SailPoint recently released their annual Market Pulse Survey which focuses on professional concerns in IT mobility and cloud computing. Their commercial findings are very similar to the pains currently found in the public sector. This makes sense as we continue using commercial sector IT solutions to solve our own IT problems.
The key takeaways I found relevant to the public sector are:
- According to the survey, one-third of mission-critical (MC) applications have already migrated to the cloud. That figure is expected to dramatically increase to nearly 50% of all MC apps within two years. This is in line with the public sector’s rate of cloud computing adoption.
- A minority of lines of businesses (LoBs) consult with their internal IT staffs. Nearly two-thirds bypassed their IT organizations, yet the LoBs do not feel responsible for controlling access. We find this situation a lot in public sector IT departments. Agencies need to start bringing their IT leaders into business development conversations earlier to ensure they feel ownership over every IT solution.
- Often times, business leaders are unaware as to the sensitivity of the data stored on the cloud. This level of risk exposure is expected to grow; adequate security controls cannot be implemented if the enterprise does not perform a diligent exercise in data classification. Our Cloud Advisory Group helps agencies face this exact problem. Agencies must align themselves with IT professionals who understand not only cloud computing, but the security, procurement, and legislative facets surrounding its adoption.
- Bring your own device (BYOD) provides the ability for users to access corporate applications and data outside of the corporate network puts identity and access management (IAM) under further strain because IT must now account for user access from a wider variety of devices not completely under their control. In an effort to reduce budgets, agencies are beginning to encourage people to bring their own smart phones and tablets, without addressing the cybersecurity risks.
- Regardless of where customers are with their IAM strategy, they need to proactively consider how to govern these new technologies and behaviors within their corporate policies. Again, agency leaders must consult with their IT department so proper processes may be created and BYOD cybersecurity software may be purchased.
Although the commercial sector does not always appear to relate to us, we see the continuous alignment with commercial as ultimately helping the public sector address our cybersecurity, cloud, and mobile concerns because of its rate of innovation and constant software and hardware updates to address user concerns.