A few weeks ago, Stephanie Balaouras and I posted a podcast on a topic that has been a high priority for many of our customers — how to apply risk management techniques to IT security. We know that many of you are feeling the pressure to take the lead in IT risk management and in some cases even play a role in initiating risk management at the corporate level.
The key to success is understanding the core elements of risk management and how to plug them into existing processes without creating simply another layer of overhead. A major theme of my recent research has been on existing risk management standards and how they are being applied to IT Security and Risk functions. For example, the ISO 31000 risk management standard outlines a five-step process for formalized risk management. My January report, Introducing ERM To IT Security And Risk , provides a summary of the standard, and I will be expanding upon the next steps in my upcoming research documents. In addition, look out for my next doc on Regulatory Intelligence, to be published in the next few months.
In the meantime, I encourage you to listen to this podcast to hear about best practices and lessons learned from clients who have gone through these steps. And as always, I welcome any questions or feedback.
It has only been a few weeks since Google announced it would create a brave, new world with its Google TV platform. In all the reactions and the commentary, I have been amazed at how little people understand what's really going on here. Let me summarize: Google TV is a bigger deal than you think. In fact, it is so big that I scrapped the blog post I drafted about it because only a full-length report (with supporting survey data) could adequately explain what Google TV has done and will do to the TV market. That report went live this week. Allow me to explain why the report was necessary.
Some have expressed surprise that Google would even care about TV in the first place. After all, Google takes nearly $7 billion dollars into its coffers each quarter from that little old search engine it sports, a run-rate of $27 billion a year. In fact, this has long been a problem Google faces -- its core business is so terribly profitable that it's hard to justify investing in its acquisitions and side projects which have zero hope of ever contributing meaningfully to the business (not unlike the problem at Microsoft where Windows 7 is Microsoft). So why would Google bother with the old TV in our living rooms?
Because TV matters in a way that nothing else does. Each year, the TV drives roughly $70 billion in advertising and an equal amount in cable and satellite fees, and another $25 billion in consumer electronics sales. Plus, viewers spend 4.5 hours a day with it -- which is, mind you, the equivalent of a full-time job in some socialist-leaning countries (I'll refrain from naming names).
Google's goal is to get into that marketplace, eventually appropriating a healthy chunk of the billions in advertising that flow to and through the TV today with such painful inefficiency.
A recent email got my attention. It highlighted a blog post on the MIT Technology Review website about a video from RSA Animate (copied below) illustrating a lecture by Dan Pink (@danielpink on Twitter): "The Surprising Truth About What Motivates Us," based on his book of the same name.
What got my attention? We need to stop rewarding with a carrot and threatening with a stick. The video highlights multiple research findings that suggest knowledge workers are more motivated by autonomy, mastery and purpose than by financial reward. Pink suggests that financial incentives may actually have a detrimental impact on performance under certain circumstances. (The research suggests money is a motivator for purely mechanical tasks but as soon as some level of cognitive processing is required to complete the task, money is secondary to other factors.)
I have to say this was a little hard to swallow at first. But then I almost missed a key point: this is only true when minimum financial rewards are met, i.e. when employees are paid a large enough base salary, financial incentives to deliver high performance may be detrimental when compared to other motivators such as the desire for: autonomy, mastery of skills, and a sense of purpose.
I am back from beautiful Cartagena, Colombia where the ESOMAR Latin American 2010 conference was held. In addition, last week, I met with media and advertising professionals focusing on the Latin American market in Miami at the annual Portada Panregional Advertising and Media Summit. At both conferences, a consistent theme resonated throughout all the talks — the Internet is a powerful vehicle for Latin American consumers to connect with peers and even companies; however, the digital divide still persists in Latin America.
We find that, on average, 56% of metropolitan consumers in Brazil and Mexico are not online. Therefore, companies are still unable to reach a significant number of consumers through social media tools. Does that mean that if you have identified that the majority of your target audience is not connected that you are on the sidelines and unable to harness the “power” of social media? I think the answer is no.
Last year, every consumer brand seemed to be building an iPhone application. Towards the end of 2009, they began to say, 'We have an iPhone application. Now what?" For many, the answer seems to be "mobile Web." The open question is "how." I'll be publishing an in-depth study on how with my colleague Brian Walker, going into more depth on the implications of commerce for mobile Web builds. One of the strategic questions that must be answered first is, "do I build a mobile Web site for all devices (= long tail)?" or "do I have a more tiered approach with custom development for the handful of devices (short tail) which drive most of my traffic and a more automated approach for all the other devices (long tail)?" Good questions.
There are some good sources of information online. AdMob and Millennial Media publish monthly reports based on ad requests they see. Netbiscuits just published a white paper with a lot of good data.
First, how long is the long tail? According to the Netbiscuits white paper, it was 2,496 devices in February 2010. How short is the short tail (= 50% of the traffic)? In February 2010, only 12 devices. What is the number one device in each report? Yes, the iPhone -- or now iOS 4 platform. In terms of global traffic, Netbiscuits put Apple first with 36% of traffic while AdMob's numbers for Apple were a bit lower at 33%.
Crowd Factory announced today a new product for marketers: CrowdWorks Social Campaign -- which it describes as a way for marketers “to acquire new customers through simple social sharing and custom social marketing campaigns while easily tracking ROI.”
The key word there is simple. What Social Campaign offers marketers is not complex end-to-end community/social/conversational/engagement marketing functionality and services. It’s a curated set of light social applications (like sharing and ratings) -- which it refers to as social gestures -- that marketers can use to impact the business goals they’ve already established for their campaigns.
The interface is as simple as the feature set too, which may be a welcome change of pace for marketers who are used to requesting design and coding work from already tapped development resources. Crowd Factory says it takes 10 minutes, and no technical skills, to customize and deploy a social gesture, and having seen the dashboard, I can believe it. Of course, that 10-minute time-to-launch comes only after the platform has been approved by whatever internal departments need to sign off on technology platforms, but once that step is completed, the dashboard is in fact a platform that can be used over and over to customize and deploy new social gestures without additional help from tech resources.
When designing application infrastructure strategy, planning for the renewal of their application landscape, or assessing their overall strategic position, banks and other types of firms in financial services typically like to know the answer to the question: “What are the others doing?” In the past, surveys similar to our newest financial services survey helped application delivery professionals as well as enterprise architects assess their position, for example, regarding application infrastructure strategy as well as broader application renewal initiatives and position their individual initiative in the regional or global IT and business environment.
Most of the news this morning at WWDC was around iPhone 4 and iOS 4. Will leave the new device and platform play to my colleague Charles Golvin. I can't wait to get one of the new phones . . . very slick as it looks like a mini iPad in a modified format.
iAd . . . $60M committed for the second half of 2010. Initial advertisers include: AT&T, Best Buy, Campbell Soup Company, Chanel, Citi, DirecTV, GEICO, GE, JCPenney, Liberty Mutual Group, Nissan, Sears, State Farm, Target, Turner Broadcasting System, Unilever, and The Walt Disney Studios.
Pretty impressive. How do they get to $60M? Rumor is that the minimum buy-in is $1M, but it goes up from there. They claim to have 50% of mobile ad market share according to a J.P. Morgan study. I think it is a bold claim unless this is purely the media spend and doesn't include creative. Our number is comparable -- but without creative. Advertisers can count on the buzz surrounding iAd's launch on July 1. That alone may justify the initial buy. These initial advertisers are a smart bunch. A few million dollars isn't much to any one of them, but these are sizeable buys for mobile.
I think there are a lot of interesting questions to be answered. Many will be "wait and see," but here's my wishlist:
- What do I get for $1M+ in mobile advertising? Am I buying creative, development, ads, and analytics?
- How much targeting do I get?
- Is it performance-based? Or CPMs?
- What will work well on the i OS4 devices? Branding? Or, will the ads leverage context -- the context of how, where, and when I use these devices? Will the ads drive me to online purchases or into a nearby store to make a purchase?
- How much control do I get over where my ads are placed?
Each year we conduct a search for the best examples of social media/social communities as part of our search for winners of the prestigious Forrester Groundswell Awards. This year we have added a new category of award aimed at internal communities designed to help management with innovation and/or collaboration across the organization — communities that empower employees.
In the fall I’ll be helping my colleague, Ted Schadler — co-author of the upcoming book Empowered — to judge the winners of the management category. So if you have a social community or social media success story please consider nominating your firm for one or more categories in this year’s awards.
Next week, vendors from across the social computing landscape will converge on Boston for TechWeb’s Enterprise 2.0, a business Web 2.0 conference and trade show. In advance of this event – which I will be attending – I thought I’d discuss a topic that has started to emerge in my research of social software: the proliferation of social components in business applications. More specifically, I want to address a question a client recently raised: is having a social layer going to be necessary for businesses to adopt business applications going forward?
Over the last few years, we have seen software vendors position social tools as part of software suites such as collaboration platforms (e.g. SharePoint 2010, Lotus Connections), project management packages (e.g. ThoughtWorks Mingle), BPM tools (e.g. ARISalign) and CRM systems (e.g. Salesforce Chatter). This is the natural reaction to what seems to be heavy business interest in these technologies: 65% of firms deploy at least one Web 2.0 tool. However, the marketing and selling of these tools is predicated on two myths:
Myth #1: Information workers are clamoring for these social tools. I have sat in on many vendor briefings where a company representative tells me employees demand Facebook-like or Twitter-like tools to do their jobs. Not true. When we ask information workers about their use of social networks, wikis, discussion forums, blogs, and microblogs for work, only a small group actually uses them; social networking tools, the best-adopted technology, is used by only 12% of information workers. When we ask non-users their desire in using each of these tools, small portions express interest; the most sought-after technology, discussion forums, only piques the interest of 15% of information workers.