Welcome!

@CloudExpo Authors: Carmen Gonzalez, Janakiram MSV, Liz McMillan, Pat Romanski, Elizabeth White

Related Topics: @CloudExpo

@CloudExpo: Article

SaaS and Cloud Sprawl By @SoftwareHollis | @CloudExpo [#SaaS #Cloud]

CIOs Unaware of Majority of Cloud and SaaS Proliferation

SaaS and Cloud Sprawl - What IT Doesn’t Know Can Definitely Hurt You

The advancement of technology has led to widespread Cloud data and SaaS application usage throughout enterprises - ask anyone who uses applications such as Dropbox, Salesforce, Jive, Marketo, NetSuite, Google Apps, Twitter, Workday or any of the thousands of other software titles out there. And CIOs are largely unaware of the "SaaS Sprawl" in their organizations - and unprepared for the implications of this invasion.

These Cloud applications are available for just about every role in a company - from human resources to marketing, there's an app for that.  And odds are, someone in your organization is using it - most likely without IT knowing.  And this has the potential to create some serious problems in areas ranging from compliance to security to backup & recovery.

As application (primarily SaaS and Cloud nowadays) usage within organizations continues to spread and accelerate, IT professionals are largely unaware of the massive scale of Cloud application utilization according to studies done by Netskope and others.  However, IT continues to be held responsible for many of the implications resulting from this widespread proliferation.

Gaute Solaas, CEO of Cloud-based Business Intelligence vendor iQumulus commented, "This is entirely consistent with what I see with our customers and partners.  They are interested in Big Data solutions, but what's really impacting their business the most are the hundreds and thousands of smaller, disparate and often distributed applications and data repositories spread across the typical enterprise and up into the Cloud.  Organizations are struggling to cost-effectively get value out of this rapidly growing number of un-connected systems."

A recent study by Netskope validates this - they found that IT experts misjudged Cloud application usage within their companies by as much as 90%. In the Netskope report, when asked to approximate the number of Cloud and SaaS applications in use by their organization, IT professionals estimated that their company only used between 40 and 50 applications. According to Netskope, which based its conclusions on recordings of Cloud application events from "hundreds of thousands" of users across desktop and mobile platforms, actual use averages around 397 applications.  And this is in addition to the hundreds to thousands of disparate and potentially distributed on-premises "legacy" apps and data sources that companies have.

Here are the top five categories mentioned in the report, and the number of Cloud apps per enterprise on average:

  • Marketing - 51 Cloud applications
  • Human Resources - 35 Cloud applications
  • Storage - 26 Cloud applications
  • Customer Relationship Management and Sales Force Administration - 23 Cloud applications
  • Collaboration - 23 Cloud applications

Marketing and human resource applications include a large set of functions, while Cloud storage applications operate on a much narrower scope. Companies that have elected to standardize storage apps, like Google Drive or Dropbox, discovered many of these applications are unauthorized but used widely.

Even if the IT department does not know it, company data is being revealed through a wide range of these Cloud applications. In addition, according to the recent study, many of these applications do not meet company compliance or security standards.  Of significant concern, approximately 77% of these Cloud apps are not "ready for corporate use" because of issues such as auditability, security or governance/compliance issues. This causes IT departments to have the added challenge of trying to secure more apps than they originally thought, by as much as 10x more.

Another concern (and missed opportunity) for the organization is that all these apps represent isolated and un-integrated data silos. Critical business functions such as Business Intelligence are made increasingly difficult when the organization is faced with a large and growing number of incompatible and disparate systems.

Lori Witzel, a software technology expert at Spanning - a software vendor who provides enterprise-class backup and recovery capabilities to organizations who have mission-critical applications and data in the Cloud, raises another concern - the very real possibility of data loss.  Line-of-business professionals are used to IT being responsible for backup and recovery of their applications and data.  In the SaaS and Cloud world, many people mistakenly believe that it is the SaaS or Cloud vendors responsibility to back up all that valuable data - this is very rarely the case.

Witzel comments on this - using Marketing as an illustration of the situation, "as if the expectations CMOs must meet weren't daunting enough, CMOs now find themselves expected to take on a responsibility previously owned by IT: protecting Cloud data in those applications owned by Marketing."  Witzel continues with some sage advice on the topic, "check your terms of user and service level agreements: in most cases, the ultimate responsibility for protecting an organization's marketing and sales data/metadata rests with the Cloud application owner or with IT."

Of course, if IT doesn't know about your Cloud application, the responsibility for being the "Cloud Data Protector" relies with you - the application owner.

With all this in mind, some CIOs may consider blocking any unsanctioned apps. Aside from the simple fact that IT is unaware of the various apps being used, it can be an up-hill battle to discover which activities within these apps are being performed, and limit such activities.

This is simply because the majority of these apps are being used because someone or a group of people within the organization felt that these apps would be useful - and some even critical in their daily work lives. For instance, Twitter plays an important part for the marketing team, as well as for researchers and analysts, who examine the shared and collected data from this application.  So CIOs attempting to limit such apps are likely to face howls of protest.

Clearly, CIOs need to be aware of the parties these Cloud applications are trying to address, before limiting unsanctioned app usage. As Sanjay Beri, Netskope CEO said, "Sometimes saying no to Cloud apps is like saying no to business."

More Stories By Hollis Tibbetts

Hollis Tibbetts, or @SoftwareHollis as his 50,000+ followers know him on Twitter, is listed on various “top 100 expert lists” for a variety of topics – ranging from Cloud to Technology Marketing, Hollis is by day Evangelist & Software Technology Director at Dell Software. By night and weekends he is a commentator, speaker and all-round communicator about Software, Data and Cloud in their myriad aspects. You can also reach Hollis on LinkedIn – linkedin.com/in/SoftwareHollis. His latest online venture is OnlineBackupNews - a free reference site to help organizations protect their data, applications and systems from threats. Every year IT Downtime Costs $26.5 Billion In Lost Revenue. Even with such high costs, 56% of enterprises in North America and 30% in Europe don’t have a good disaster recovery plan. Online Backup News aims to make sure you all have the news and tips needed to keep your IT Costs down and your information safe by providing best practices, technology insights, strategies, real-world examples and various tips and techniques from a variety of industry experts.

Hollis is a regularly featured blogger at ebizQ, a venue focused on enterprise technologies, with over 100,000 subscribers. He is also an author on Social Media Today "The World's Best Thinkers on Social Media", and maintains a blog focused on protecting data: Online Backup News.
He tweets actively as @SoftwareHollis

Additional information is available at HollisTibbetts.com

All opinions expressed in the author's articles are his own personal opinions vs. those of his employer.

@CloudExpo Stories
SYS-CON Events announced today that Twistlock, the leading provider of cloud container security solutions, will exhibit at SYS-CON's 20th International Cloud Expo®, which will take place on June 6-8, 2017, at the Javits Center in New York City, NY. Twistlock is the industry's first enterprise security suite for container security. Twistlock's technology addresses risks on the host and within the application of the container, enabling enterprises to consistently enforce security policies, monitor...
Automation is enabling enterprises to design, deploy, and manage more complex, hybrid cloud environments. Yet the people who manage these environments must be trained in and understanding these environments better than ever before. A new era of analytics and cognitive computing is adding intelligence, but also more complexity, to these cloud environments. How smart is your cloud? How smart should it be? In this power panel at 20th Cloud Expo, moderated by Conference Chair Roger Strukhoff, pane...
Blockchain is a shared, secure record of exchange that establishes trust, accountability and transparency across supply chain networks. Supported by the Linux Foundation's open source, open-standards based Hyperledger Project, Blockchain has the potential to improve regulatory compliance, reduce cost and time for product recall as well as advance trade. Are you curious about Blockchain and how it can provide you with new opportunities for innovation and growth? In her session at 20th Cloud Exp...
@ThingsExpo has been named the Most Influential ‘Smart Cities - IIoT' Account and @BigDataExpo has been named fourteenth by Right Relevance (RR), which provides curated information and intelligence on approximately 50,000 topics. In addition, Right Relevance provides an Insights offering that combines the above Topics and Influencers information with real time conversations to provide actionable intelligence with visualizations to enable decision making. The Insights service is applicable to eve...
SYS-CON Events announced today that Grape Up will exhibit at SYS-CON's 21st International Cloud Expo®, which will take place on Oct. 31 – Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA. Grape Up is a software company specializing in cloud native application development and professional services related to Cloud Foundry PaaS. With five expert teams that operate in various sectors of the market across the U.S. and Europe, Grape Up works with a variety of customers from emergi...
SYS-CON Events announced today that Hitachi, the leading provider the Internet of Things and Digital Transformation, will exhibit at SYS-CON's 20th International Cloud Expo®, which will take place on June 6-8, 2017, at the Javits Center in New York City, NY. Hitachi Data Systems, a wholly owned subsidiary of Hitachi, Ltd., offers an integrated portfolio of services and solutions that enable digital transformation through enhanced data management, governance, mobility and analytics. We help globa...
SYS-CON Events announced today that Juniper Networks (NYSE: JNPR), an industry leader in automated, scalable and secure networks, will exhibit at SYS-CON's 20th International Cloud Expo®, which will take place on June 6-8, 2017, at the Javits Center in New York City, NY. Juniper Networks challenges the status quo with products, solutions and services that transform the economics of networking. The company co-innovates with customers and partners to deliver automated, scalable and secure network...
SYS-CON Events announced today that CA Technologies has been named "Platinum Sponsor" of SYS-CON's 20th International Cloud Expo®, which will take place on June 6-8, 2017, at the Javits Center in New York City, New York, and 21st International Cloud Expo, which will take place in November in Silicon Valley, California.
Developers want to create better apps faster. Static clouds are giving way to scalable systems, with dynamic resource allocation and application monitoring. You won't hear that chant from users on any picket line, but helping developers to create better apps faster is the mission of Lee Atchison, principal cloud architect and advocate at New Relic Inc., based in San Francisco. His singular job is to understand and drive the industry in the areas of cloud architecture, microservices, scalability ...
Back in February of 2017, Andrew Clay Schafer of Pivotal tweeted the following: “seriously tho, the whole software industry is stuck on deployment when we desperately need architecture and telemetry.” Intrigue in a 140 characters. For me, I hear Andrew saying, “we’re jumping to step 5 before we’ve successfully completed steps 1-4.”
@DevOpsSummit has been named the ‘Top DevOps Influencer' by iTrend. iTred processes millions of conversations, tweets, interactions, news articles, press releases, blog posts - and extract meaning form them and analyzes mobile and desktop software platforms used to communicate, various metadata (such as geo location), and automation tools. In overall placement, @DevOpsSummit ranked as the number one ‘DevOps Influencer' followed by @CloudExpo at third, and @MicroservicesE at 24th.
The explosion of new web/cloud/IoT-based applications and the data they generate are transforming our world right before our eyes. In this rush to adopt these new technologies, organizations are often ignoring fundamental questions concerning who owns the data and failing to ask for permission to conduct invasive surveillance of their customers. Organizations that are not transparent about how their systems gather data telemetry without offering shared data ownership risk product rejection, regu...
SYS-CON Events announced today that SoftLayer, an IBM Company, has been named “Gold Sponsor” of SYS-CON's 18th Cloud Expo, which will take place on June 7-9, 2016, at the Javits Center in New York, New York. SoftLayer, an IBM Company, provides cloud infrastructure as a service from a growing number of data centers and network points of presence around the world. SoftLayer’s customers range from Web startups to global enterprises.
As pervasive as cloud technology is -- and as persuasive as the arguments are for using it -- the cloud has its limits. Some companies will always have security concerns about storing data in the cloud and certain high-transaction applications will always be better suited for on-premises storage. Those statements were among the bottom-line takeaways delivered at Cloud Expo this week, a three day, bi-annual event focused on cloud technologies, adoption and associated challenges.
Multiple data types are pouring into IoT deployments. Data is coming in small packages as well as enormous files and data streams of many sizes. Widespread use of mobile devices adds to the total. In this power panel at @ThingsExpo, moderated by Conference Chair Roger Strukhoff, panelists will look at the tools and environments that are being put to use in IoT deployments, as well as the team skills a modern enterprise IT shop needs to keep things running, get a handle on all this data, and deli...
Quickly find the root cause of complex database problems slowing down your applications. Up to 88% of all application performance issues are related to the database. DPA’s unique response time analysis shows you exactly what needs fixing - in four clicks or less. Optimize performance anywhere. Database Performance Analyzer monitors on-premises, on VMware®, and in the Cloud, including Amazon® AWS and Azure™ virtual machines.
20th Cloud Expo, taking place June 6-8, 2017, at the Javits Center in New York City, NY, will feature technical sessions from a rock star conference faculty and the leading industry players in the world. Cloud computing is now being embraced by a majority of enterprises of all sizes. Yesterday's debate about public vs. private has transformed into the reality of hybrid cloud: a recent survey shows that 74% of enterprises have a hybrid cloud strategy.
SYS-CON Events announced today that Super Micro Computer, Inc., a global leader in compute, storage and networking technologies, will exhibit at SYS-CON's 20th International Cloud Expo®, which will take place on June 6-8, 2017, at the Javits Center in New York City, NY. Supermicro (NASDAQ: SMCI), the leading innovator in high-performance, high-efficiency server technology, is a premier provider of advanced server Building Block Solutions® for Data Center, Cloud Computing, Enterprise IT, Hadoop/...
Amazon has gradually rolled out parts of its IoT offerings in the last year, but these are just the tip of the iceberg. In addition to optimizing their back-end AWS offerings, Amazon is laying the ground work to be a major force in IoT – especially in the connected home and office. Amazon is extending its reach by building on its dominant Cloud IoT platform, its Dash Button strategy, recently announced Replenishment Services, the Echo/Alexa voice recognition control platform, the 6-7 strategic...
Bert Loomis was a visionary. This general session will highlight how Bert Loomis and people like him inspire us to build great things with small inventions. In their general session at 19th Cloud Expo, Harold Hannon, Architect at IBM Bluemix, and Michael O'Neill, Strategic Business Development at Nvidia, discussed the accelerating pace of AI development and how IBM Cloud and NVIDIA are partnering to bring AI capabilities to "every day," on-demand. They also reviewed two "free infrastructure" pr...