between the value of protected information and the cost of control measures, it is often ignorance about CRM in general, which prevents the implementation of effective security solutions. The following three factors are commonly underestimated when organizations fail to properly articulate their risk exposure within a CRM environment: WHAT…? WHEN…? HOW MUCH…? Tangible Operational Quantifiable Intangible Strategic Non-Quantifiable Example: How does the Example: What are the Example: What is the value customer’s perception of our implications of compromised of a customer, brand image, service delivery impact the customer data on future increased product liability CRM strategy and profits. funding, product design, etc. and risk of litigation, etc. 3
A CRM Primer – The Birth of Customer Relationship Management The rise of the Internet and falling geographic and regulatory barriers have empowered customers and increased the competitive pressure on organizations. In many cases, the abundance of suppliers has transformed products and services into commodities, resulting in severe price wars and declining profitability. CRM strategies acknowledge that customers ARE NOT equal and require personalized communications and customer-centric sales strategies. As a result, customers are not simply presented with products, but receive customized solutions that address specific needs and help the organization to build long-lasting relationships. This strategy shifts the customer focus from pricing to brand/firm loyalty. Who is our customer ? What does the customer value ? What are our results ? What is our plan ? Source: “The First Action Requirement of Leadership”, Peter F. Drucker CRM applications provide the technological platform to support the dialogue with customer and find answers to the questions stated above. 4
A CRM Primer – Centralization of System Resources and Data At the core of each customer-centric business strategy, a 360-degree view of customers and markets has to be developed to personalize the interaction based on particular needs. CRM applications provide the platform to support the collection, analysis, and distribution of customer information, while integrating multiple data entry points. A study among Fortune1000 companies revealed that many organizations still lack integrated systems to consolidate knowledge about customers (see graph). However, the integration itself can pose significant risks to an organizations due to the increased potency and dependency of processed information. Organizations Lacking Unified Customer Knowledge Systems: 19% - Systems provide only partial view Source: “Customer Connections – New Strategies for Growth”, Robert Wayland / Paul Cole 19% - Single system that provides 62% - Multiple complete view systems by which to view customer 5
A CRM Primer – Customer Segmentation & Knowledge Management Organizations should differentiate new and existing customers based on loyalty and profitability (see graph below). The 80/20 rule, stating that 20% of all customer generate 80% of company’s revenues, increases the need for customer segmentation and allows an organization’s resources (e.g., sales and marketing budgets, staffing, acquisition of assets, etc.) to be better allocated: H Customer Profitability / Profitability Loyalty Matrix: Differentiation of Customer Strategies Strengthen loyalty – 100% focus on optimize profits through relationship cross- and up-selling building L H Loyalty Secure loyalty – try improve profitability (e.g., through cross-selling) Send customer to competitor ! L To support different customer strategies and personalization, information not only has to be gathered and analyzed, but also shared and acted upon. CRM applications provide a comprehensive suite of tools to support the creation, harvesting, sharing, and leveraging of customer information. 6
A CRM Primer – CRM Processes in the Overall Enterprise The generic CRM model supports multiple business processes and customer touch points: Customer Touch Points Remote / Field Phone-Based Web-Based Alliances / Marketing & Sales & Services Sales & Services Sales & Services Channel Partners Campaigns Applications Front Office (CRM) Back Office Marketing Sales Customer Service Database Lead Order Finance, Knowledge Marketing Management Management / Accounting, HR Management Billing Proposal Generation Data Mining / Case / Service Distribution & Analytics Management Logistics Procurement Configuration & Pricing Campaign Marketing Workflow Legacy Management Management Manufacturing Application Encyclopedia Source: “The CRM Handbook – From Group to Multi-Individual”, PricewaterhouseCoopers 7
A CRM Primer – Known Failure Points Studies revealed that up to 70% of all CRM implementations fail to deliver the expected results. Some of the identified key reasons can easily be avoided if integration steps are carefully evaluated: Solutions are implemented without long-term planning and an Missing CRM Strategy / Plan understanding how the technology will support corporate strategies and business process. Benchmarks to assess the ROI of CRM efforts are ignored. Lack of Data Quality Bad input – bad output; CRM initiatives are dependent on the integrity of data (i.e., data being accurate, complete, consistent in definition and treatment). Missing data quality impacts the reliability and success of CRM systems. CRM integrations require a coordination between IT and business teams Key Stakeholder Aren’t to identify business requirements and the appropriate technology to Involved support it. In addition, the CRM systems have to account for external constituencies that have a stake in the CRM process (i.e., customer, partners, etc.). Change Management becomes a critical factor to ensure alignment, collaboration, and user acceptance. Flawed Processes Are (Just) Due to the lack of a strategy, business processes are often not re- Automated evaluated. By simply automating them, obsolete and ineffective processes are ignored, further manifesting operational weaknesses. 8
CRM Security & Controls – Business Process Integrity Business Process Integrity (BPI) defines a framework for security and control strategies, which is intended to address four major objectives: Effectiveness and Efficiency of Operations: BPI ensures adequate access to system functionalities (based on roles and responsibilities), and leverages automated controls to enforce business best practice, as well as, policies and procedures (i.e., rules). CRM Exposure (examples): Users being “lost” due to excessive access rights, resource allocations and business rules (e.g., workflow) are not automated or utilized, etc. Reliability of Data and Reporting: BPI protects the integrity of data and its relevance for operational and strategic decision making. CRM Exposure (examples): Unauthorized or unintended data manipulations occur, compromising the value of processed data and competitive advantages, etc. Compliance with Laws and Regulations: BPI protects organizations from violating legal and regulatory requirements, which apply to the collection and distribution of data. CRM Exposure (examples): Violation of national and international privacy standards and industry regulations, resulting in fines, negative publicity, increase insurance premiums, etc. Prevention of Loss of Assets: BPI is intended to protect tangible and intangible corporate assets from loss and excessive write-offs. CRM Exposure (examples): Fraudulent sales transactions, inaccurate pricing of services & products, lack of user acceptance resulting in under-utilization of CRM investments, etc. 9
CRM Security & Controls – Application Integrity Application Integrity (AI) focuses on system-enabled security and control features to provide end-to-end integrity of business transactions. Application Integrity Enablers Application Access Control Process & Application Integrity Data Quality Integrity User Authentication Business Process Integrity Data Quality Strategy • Business Process Controls • Identity Management • Data Quality Standards • Single Sign-On Solutions • Meta-Data Management • Directory Services Privacy & Confidentiality • Resource Provisioning • Internal and External Policies Data Conversion User Authorization Nonrepudiation • Data Risk Assessment • Integrity of Data Transfer • Application Security • Data Analysis and Testing • Role-Based Access Controls • Data Optimization Application Integration • Interfaces and APIs Security Administration Data Monitoring Availability • Corporate Security Policies • Monitoring and Data and Standards • System Maintenance and Ownership Recovery 10
CRM Processes and Inherent Risks – User Acceptance & Data Integrity The integration of CRM systems into strategic and operational corporate processes, has increased concerns about the integrity of CRM applications supported business processes and related data. This increases the significance of security and control failures. In addition, a lack of confidence, coupled with eroding user acceptance, leaves a strong impact on the utilization of and success of CRM implementations, as well as the targeted Return on Investment. “The CRM Death Spiral” 2 System users try to find Data entry is incomplete 3 alternative means to System or inaccurate, impacting process information or Acceptance Data Integrity integrity and strategic business transactions value of information Lack of Confidence Lack of Value 1 Users (e.g., employees, Inadequacy of system 4 customers) don’t rely System information perpetuates on adequacy of security System Trust Reliability lack of system trust and and protection of acceptance personal information 11
CRM Security & Controls – Business Process Controls (Sales) Control weaknesses within the Sales business processes, traditionally, have the most immediate impact on an organization’s financial performance: Function Business Process Integrity Objectives * Risk Exposures * Sales Lead Management Ensure that lead information is Inadequate forecasting and resource complete and adequately reflects allocation (budgets, personnel, etc.) status and outcome of pursuits, helping to identify the nature of Wrong decision making in respect to wins and losses. sales and product strategies Proposal Generation Ensure that quotes include Release of unauthorized proposals and accurate pricing information, and pricing/product information that terms and conditions are in Increased product liability due to the line with corporate policies. use of non-standard contracts Configuration & Ensure that price lists and product Unauthorized updates to price lists Pricing configurations are approved and adequately reviewed and updated. Compromised product configuration, leading to increased product liability and wrong pricing options/strategies Marketing Ensure that the sales force can Inaccurate information adversely impacts Encyclopedia base its initiatives and resource forecasting, resource allocation, strategic allocations on adequate marketing decision making, and user/system information. acceptance * Integrity objectives and risk exposures are non-conclusive 12
CRM Security & Controls – Business Process Controls (Customer Service) Security and control failures within Customer Service processes negatively impact customer relationships, product design, and resource allocations: Function Business Process Integrity Objectives * Risk Exposures * Customer Knowledge Ensure that the information on Outdated customer information Service Management particular customers is accurate, diminishes value of CRM investment correctly updated, complete, and and adversely impact interaction with adequately protected. customer Accidental release of customer information and violation of privacy standards can impact brand recognition and system acceptance Case / Service Ensure that SRs are handled in a Inaccurate information negatively Management timely fashion, can be immediately impacts response to customers and related to known solutions, and product design are considered in product designs. Incomplete and inaccurate solutions can increase product liability Workflow Ensure that corporate processes Long response times to customer Management and resources respond to requests, negatively impacting customer customer requests (I.e., sales satisfaction and brand recognition and/or service requests) using the most efficient and effective means. Inappropriate resource allocation * Integrity objectives and risk exposures are non-conclusive 13
CRM Security & Controls – Business Process Controls (Marketing) Marketing processes rely on the integrity of collected information and the meaningful analysis of it. Control weaknesses impact data quality and resulting campaigns: Function Business Process Integrity Objectives * Risk Exposure * Marketing Database Marketing Ensure that categorization and Wrong segmentation or corrupt data segmentation of customer data is negatively impacts communication with in line with marketing and sales customer, resulting in hostile reactions or strategies, allowing the indifferences organization to present personalized solutions for Ineffective campaigns waste corporate customers. resources and can adversely impact brand recognition Data Mining / Ensure that methods for Wrong or incomplete information results Analytics forecasting and reporting follow in inaccurate forecasting, impacting standard procedures and that data resource allocations is adequately protected. Exposed marketing data might impact competitive advantage Campaign Ensure that campaign strategies Unauthorized release of campaigns can Management follow approval procedures and result in financial losses and impact are adequately protected. product liability Premature release of campaign information can impact competitive advantage * Integrity objectives and risk exposures are non-conclusive 14
CRM Security & Controls – Privacy Overview Privacy, or the lack of it, can have a strong impact on the successful implementation of new technologies and the related benefits (e.g., cost savings, additional sales channels, etc.). Concerns about privacy and confidentiality often prevent users (e.g., customers, employees, channel partners) from taking advantage of self-service functions, while relying on traditional, cost-intensive, and – quite often – ineffective practices. Privacy requirements should be carefully evaluated for the following classes of organizations: Companies processing personal data relating to citizens Companies processing any personal data that operate in countries that have adopted similar privacy laws to those of Europe (e.g., New Zealand, Hong Kong, and Canada) Companies processing personal data that wish to enhance their data warehouse solutions […] without negative government, media, and/or consumer responses Source: “Accelerating Customer Relationships – Using CRM and Relationship Technologies”, Ronald Swift Privacy breaches can have significant financial ramifications, including regulatory penalties, legal fees, marketing expenses to combat negative public perception, customer retributions, increased insurance premiums, and loss of market share. 15
CRM Security & Controls – Proliferation of Privacy Standards Corporate privacy initiatives ought to focus almost exclusively on risk avoidance. Awareness of regional and industry-specific requirements is critical to identify potential exposure. The list below highlights some of the most significant national and international standards: Region Standards Region Standards The Children’s Online Privacy EU Data Protection Protection Act (COPPA) Directive Gramm-Leach-Bliley Act (GLB) Safe Harbor Principle Health Insurance Portability and Accountability Act (HIPAA) Personal Information Protection and Electronics FTC Enforcement of Document Act Deceptive Trade Practices Guidelines for the Protection Proposed Consumer of Computer Processed Legislation in Congress and Personal Data Multiple States Privacy initiatives should evolve beyond just risk mitigation, and be considered as a strategic platform for value creation and competitive positioning. 16
CRM Security & Control Failures – Case Studies The case studies below are intended to illustrate the need for end-to-end protection to maintain the integrity of eBusiness solutions, and protect an organization’s investments and competitive advantage: Process(es) Risk Assessment Service Management Client fails to utilize system-enabled functions to match incoming service (Business Process Controls) requests with service level agreements. The lack of tracking results in a loss of revenue exceeding $6 mil. per year. Proposal Generation / Pricing While client uses sophisticated control features to prevent pricing information (Business Process Controls) from being updated, ‘proxy products’ are available that bypass these controls. Excessive use of these particular products is not monitored, resulting in unauthorized price manipulations and incorrect sales statistics. Proposal Generation / Pricing Employees abuse control weaknesses, allowing them to bypass pricing policies (User Authorization / Business and execute fraudulent sales transactions. The annual damages are estimated Process Controls) to exceed $ 3 mil. Lead Management Concerns about confidentiality of lead information discourage Sales Reps to (Privacy / User Authorization) enter accurate data (some leads are tracked with a value of $1). This not only impacts forecasting, budgeting, and fulfillment, but also renders the investment into a new lead management tool obsolete (i.e., diminished ROI). Knowledge Management A pharmaceutical company accidentally releases the email addresses of (Privacy) individuals using an anti-depressant. The company is subject to fines (FDA and FTC) and negative publicity. All The lack of a clear CRM plan results in uncoordinated development and (CRM Strategy) integration activities, resulting in excessive costs and lack of collaboration across business teams. 17

Recomendados

The Choice between Contact Management or CRM - Aberdeen Group
The Choice between Contact Management or CRM - Aberdeen GroupThe Choice between Contact Management or CRM - Aberdeen Group
The Choice between Contact Management or CRM - Aberdeen GroupCustemotion Unternehmensberatung UG (haftungsbeschränkt)
 
Bdw driving commercial excellence with analytics-danny kosasih
Bdw driving commercial excellence with analytics-danny kosasihBdw driving commercial excellence with analytics-danny kosasih
Bdw driving commercial excellence with analytics-danny kosasihDanny D. Kosasih
 
Redefining the Information Management Landscape for Competitive Advantage
Redefining the Information Management Landscape for Competitive AdvantageRedefining the Information Management Landscape for Competitive Advantage
Redefining the Information Management Landscape for Competitive AdvantageCognizant
 
Supply Management as a Core Capability (SMCC)
Supply Management as a Core Capability (SMCC)Supply Management as a Core Capability (SMCC)
Supply Management as a Core Capability (SMCC)Purchasing Practice
 
Six essentials for sales force success
Six essentials for sales force successSix essentials for sales force success
Six essentials for sales force successForum Corporation
 
Marketing services overview
Marketing services overviewMarketing services overview
Marketing services overviewChris Scafario
 
Smarter campaign management engaging customers at point of maximum impact
Smarter campaign management engaging customers at point of maximum impactSmarter campaign management engaging customers at point of maximum impact
Smarter campaign management engaging customers at point of maximum impactHolger Kyas
 
Pricing
Pricing Pricing
Pricing The House of Marketing
 

Recomendados

The Choice between Contact Management or CRM - Aberdeen Group
The Choice between Contact Management or CRM - Aberdeen GroupThe Choice between Contact Management or CRM - Aberdeen Group
The Choice between Contact Management or CRM - Aberdeen GroupCustemotion Unternehmensberatung UG (haftungsbeschränkt)
 
Bdw driving commercial excellence with analytics-danny kosasih
Bdw driving commercial excellence with analytics-danny kosasihBdw driving commercial excellence with analytics-danny kosasih
Bdw driving commercial excellence with analytics-danny kosasihDanny D. Kosasih
 
Redefining the Information Management Landscape for Competitive Advantage
Redefining the Information Management Landscape for Competitive AdvantageRedefining the Information Management Landscape for Competitive Advantage
Redefining the Information Management Landscape for Competitive AdvantageCognizant
 
Supply Management as a Core Capability (SMCC)
Supply Management as a Core Capability (SMCC)Supply Management as a Core Capability (SMCC)
Supply Management as a Core Capability (SMCC)Purchasing Practice
 
Six essentials for sales force success
Six essentials for sales force successSix essentials for sales force success
Six essentials for sales force successForum Corporation
 
Marketing services overview
Marketing services overviewMarketing services overview
Marketing services overviewChris Scafario
 
Smarter campaign management engaging customers at point of maximum impact
Smarter campaign management engaging customers at point of maximum impactSmarter campaign management engaging customers at point of maximum impact
Smarter campaign management engaging customers at point of maximum impactHolger Kyas
 
Pricing
Pricing Pricing
Pricing The House of Marketing
 
INFO TECH VL CRM Suites for Small Enterprises 2013
INFO TECH VL CRM Suites for Small Enterprises 2013INFO TECH VL CRM Suites for Small Enterprises 2013
INFO TECH VL CRM Suites for Small Enterprises 2013Sundae Solutions Co., Ltd.
 
CRM Manufacturing - Birmingham 25th Jan 2012
CRM Manufacturing - Birmingham 25th Jan 2012CRM Manufacturing - Birmingham 25th Jan 2012
CRM Manufacturing - Birmingham 25th Jan 2012antonioferrin
 
Successful Channel Manager Skills Matrix
Successful Channel Manager Skills MatrixSuccessful Channel Manager Skills Matrix
Successful Channel Manager Skills MatrixMichael Wright
 
Slaying the elusive data quality dragon
Slaying the elusive data quality dragon Slaying the elusive data quality dragon
Slaying the elusive data quality dragon priorp
 
Customer relationship management
Customer relationship managementCustomer relationship management
Customer relationship managementOmkareshwar Banore
 
What is CRM do.....
What is CRM do.....What is CRM do.....
What is CRM do.....ng8
 
CRM Solution - CRMnext
CRM Solution - CRMnextCRM Solution - CRMnext
CRM Solution - CRMnextCRMNEXT
 
Erp and crm
Erp and crmErp and crm
Erp and crmSneha Dwivedi
 
Dhl
DhlDhl
DhlOmor Saiful
 
Crrm unit i
Crrm unit iCrrm unit i
Crrm unit iKamlesh Prajapati
 
Crm Modelsمدلهای مدیریت ارتباط با مشتری
Crm Modelsمدلهای مدیریت ارتباط با مشتریCrm Modelsمدلهای مدیریت ارتباط با مشتری
Crm Modelsمدلهای مدیریت ارتباط با مشتریFarshid Abdi
 
Crm maximizing crm effectiveness during lean times
Crm maximizing crm effectiveness during lean timesCrm maximizing crm effectiveness during lean times
Crm maximizing crm effectiveness during lean timesMarcus Vannini
 
Customer Relationship Management: Proposed Framework from a Government Perspe...
Customer Relationship Management: Proposed Framework from a Government Perspe...Customer Relationship Management: Proposed Framework from a Government Perspe...
Customer Relationship Management: Proposed Framework from a Government Perspe...Arab Federation for Digital Economy
 
Sage CRM v7.1 Sales Datasheet
Sage CRM v7.1 Sales DatasheetSage CRM v7.1 Sales Datasheet
Sage CRM v7.1 Sales DatasheetCustemotion Unternehmensberatung UG (haftungsbeschränkt)
 
Data crm
Data crmData crm
Data crmmpsmoorthy
 
Enterprise Pricing Policies Crucial To Risk Mitigation
Enterprise Pricing Policies Crucial To Risk MitigationEnterprise Pricing Policies Crucial To Risk Mitigation
Enterprise Pricing Policies Crucial To Risk Mitigationrkmcgann
 
Crm Smart Strategies Presentation Arienti
Crm Smart Strategies Presentation ArientiCrm Smart Strategies Presentation Arienti
Crm Smart Strategies Presentation Arientiantonella Buonagurio
 
The Paradox of the Empowered Consumer
The Paradox of the Empowered ConsumerThe Paradox of the Empowered Consumer
The Paradox of the Empowered ConsumerVivastream
 
2012 harvard business school ibm coverage model linkedin
2012 harvard business school ibm coverage model linkedin2012 harvard business school ibm coverage model linkedin
2012 harvard business school ibm coverage model linkedinnlbdraper
 
Roi calculation
Roi calculationRoi calculation
Roi calculationkhibinite
 
Lec i sait_crm
Lec i sait_crmLec i sait_crm
Lec i sait_crmVimal Seth
 
Frost And Sullivan 2009
Frost And Sullivan 2009Frost And Sullivan 2009
Frost And Sullivan 2009Don Lamping
 

Mais conteúdo relacionado

Mais procurados

INFO TECH VL CRM Suites for Small Enterprises 2013
INFO TECH VL CRM Suites for Small Enterprises 2013INFO TECH VL CRM Suites for Small Enterprises 2013
INFO TECH VL CRM Suites for Small Enterprises 2013Sundae Solutions Co., Ltd.
 
CRM Manufacturing - Birmingham 25th Jan 2012
CRM Manufacturing - Birmingham 25th Jan 2012CRM Manufacturing - Birmingham 25th Jan 2012
CRM Manufacturing - Birmingham 25th Jan 2012antonioferrin
 
Successful Channel Manager Skills Matrix
Successful Channel Manager Skills MatrixSuccessful Channel Manager Skills Matrix
Successful Channel Manager Skills MatrixMichael Wright
 
Slaying the elusive data quality dragon
Slaying the elusive data quality dragon Slaying the elusive data quality dragon
Slaying the elusive data quality dragon priorp
 
Customer relationship management
Customer relationship managementCustomer relationship management
Customer relationship managementOmkareshwar Banore
 
What is CRM do.....
What is CRM do.....What is CRM do.....
What is CRM do.....ng8
 
CRM Solution - CRMnext
CRM Solution - CRMnextCRM Solution - CRMnext
CRM Solution - CRMnextCRMNEXT
 
Crm Modelsمدلهای مدیریت ارتباط با مشتری
Crm Modelsمدلهای مدیریت ارتباط با مشتریCrm Modelsمدلهای مدیریت ارتباط با مشتری
Crm Modelsمدلهای مدیریت ارتباط با مشتریFarshid Abdi
 
Crm maximizing crm effectiveness during lean times
Crm maximizing crm effectiveness during lean timesCrm maximizing crm effectiveness during lean times
Crm maximizing crm effectiveness during lean timesMarcus Vannini
 
Customer Relationship Management: Proposed Framework from a Government Perspe...
Customer Relationship Management: Proposed Framework from a Government Perspe...Customer Relationship Management: Proposed Framework from a Government Perspe...
Customer Relationship Management: Proposed Framework from a Government Perspe...Arab Federation for Digital Economy
 
Enterprise Pricing Policies Crucial To Risk Mitigation
Enterprise Pricing Policies Crucial To Risk MitigationEnterprise Pricing Policies Crucial To Risk Mitigation
Enterprise Pricing Policies Crucial To Risk Mitigationrkmcgann
 
Crm Smart Strategies Presentation Arienti
Crm Smart Strategies Presentation ArientiCrm Smart Strategies Presentation Arienti
Crm Smart Strategies Presentation Arientiantonella Buonagurio
 
The Paradox of the Empowered Consumer
The Paradox of the Empowered ConsumerThe Paradox of the Empowered Consumer
The Paradox of the Empowered ConsumerVivastream
 
2012 harvard business school ibm coverage model linkedin
2012 harvard business school ibm coverage model linkedin2012 harvard business school ibm coverage model linkedin
2012 harvard business school ibm coverage model linkedinnlbdraper
 
Roi calculation
Roi calculationRoi calculation
Roi calculationkhibinite
 

Mais procurados (20)

INFO TECH VL CRM Suites for Small Enterprises 2013
INFO TECH VL CRM Suites for Small Enterprises 2013INFO TECH VL CRM Suites for Small Enterprises 2013
INFO TECH VL CRM Suites for Small Enterprises 2013
 
CRM Manufacturing - Birmingham 25th Jan 2012
CRM Manufacturing - Birmingham 25th Jan 2012CRM Manufacturing - Birmingham 25th Jan 2012
CRM Manufacturing - Birmingham 25th Jan 2012
 
Successful Channel Manager Skills Matrix
Successful Channel Manager Skills MatrixSuccessful Channel Manager Skills Matrix
Successful Channel Manager Skills Matrix
 
Slaying the elusive data quality dragon
Slaying the elusive data quality dragon Slaying the elusive data quality dragon
Slaying the elusive data quality dragon
 
Customer relationship management
Customer relationship managementCustomer relationship management
Customer relationship management
 
What is CRM do.....
What is CRM do.....What is CRM do.....
What is CRM do.....
 
CRM Solution - CRMnext
CRM Solution - CRMnextCRM Solution - CRMnext
CRM Solution - CRMnext
 
Erp and crm
Erp and crmErp and crm
Erp and crm
 
Dhl
DhlDhl
Dhl
 
Crrm unit i
Crrm unit iCrrm unit i
Crrm unit i
 
Crm Modelsمدلهای مدیریت ارتباط با مشتری
Crm Modelsمدلهای مدیریت ارتباط با مشتریCrm Modelsمدلهای مدیریت ارتباط با مشتری
Crm Modelsمدلهای مدیریت ارتباط با مشتری
 
Crm maximizing crm effectiveness during lean times
Crm maximizing crm effectiveness during lean timesCrm maximizing crm effectiveness during lean times
Crm maximizing crm effectiveness during lean times
 
Customer Relationship Management: Proposed Framework from a Government Perspe...
Customer Relationship Management: Proposed Framework from a Government Perspe...Customer Relationship Management: Proposed Framework from a Government Perspe...
Customer Relationship Management: Proposed Framework from a Government Perspe...
 
Sage CRM v7.1 Sales Datasheet
Sage CRM v7.1 Sales DatasheetSage CRM v7.1 Sales Datasheet
Sage CRM v7.1 Sales Datasheet
 
Data crm
Data crmData crm
Data crm
 
Enterprise Pricing Policies Crucial To Risk Mitigation
Enterprise Pricing Policies Crucial To Risk MitigationEnterprise Pricing Policies Crucial To Risk Mitigation
Enterprise Pricing Policies Crucial To Risk Mitigation
 
Crm Smart Strategies Presentation Arienti
Crm Smart Strategies Presentation ArientiCrm Smart Strategies Presentation Arienti
Crm Smart Strategies Presentation Arienti
 
The Paradox of the Empowered Consumer
The Paradox of the Empowered ConsumerThe Paradox of the Empowered Consumer
The Paradox of the Empowered Consumer
 
2012 harvard business school ibm coverage model linkedin
2012 harvard business school ibm coverage model linkedin2012 harvard business school ibm coverage model linkedin
2012 harvard business school ibm coverage model linkedin
 
Roi calculation
Roi calculationRoi calculation
Roi calculation
 

Semelhante a ISACA Puget Sound November 2002 - CRM Security & Controls

Lec i sait_crm
Lec i sait_crmLec i sait_crm
Lec i sait_crmVimal Seth
 
Frost And Sullivan 2009
Frost And Sullivan 2009Frost And Sullivan 2009
Frost And Sullivan 2009Don Lamping
 
Session 1 & 2 introduction & evolution
Session 1 & 2 introduction & evolutionSession 1 & 2 introduction & evolution
Session 1 & 2 introduction & evolutionDelwin Arikatt
 
ARTICLE BY B C THIMMAIAH
ARTICLE BY B C THIMMAIAHARTICLE BY B C THIMMAIAH
ARTICLE BY B C THIMMAIAHTHIMMAIAH BC
 
ARTICLE BY B C THIMMAIAH
ARTICLE BY B C THIMMAIAHARTICLE BY B C THIMMAIAH
ARTICLE BY B C THIMMAIAHTHIMMAIAH BC
 
ARTICLE BY B C THIMMAIAH
ARTICLE BY B C THIMMAIAHARTICLE BY B C THIMMAIAH
ARTICLE BY B C THIMMAIAHTHIMMAIAH BC
 
Crmdataperspective
CrmdataperspectiveCrmdataperspective
CrmdataperspectiveJamal Pasha
 
Session 2 evolution of crm
Session 2 evolution of crmSession 2 evolution of crm
Session 2 evolution of crmDelwin Arikatt
 
Innovative campaign management | Applied Customer Insight | Logica Nederland
Innovative campaign management | Applied Customer Insight | Logica NederlandInnovative campaign management | Applied Customer Insight | Logica Nederland
Innovative campaign management | Applied Customer Insight | Logica NederlandLogica Nederland
 
Crm the road to crm riches accenture
Crm the road to crm riches accentureCrm the road to crm riches accenture
Crm the road to crm riches accentureMarcus Vannini
 
Nine Dimensions Of Commercial Excellence (Sandeep Bhat)
Nine Dimensions Of Commercial Excellence (Sandeep Bhat)Nine Dimensions Of Commercial Excellence (Sandeep Bhat)
Nine Dimensions Of Commercial Excellence (Sandeep Bhat)Sandeep Bhat
 
ARTICLE BY B C THIMMAIAH
ARTICLE BY B C THIMMAIAHARTICLE BY B C THIMMAIAH
ARTICLE BY B C THIMMAIAHTHIMMAIAH BC
 
Integrated Customer Relationship Management (CRM) Benchmark 2013
Integrated Customer Relationship Management (CRM) Benchmark 2013Integrated Customer Relationship Management (CRM) Benchmark 2013
Integrated Customer Relationship Management (CRM) Benchmark 2013Gleanster Research
 
customer relation management presentation roadmap what is known and
customer relation management presentation roadmap what is known andcustomer relation management presentation roadmap what is known and
customer relation management presentation roadmap what is known andMohamadIbrahim86
 
Innerworkings Pitch - Think Small to Get Big 3-4-13
Innerworkings Pitch - Think Small to Get Big 3-4-13Innerworkings Pitch - Think Small to Get Big 3-4-13
Innerworkings Pitch - Think Small to Get Big 3-4-13PrestonPate
 
Manage Successful CRM adopion: MACE framework
Manage Successful CRM adopion: MACE frameworkManage Successful CRM adopion: MACE framework
Manage Successful CRM adopion: MACE frameworkBrowne & Mohan
 
Customer relationship management
Customer relationship managementCustomer relationship management
Customer relationship managementSachin Kapoor
 

Semelhante a ISACA Puget Sound November 2002 - CRM Security & Controls (20)

Lec i sait_crm
Lec i sait_crmLec i sait_crm
Lec i sait_crm
 
Frost And Sullivan 2009
Frost And Sullivan 2009Frost And Sullivan 2009
Frost And Sullivan 2009
 
Session 1 & 2 introduction & evolution
Session 1 & 2 introduction & evolutionSession 1 & 2 introduction & evolution
Session 1 & 2 introduction & evolution
 
ARTICLE BY B C THIMMAIAH
ARTICLE BY B C THIMMAIAHARTICLE BY B C THIMMAIAH
ARTICLE BY B C THIMMAIAH
 
ARTICLE BY B C THIMMAIAH
ARTICLE BY B C THIMMAIAHARTICLE BY B C THIMMAIAH
ARTICLE BY B C THIMMAIAH
 
ARTICLE BY B C THIMMAIAH
ARTICLE BY B C THIMMAIAHARTICLE BY B C THIMMAIAH
ARTICLE BY B C THIMMAIAH
 
Crmdataperspective
CrmdataperspectiveCrmdataperspective
Crmdataperspective
 
Session 2 evolution of crm
Session 2 evolution of crmSession 2 evolution of crm
Session 2 evolution of crm
 
Innovative campaign management | Applied Customer Insight | Logica Nederland
Innovative campaign management | Applied Customer Insight | Logica NederlandInnovative campaign management | Applied Customer Insight | Logica Nederland
Innovative campaign management | Applied Customer Insight | Logica Nederland
 
Crm the road to crm riches accenture
Crm the road to crm riches accentureCrm the road to crm riches accenture
Crm the road to crm riches accenture
 
Nine Dimensions Of Commercial Excellence (Sandeep Bhat)
Nine Dimensions Of Commercial Excellence (Sandeep Bhat)Nine Dimensions Of Commercial Excellence (Sandeep Bhat)
Nine Dimensions Of Commercial Excellence (Sandeep Bhat)
 
ARTICLE BY B C THIMMAIAH
ARTICLE BY B C THIMMAIAHARTICLE BY B C THIMMAIAH
ARTICLE BY B C THIMMAIAH
 
Integrated Customer Relationship Management (CRM) Benchmark 2013
Integrated Customer Relationship Management (CRM) Benchmark 2013Integrated Customer Relationship Management (CRM) Benchmark 2013
Integrated Customer Relationship Management (CRM) Benchmark 2013
 
E-CRM
E-CRME-CRM
E-CRM
 
customer relation management presentation roadmap what is known and
customer relation management presentation roadmap what is known andcustomer relation management presentation roadmap what is known and
customer relation management presentation roadmap what is known and
 
Innerworkings Pitch - Think Small to Get Big 3-4-13
Innerworkings Pitch - Think Small to Get Big 3-4-13Innerworkings Pitch - Think Small to Get Big 3-4-13
Innerworkings Pitch - Think Small to Get Big 3-4-13
 
Crm objectives
Crm objectivesCrm objectives
Crm objectives
 
Manage Successful CRM adopion: MACE framework
Manage Successful CRM adopion: MACE frameworkManage Successful CRM adopion: MACE framework
Manage Successful CRM adopion: MACE framework
 
Customer relationship management
Customer relationship managementCustomer relationship management
Customer relationship management
 
Retailing and CRM
Retailing and CRMRetailing and CRM
Retailing and CRM
 

Último

Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...
Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...
Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...Sheetaleventcompany
 
Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876
Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876
Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876dlhescort
 
Falcon Invoice Discounting: Unlock Your Business Potential
Falcon Invoice Discounting: Unlock Your Business PotentialFalcon Invoice Discounting: Unlock Your Business Potential
Falcon Invoice Discounting: Unlock Your Business PotentialFalcon investment
 
Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...
Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...
Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...amitlee9823
 
BAGALUR CALL GIRL IN 98274*61493 ❤CALL GIRLS IN ESCORT SERVICE❤CALL GIRL
BAGALUR CALL GIRL IN 98274*61493 ❤CALL GIRLS IN ESCORT SERVICE❤CALL GIRLBAGALUR CALL GIRL IN 98274*61493 ❤CALL GIRLS IN ESCORT SERVICE❤CALL GIRL
BAGALUR CALL GIRL IN 98274*61493 ❤CALL GIRLS IN ESCORT SERVICE❤CALL GIRLkapoorjyoti4444
 
Malegaon Call Girls Service ☎ ️82500–77686 ☎️ Enjoy 24/7 Escort Service
Malegaon Call Girls Service ☎ ️82500–77686 ☎️ Enjoy 24/7 Escort ServiceMalegaon Call Girls Service ☎ ️82500–77686 ☎️ Enjoy 24/7 Escort Service
Malegaon Call Girls Service ☎ ️82500–77686 ☎️ Enjoy 24/7 Escort ServiceDamini Dixit
 
Eluru Call Girls Service ☎ ️93326-06886 ❤️‍🔥 Enjoy 24/7 Escort Service
Eluru Call Girls Service ☎ ️93326-06886 ❤️‍🔥 Enjoy 24/7 Escort ServiceEluru Call Girls Service ☎ ️93326-06886 ❤️‍🔥 Enjoy 24/7 Escort Service
Eluru Call Girls Service ☎ ️93326-06886 ❤️‍🔥 Enjoy 24/7 Escort ServiceDamini Dixit
 
Lundin Gold - Q1 2024 Conference Call Presentation (Revised)
Lundin Gold - Q1 2024 Conference Call Presentation (Revised)Lundin Gold - Q1 2024 Conference Call Presentation (Revised)
Lundin Gold - Q1 2024 Conference Call Presentation (Revised)Adnet Communications
 
Call Girls In Nangloi Rly Metro ꧂…….95996 … 13876 Enjoy ꧂Escort
Call Girls In Nangloi Rly Metro ꧂…….95996 … 13876 Enjoy ꧂EscortCall Girls In Nangloi Rly Metro ꧂…….95996 … 13876 Enjoy ꧂Escort
Call Girls In Nangloi Rly Metro ꧂…….95996 … 13876 Enjoy ꧂Escortdlhescort
 
Dr. Admir Softic_ presentation_Green Club_ENG.pdf
Dr. Admir Softic_ presentation_Green Club_ENG.pdfDr. Admir Softic_ presentation_Green Club_ENG.pdf
Dr. Admir Softic_ presentation_Green Club_ENG.pdfAdmir Softic
 
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...daisycvs
 
Value Proposition canvas- Customer needs and pains
Value Proposition canvas- Customer needs and painsValue Proposition canvas- Customer needs and pains
Value Proposition canvas- Customer needs and painsP&CO
 
Falcon Invoice Discounting: The best investment platform in india for investors
Falcon Invoice Discounting: The best investment platform in india for investorsFalcon Invoice Discounting: The best investment platform in india for investors
Falcon Invoice Discounting: The best investment platform in india for investorsFalcon Invoice Discounting
 
Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...
Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...
Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...lizamodels9
 
Cheap Rate Call Girls In Noida Sector 62 Metro 959961乂3876
Cheap Rate Call Girls In Noida Sector 62 Metro 959961乂3876Cheap Rate Call Girls In Noida Sector 62 Metro 959961乂3876
Cheap Rate Call Girls In Noida Sector 62 Metro 959961乂3876dlhescort
 
Call Girls From Pari Chowk Greater Noida ❤️8448577510 ⊹Best Escorts Service I...
Call Girls From Pari Chowk Greater Noida ❤️8448577510 ⊹Best Escorts Service I...Call Girls From Pari Chowk Greater Noida ❤️8448577510 ⊹Best Escorts Service I...
Call Girls From Pari Chowk Greater Noida ❤️8448577510 ⊹Best Escorts Service I...lizamodels9
 
How to Get Started in Social Media for Art League City
How to Get Started in Social Media for Art League CityHow to Get Started in Social Media for Art League City
How to Get Started in Social Media for Art League CityEric T. Tung
 
Uneak White's Personal Brand Exploration Presentation
Uneak White's Personal Brand Exploration PresentationUneak White's Personal Brand Exploration Presentation
Uneak White's Personal Brand Exploration Presentationuneakwhite
 

Último (20)

Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...
Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...
Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...
 
Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876
Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876
Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876
 
Falcon Invoice Discounting: Unlock Your Business Potential
Falcon Invoice Discounting: Unlock Your Business PotentialFalcon Invoice Discounting: Unlock Your Business Potential
Falcon Invoice Discounting: Unlock Your Business Potential
 
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabiunwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
 
Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...
Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...
Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...
 
BAGALUR CALL GIRL IN 98274*61493 ❤CALL GIRLS IN ESCORT SERVICE❤CALL GIRL
BAGALUR CALL GIRL IN 98274*61493 ❤CALL GIRLS IN ESCORT SERVICE❤CALL GIRLBAGALUR CALL GIRL IN 98274*61493 ❤CALL GIRLS IN ESCORT SERVICE❤CALL GIRL
BAGALUR CALL GIRL IN 98274*61493 ❤CALL GIRLS IN ESCORT SERVICE❤CALL GIRL
 
Malegaon Call Girls Service ☎ ️82500–77686 ☎️ Enjoy 24/7 Escort Service
Malegaon Call Girls Service ☎ ️82500–77686 ☎️ Enjoy 24/7 Escort ServiceMalegaon Call Girls Service ☎ ️82500–77686 ☎️ Enjoy 24/7 Escort Service
Malegaon Call Girls Service ☎ ️82500–77686 ☎️ Enjoy 24/7 Escort Service
 
Eluru Call Girls Service ☎ ️93326-06886 ❤️‍🔥 Enjoy 24/7 Escort Service
Eluru Call Girls Service ☎ ️93326-06886 ❤️‍🔥 Enjoy 24/7 Escort ServiceEluru Call Girls Service ☎ ️93326-06886 ❤️‍🔥 Enjoy 24/7 Escort Service
Eluru Call Girls Service ☎ ️93326-06886 ❤️‍🔥 Enjoy 24/7 Escort Service
 
Lundin Gold - Q1 2024 Conference Call Presentation (Revised)
Lundin Gold - Q1 2024 Conference Call Presentation (Revised)Lundin Gold - Q1 2024 Conference Call Presentation (Revised)
Lundin Gold - Q1 2024 Conference Call Presentation (Revised)
 
(Anamika) VIP Call Girls Napur Call Now 8617697112 Napur Escorts 24x7
(Anamika) VIP Call Girls Napur Call Now 8617697112 Napur Escorts 24x7(Anamika) VIP Call Girls Napur Call Now 8617697112 Napur Escorts 24x7
(Anamika) VIP Call Girls Napur Call Now 8617697112 Napur Escorts 24x7
 
Call Girls In Nangloi Rly Metro ꧂…….95996 … 13876 Enjoy ꧂Escort
Call Girls In Nangloi Rly Metro ꧂…….95996 … 13876 Enjoy ꧂EscortCall Girls In Nangloi Rly Metro ꧂…….95996 … 13876 Enjoy ꧂Escort
Call Girls In Nangloi Rly Metro ꧂…….95996 … 13876 Enjoy ꧂Escort
 
Dr. Admir Softic_ presentation_Green Club_ENG.pdf
Dr. Admir Softic_ presentation_Green Club_ENG.pdfDr. Admir Softic_ presentation_Green Club_ENG.pdf
Dr. Admir Softic_ presentation_Green Club_ENG.pdf
 
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
 
Value Proposition canvas- Customer needs and pains
Value Proposition canvas- Customer needs and painsValue Proposition canvas- Customer needs and pains
Value Proposition canvas- Customer needs and pains
 
Falcon Invoice Discounting: The best investment platform in india for investors
Falcon Invoice Discounting: The best investment platform in india for investorsFalcon Invoice Discounting: The best investment platform in india for investors
Falcon Invoice Discounting: The best investment platform in india for investors
 
Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...
Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...
Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...
 
Cheap Rate Call Girls In Noida Sector 62 Metro 959961乂3876
Cheap Rate Call Girls In Noida Sector 62 Metro 959961乂3876Cheap Rate Call Girls In Noida Sector 62 Metro 959961乂3876
Cheap Rate Call Girls In Noida Sector 62 Metro 959961乂3876
 
Call Girls From Pari Chowk Greater Noida ❤️8448577510 ⊹Best Escorts Service I...
Call Girls From Pari Chowk Greater Noida ❤️8448577510 ⊹Best Escorts Service I...Call Girls From Pari Chowk Greater Noida ❤️8448577510 ⊹Best Escorts Service I...
Call Girls From Pari Chowk Greater Noida ❤️8448577510 ⊹Best Escorts Service I...
 
How to Get Started in Social Media for Art League City
How to Get Started in Social Media for Art League CityHow to Get Started in Social Media for Art League City
How to Get Started in Social Media for Art League City
 
Uneak White's Personal Brand Exploration Presentation
Uneak White's Personal Brand Exploration PresentationUneak White's Personal Brand Exploration Presentation
Uneak White's Personal Brand Exploration Presentation
 

ISACA Puget Sound November 2002 - CRM Security & Controls

  • 1. Customer Relationship Management Security & Controls ISACA Puget Sound Chapter – Seattle – November 19, 2002 1
  • 2. Contact Information: Peter Rosenzweig 2
  • 3. CRM – The Security and Controls Challenge – Introduction The integration of Customer Relationship Management (CRM) strategies has traditionally posed a great challenge for internal and external auditors, security professionals, and other security stakeholders. While security and controls always have to be carefully balanced between the value of protected information and the cost of control measures, it is often ignorance about CRM in general, which prevents the implementation of effective security solutions. The following three factors are commonly underestimated when organizations fail to properly articulate their risk exposure within a CRM environment: WHAT…? WHEN…? HOW MUCH…? Tangible Operational Quantifiable Intangible Strategic Non-Quantifiable Example: How does the Example: What are the Example: What is the value customer’s perception of our implications of compromised of a customer, brand image, service delivery impact the customer data on future increased product liability CRM strategy and profits. funding, product design, etc. and risk of litigation, etc. 3
  • 4. A CRM Primer – The Birth of Customer Relationship Management The rise of the Internet and falling geographic and regulatory barriers have empowered customers and increased the competitive pressure on organizations. In many cases, the abundance of suppliers has transformed products and services into commodities, resulting in severe price wars and declining profitability. CRM strategies acknowledge that customers ARE NOT equal and require personalized communications and customer-centric sales strategies. As a result, customers are not simply presented with products, but receive customized solutions that address specific needs and help the organization to build long-lasting relationships. This strategy shifts the customer focus from pricing to brand/firm loyalty. Who is our customer ? What does the customer value ? What are our results ? What is our plan ? Source: “The First Action Requirement of Leadership”, Peter F. Drucker CRM applications provide the technological platform to support the dialogue with customer and find answers to the questions stated above. 4
  • 5. A CRM Primer – Centralization of System Resources and Data At the core of each customer-centric business strategy, a 360-degree view of customers and markets has to be developed to personalize the interaction based on particular needs. CRM applications provide the platform to support the collection, analysis, and distribution of customer information, while integrating multiple data entry points. A study among Fortune1000 companies revealed that many organizations still lack integrated systems to consolidate knowledge about customers (see graph). However, the integration itself can pose significant risks to an organizations due to the increased potency and dependency of processed information. Organizations Lacking Unified Customer Knowledge Systems: 19% - Systems provide only partial view Source: “Customer Connections – New Strategies for Growth”, Robert Wayland / Paul Cole 19% - Single system that provides 62% - Multiple complete view systems by which to view customer 5
  • 6. A CRM Primer – Customer Segmentation & Knowledge Management Organizations should differentiate new and existing customers based on loyalty and profitability (see graph below). The 80/20 rule, stating that 20% of all customer generate 80% of company’s revenues, increases the need for customer segmentation and allows an organization’s resources (e.g., sales and marketing budgets, staffing, acquisition of assets, etc.) to be better allocated: H Customer Profitability / Profitability Loyalty Matrix: Differentiation of Customer Strategies Strengthen loyalty – 100% focus on optimize profits through relationship cross- and up-selling building L H Loyalty Secure loyalty – try improve profitability (e.g., through cross-selling) Send customer to competitor ! L To support different customer strategies and personalization, information not only has to be gathered and analyzed, but also shared and acted upon. CRM applications provide a comprehensive suite of tools to support the creation, harvesting, sharing, and leveraging of customer information. 6
  • 7. A CRM Primer – CRM Processes in the Overall Enterprise The generic CRM model supports multiple business processes and customer touch points: Customer Touch Points Remote / Field Phone-Based Web-Based Alliances / Marketing & Sales & Services Sales & Services Sales & Services Channel Partners Campaigns Applications Front Office (CRM) Back Office Marketing Sales Customer Service Database Lead Order Finance, Knowledge Marketing Management Management / Accounting, HR Management Billing Proposal Generation Data Mining / Case / Service Distribution & Analytics Management Logistics Procurement Configuration & Pricing Campaign Marketing Workflow Legacy Management Management Manufacturing Application Encyclopedia Source: “The CRM Handbook – From Group to Multi-Individual”, PricewaterhouseCoopers 7
  • 8. A CRM Primer – Known Failure Points Studies revealed that up to 70% of all CRM implementations fail to deliver the expected results. Some of the identified key reasons can easily be avoided if integration steps are carefully evaluated: Solutions are implemented without long-term planning and an Missing CRM Strategy / Plan understanding how the technology will support corporate strategies and business process. Benchmarks to assess the ROI of CRM efforts are ignored. Lack of Data Quality Bad input – bad output; CRM initiatives are dependent on the integrity of data (i.e., data being accurate, complete, consistent in definition and treatment). Missing data quality impacts the reliability and success of CRM systems. CRM integrations require a coordination between IT and business teams Key Stakeholder Aren’t to identify business requirements and the appropriate technology to Involved support it. In addition, the CRM systems have to account for external constituencies that have a stake in the CRM process (i.e., customer, partners, etc.). Change Management becomes a critical factor to ensure alignment, collaboration, and user acceptance. Flawed Processes Are (Just) Due to the lack of a strategy, business processes are often not re- Automated evaluated. By simply automating them, obsolete and ineffective processes are ignored, further manifesting operational weaknesses. 8
  • 9. CRM Security & Controls – Business Process Integrity Business Process Integrity (BPI) defines a framework for security and control strategies, which is intended to address four major objectives: Effectiveness and Efficiency of Operations: BPI ensures adequate access to system functionalities (based on roles and responsibilities), and leverages automated controls to enforce business best practice, as well as, policies and procedures (i.e., rules). CRM Exposure (examples): Users being “lost” due to excessive access rights, resource allocations and business rules (e.g., workflow) are not automated or utilized, etc. Reliability of Data and Reporting: BPI protects the integrity of data and its relevance for operational and strategic decision making. CRM Exposure (examples): Unauthorized or unintended data manipulations occur, compromising the value of processed data and competitive advantages, etc. Compliance with Laws and Regulations: BPI protects organizations from violating legal and regulatory requirements, which apply to the collection and distribution of data. CRM Exposure (examples): Violation of national and international privacy standards and industry regulations, resulting in fines, negative publicity, increase insurance premiums, etc. Prevention of Loss of Assets: BPI is intended to protect tangible and intangible corporate assets from loss and excessive write-offs. CRM Exposure (examples): Fraudulent sales transactions, inaccurate pricing of services & products, lack of user acceptance resulting in under-utilization of CRM investments, etc. 9
  • 10. CRM Security & Controls – Application Integrity Application Integrity (AI) focuses on system-enabled security and control features to provide end-to-end integrity of business transactions. Application Integrity Enablers Application Access Control Process & Application Integrity Data Quality Integrity User Authentication Business Process Integrity Data Quality Strategy • Business Process Controls • Identity Management • Data Quality Standards • Single Sign-On Solutions • Meta-Data Management • Directory Services Privacy & Confidentiality • Resource Provisioning • Internal and External Policies Data Conversion User Authorization Nonrepudiation • Data Risk Assessment • Integrity of Data Transfer • Application Security • Data Analysis and Testing • Role-Based Access Controls • Data Optimization Application Integration • Interfaces and APIs Security Administration Data Monitoring Availability • Corporate Security Policies • Monitoring and Data and Standards • System Maintenance and Ownership Recovery 10
  • 11. CRM Processes and Inherent Risks – User Acceptance & Data Integrity The integration of CRM systems into strategic and operational corporate processes, has increased concerns about the integrity of CRM applications supported business processes and related data. This increases the significance of security and control failures. In addition, a lack of confidence, coupled with eroding user acceptance, leaves a strong impact on the utilization of and success of CRM implementations, as well as the targeted Return on Investment. “The CRM Death Spiral” 2 System users try to find Data entry is incomplete 3 alternative means to System or inaccurate, impacting process information or Acceptance Data Integrity integrity and strategic business transactions value of information Lack of Confidence Lack of Value 1 Users (e.g., employees, Inadequacy of system 4 customers) don’t rely System information perpetuates on adequacy of security System Trust Reliability lack of system trust and and protection of acceptance personal information 11
  • 12. CRM Security & Controls – Business Process Controls (Sales) Control weaknesses within the Sales business processes, traditionally, have the most immediate impact on an organization’s financial performance: Function Business Process Integrity Objectives * Risk Exposures * Sales Lead Management Ensure that lead information is Inadequate forecasting and resource complete and adequately reflects allocation (budgets, personnel, etc.) status and outcome of pursuits, helping to identify the nature of Wrong decision making in respect to wins and losses. sales and product strategies Proposal Generation Ensure that quotes include Release of unauthorized proposals and accurate pricing information, and pricing/product information that terms and conditions are in Increased product liability due to the line with corporate policies. use of non-standard contracts Configuration & Ensure that price lists and product Unauthorized updates to price lists Pricing configurations are approved and adequately reviewed and updated. Compromised product configuration, leading to increased product liability and wrong pricing options/strategies Marketing Ensure that the sales force can Inaccurate information adversely impacts Encyclopedia base its initiatives and resource forecasting, resource allocation, strategic allocations on adequate marketing decision making, and user/system information. acceptance * Integrity objectives and risk exposures are non-conclusive 12
  • 13. CRM Security & Controls – Business Process Controls (Customer Service) Security and control failures within Customer Service processes negatively impact customer relationships, product design, and resource allocations: Function Business Process Integrity Objectives * Risk Exposures * Customer Knowledge Ensure that the information on Outdated customer information Service Management particular customers is accurate, diminishes value of CRM investment correctly updated, complete, and and adversely impact interaction with adequately protected. customer Accidental release of customer information and violation of privacy standards can impact brand recognition and system acceptance Case / Service Ensure that SRs are handled in a Inaccurate information negatively Management timely fashion, can be immediately impacts response to customers and related to known solutions, and product design are considered in product designs. Incomplete and inaccurate solutions can increase product liability Workflow Ensure that corporate processes Long response times to customer Management and resources respond to requests, negatively impacting customer customer requests (I.e., sales satisfaction and brand recognition and/or service requests) using the most efficient and effective means. Inappropriate resource allocation * Integrity objectives and risk exposures are non-conclusive 13
  • 14. CRM Security & Controls – Business Process Controls (Marketing) Marketing processes rely on the integrity of collected information and the meaningful analysis of it. Control weaknesses impact data quality and resulting campaigns: Function Business Process Integrity Objectives * Risk Exposure * Marketing Database Marketing Ensure that categorization and Wrong segmentation or corrupt data segmentation of customer data is negatively impacts communication with in line with marketing and sales customer, resulting in hostile reactions or strategies, allowing the indifferences organization to present personalized solutions for Ineffective campaigns waste corporate customers. resources and can adversely impact brand recognition Data Mining / Ensure that methods for Wrong or incomplete information results Analytics forecasting and reporting follow in inaccurate forecasting, impacting standard procedures and that data resource allocations is adequately protected. Exposed marketing data might impact competitive advantage Campaign Ensure that campaign strategies Unauthorized release of campaigns can Management follow approval procedures and result in financial losses and impact are adequately protected. product liability Premature release of campaign information can impact competitive advantage * Integrity objectives and risk exposures are non-conclusive 14
  • 15. CRM Security & Controls – Privacy Overview Privacy, or the lack of it, can have a strong impact on the successful implementation of new technologies and the related benefits (e.g., cost savings, additional sales channels, etc.). Concerns about privacy and confidentiality often prevent users (e.g., customers, employees, channel partners) from taking advantage of self-service functions, while relying on traditional, cost-intensive, and – quite often – ineffective practices. Privacy requirements should be carefully evaluated for the following classes of organizations: Companies processing personal data relating to citizens Companies processing any personal data that operate in countries that have adopted similar privacy laws to those of Europe (e.g., New Zealand, Hong Kong, and Canada) Companies processing personal data that wish to enhance their data warehouse solutions […] without negative government, media, and/or consumer responses Source: “Accelerating Customer Relationships – Using CRM and Relationship Technologies”, Ronald Swift Privacy breaches can have significant financial ramifications, including regulatory penalties, legal fees, marketing expenses to combat negative public perception, customer retributions, increased insurance premiums, and loss of market share. 15
  • 16. CRM Security & Controls – Proliferation of Privacy Standards Corporate privacy initiatives ought to focus almost exclusively on risk avoidance. Awareness of regional and industry-specific requirements is critical to identify potential exposure. The list below highlights some of the most significant national and international standards: Region Standards Region Standards The Children’s Online Privacy EU Data Protection Protection Act (COPPA) Directive Gramm-Leach-Bliley Act (GLB) Safe Harbor Principle Health Insurance Portability and Accountability Act (HIPAA) Personal Information Protection and Electronics FTC Enforcement of Document Act Deceptive Trade Practices Guidelines for the Protection Proposed Consumer of Computer Processed Legislation in Congress and Personal Data Multiple States Privacy initiatives should evolve beyond just risk mitigation, and be considered as a strategic platform for value creation and competitive positioning. 16
  • 17. CRM Security & Control Failures – Case Studies The case studies below are intended to illustrate the need for end-to-end protection to maintain the integrity of eBusiness solutions, and protect an organization’s investments and competitive advantage: Process(es) Risk Assessment Service Management Client fails to utilize system-enabled functions to match incoming service (Business Process Controls) requests with service level agreements. The lack of tracking results in a loss of revenue exceeding $6 mil. per year. Proposal Generation / Pricing While client uses sophisticated control features to prevent pricing information (Business Process Controls) from being updated, ‘proxy products’ are available that bypass these controls. Excessive use of these particular products is not monitored, resulting in unauthorized price manipulations and incorrect sales statistics. Proposal Generation / Pricing Employees abuse control weaknesses, allowing them to bypass pricing policies (User Authorization / Business and execute fraudulent sales transactions. The annual damages are estimated Process Controls) to exceed $ 3 mil. Lead Management Concerns about confidentiality of lead information discourage Sales Reps to (Privacy / User Authorization) enter accurate data (some leads are tracked with a value of $1). This not only impacts forecasting, budgeting, and fulfillment, but also renders the investment into a new lead management tool obsolete (i.e., diminished ROI). Knowledge Management A pharmaceutical company accidentally releases the email addresses of (Privacy) individuals using an anti-depressant. The company is subject to fines (FDA and FTC) and negative publicity. All The lack of a clear CRM plan results in uncoordinated development and (CRM Strategy) integration activities, resulting in excessive costs and lack of collaboration across business teams. 17