Jeff Orr's Analyst Perspectives

Governance, risk management and compliance are essential tactics for a successful organization. Effective GRC practices help organizations achieve business objectives, mitigate risks and ensure compliance with laws and regulations. As a chief information officer or IT leader, it is important to evaluate new technologies and determine their impact on the business, including whether they fit within the scope of current GRC programs and processes.

Given the ever-expanding digital footprint of most businesses today, visibility into the performance of distributed systems has become a necessity. There are more data sources and data storage locations than ever before. As organizations continue to expand their data presence and scale their systems and tools, digital security is of greater importance in the architecture and operations. Monitoring is a fundamental enabler of digital security that provides real-time detection of cyber threats...

Enterprise organizations remain vulnerable to a host of security attacks. Cyberattacks are often associated with techniques that have never been seen before, which lead to data breaches if not quickly detected and remediated. However, one of the most common vulnerabilities for an organization is phishing. Phishing lures people to give up confidential information by clicking on a link or opening a file in an email from what appears to be a trusted source but is actually a bad actor....

The role of the chief information officer has evolved from managing IT to maximizing technology for business value. Many organizations launch digital transformation programs to identify and deliver the desired value but discover that digital transformation is a complex, lengthy process. Budgets and resources can be quickly exhausted with little to show for the investment. Yet business objectives remain.

Intelligent automation is a powerful tool that can help the CIO and IT leaders optimize business processes and outcomes while reducing costs, risks and errors. Automation takes many forms, each with its own applications, benefits and limitations. In a previous perspective, I shared how technology helps organizations automate processes and enhance workflow efficiency. This perspective explains the various types of automation enabled by artificial intelligence technologies and their applications...

Automation uses technology to perform tasks or functions that would otherwise require human intervention or effort. Automation has existed for decades, and it takes many forms. It handles routine tasks, freeing time for knowledge workers to perform other activities that require creativity, subjectivity or empathy. Automation can also improve the quality, efficiency and consistency of business processes as well as enhance customer satisfaction and brand loyalty.

Increasing threats and challenges from cyberattacks, data breaches and other incidents have made digital security a critical concern for organizations. These dangers have devastating consequences, including financial loss, reputational damage, legal liabilities and operational disruption. Adopting effective and efficient digital security strategies is key to protecting data, assets and customers from risk.

Cloud computing has emerged as the catalyst for a shift from digital transformation to digital modernization. This technology offers many advantages, including heightened agility, cost reduction, improved collaboration, enhanced security and accelerated innovation. Hybrid and multi-cloud strategies offer distinctive strengths that enable organizations to optimize the IT infrastructure necessary for digital transformation and modernization efforts.

With the growing threat landscape and increasing reliance on technology, digital security has become a critical concern. What constitutes digital security, and how is it different from cybersecurity? How are the roles of the chief information officer and chief information security officer evolving to meet digital security needs? To explore these questions, we must understand the impact of digital transformation and modernization and identify strategies for success. I’ll also set the stage for...

A lot has been written about the definition of generative artificial intelligence (AI) and large language models (LLMs), though less has been written about the business considerations for an organization to evaluate adopting and implementing these technologies. And more importantly, does the technology align with the Office of the CIO objectives and the goals of the business? The value of generative AI software must be put into terms that all stakeholders can relate to. And organizations cannot...