One of the problems with data-driven solutions occurs when different groups of people have different sets of data, and all carry out their work duties on the assumption that the data they are using is complete, is a reliable and dependable version of the truth.
Organisations often evolve into this state when different teams self-manage their areas, their hardware and their software in isolation. Although attempts may have been made on occasion to collate the data and provide a more accurate holistic view, without processes to maintain such data, it inevitably becomes out of data very quickly. Where such an aggregation of data is undertaken upon the initiative of an individual team or team member rather than driven by senior-level strategic direction, data from some areas may be missing.
If you allocated time and resources to building or buying a new solution:
- It should become the single source of truth for hardware and software within the business. If other teams need a subset of the data, it should come from this source and not independently compiled.
- Where multiple teams manage hardware and software, the new HAM/SAM delivery project should have buy-in from all relevant departments to ensure that the system becomes the master solution. Without this, the new solution will quickly become another “one of many” solution.
- Understand any specific requirements that individual teams may have for data on hardware and software. If the new solution doesn’t meet the needs of all stakeholders, they are likely to continue compiling their data independently. Reports should not be generated using separate data sources but should come from a consistent data source.
Consider the following actions:
- Make sure all the stakeholders are involved in the process or have an awareness of the new project
- Keep stakeholders up to date on the project and any decisions made
- Identify all existing inventories or processes currently being used by teams throughout the business and identify any specific requirements at a local level
Robert is an information security consultant with over 20 years of experience across a diverse range of organisations, both in the UK and internationally. Robert graduated in 1997 with an honours degree in software engineering for security and safety-critical systems. Robert is contactable directly through LinkedIn.