Welcome!

@CloudExpo Authors: Olivier Huynh Van, Carmen Gonzalez, Liz McMillan, Elizabeth White, Pat Romanski

Related Topics: @CloudExpo

@CloudExpo: Article

SaaS and Cloud Sprawl By @SoftwareHollis | @CloudExpo [#SaaS #Cloud]

CIOs Unaware of Majority of Cloud and SaaS Proliferation

SaaS and Cloud Sprawl - What IT Doesn’t Know Can Definitely Hurt You

The advancement of technology has led to widespread Cloud data and SaaS application usage throughout enterprises - ask anyone who uses applications such as Dropbox, Salesforce, Jive, Marketo, NetSuite, Google Apps, Twitter, Workday or any of the thousands of other software titles out there. And CIOs are largely unaware of the "SaaS Sprawl" in their organizations - and unprepared for the implications of this invasion.

These Cloud applications are available for just about every role in a company - from human resources to marketing, there's an app for that.  And odds are, someone in your organization is using it - most likely without IT knowing.  And this has the potential to create some serious problems in areas ranging from compliance to security to backup & recovery.

As application (primarily SaaS and Cloud nowadays) usage within organizations continues to spread and accelerate, IT professionals are largely unaware of the massive scale of Cloud application utilization according to studies done by Netskope and others.  However, IT continues to be held responsible for many of the implications resulting from this widespread proliferation.

Gaute Solaas, CEO of Cloud-based Business Intelligence vendor iQumulus commented, "This is entirely consistent with what I see with our customers and partners.  They are interested in Big Data solutions, but what's really impacting their business the most are the hundreds and thousands of smaller, disparate and often distributed applications and data repositories spread across the typical enterprise and up into the Cloud.  Organizations are struggling to cost-effectively get value out of this rapidly growing number of un-connected systems."

A recent study by Netskope validates this - they found that IT experts misjudged Cloud application usage within their companies by as much as 90%. In the Netskope report, when asked to approximate the number of Cloud and SaaS applications in use by their organization, IT professionals estimated that their company only used between 40 and 50 applications. According to Netskope, which based its conclusions on recordings of Cloud application events from "hundreds of thousands" of users across desktop and mobile platforms, actual use averages around 397 applications.  And this is in addition to the hundreds to thousands of disparate and potentially distributed on-premises "legacy" apps and data sources that companies have.

Here are the top five categories mentioned in the report, and the number of Cloud apps per enterprise on average:

  • Marketing - 51 Cloud applications
  • Human Resources - 35 Cloud applications
  • Storage - 26 Cloud applications
  • Customer Relationship Management and Sales Force Administration - 23 Cloud applications
  • Collaboration - 23 Cloud applications

Marketing and human resource applications include a large set of functions, while Cloud storage applications operate on a much narrower scope. Companies that have elected to standardize storage apps, like Google Drive or Dropbox, discovered many of these applications are unauthorized but used widely.

Even if the IT department does not know it, company data is being revealed through a wide range of these Cloud applications. In addition, according to the recent study, many of these applications do not meet company compliance or security standards.  Of significant concern, approximately 77% of these Cloud apps are not "ready for corporate use" because of issues such as auditability, security or governance/compliance issues. This causes IT departments to have the added challenge of trying to secure more apps than they originally thought, by as much as 10x more.

Another concern (and missed opportunity) for the organization is that all these apps represent isolated and un-integrated data silos. Critical business functions such as Business Intelligence are made increasingly difficult when the organization is faced with a large and growing number of incompatible and disparate systems.

Lori Witzel, a software technology expert at Spanning - a software vendor who provides enterprise-class backup and recovery capabilities to organizations who have mission-critical applications and data in the Cloud, raises another concern - the very real possibility of data loss.  Line-of-business professionals are used to IT being responsible for backup and recovery of their applications and data.  In the SaaS and Cloud world, many people mistakenly believe that it is the SaaS or Cloud vendors responsibility to back up all that valuable data - this is very rarely the case.

Witzel comments on this - using Marketing as an illustration of the situation, "as if the expectations CMOs must meet weren't daunting enough, CMOs now find themselves expected to take on a responsibility previously owned by IT: protecting Cloud data in those applications owned by Marketing."  Witzel continues with some sage advice on the topic, "check your terms of user and service level agreements: in most cases, the ultimate responsibility for protecting an organization's marketing and sales data/metadata rests with the Cloud application owner or with IT."

Of course, if IT doesn't know about your Cloud application, the responsibility for being the "Cloud Data Protector" relies with you - the application owner.

With all this in mind, some CIOs may consider blocking any unsanctioned apps. Aside from the simple fact that IT is unaware of the various apps being used, it can be an up-hill battle to discover which activities within these apps are being performed, and limit such activities.

This is simply because the majority of these apps are being used because someone or a group of people within the organization felt that these apps would be useful - and some even critical in their daily work lives. For instance, Twitter plays an important part for the marketing team, as well as for researchers and analysts, who examine the shared and collected data from this application.  So CIOs attempting to limit such apps are likely to face howls of protest.

Clearly, CIOs need to be aware of the parties these Cloud applications are trying to address, before limiting unsanctioned app usage. As Sanjay Beri, Netskope CEO said, "Sometimes saying no to Cloud apps is like saying no to business."

More Stories By Hollis Tibbetts

Hollis Tibbetts, or @SoftwareHollis as his 50,000+ followers know him on Twitter, is listed on various “top 100 expert lists” for a variety of topics – ranging from Cloud to Technology Marketing, Hollis is by day Evangelist & Software Technology Director at Dell Software. By night and weekends he is a commentator, speaker and all-round communicator about Software, Data and Cloud in their myriad aspects. You can also reach Hollis on LinkedIn – linkedin.com/in/SoftwareHollis. His latest online venture is OnlineBackupNews - a free reference site to help organizations protect their data, applications and systems from threats. Every year IT Downtime Costs $26.5 Billion In Lost Revenue. Even with such high costs, 56% of enterprises in North America and 30% in Europe don’t have a good disaster recovery plan. Online Backup News aims to make sure you all have the news and tips needed to keep your IT Costs down and your information safe by providing best practices, technology insights, strategies, real-world examples and various tips and techniques from a variety of industry experts.

Hollis is a regularly featured blogger at ebizQ, a venue focused on enterprise technologies, with over 100,000 subscribers. He is also an author on Social Media Today "The World's Best Thinkers on Social Media", and maintains a blog focused on protecting data: Online Backup News.
He tweets actively as @SoftwareHollis

Additional information is available at HollisTibbetts.com

All opinions expressed in the author's articles are his own personal opinions vs. those of his employer.

@CloudExpo Stories
With major technology companies and startups seriously embracing Cloud strategies, now is the perfect time to attend @CloudExpo | @ThingsExpo, June 6-8, 2017, at the Javits Center in New York City, NY and October 31 - November 2, 2017, Santa Clara Convention Center, CA. Learn what is going on, contribute to the discussions, and ensure that your enterprise is on the right path to Digital Transformation.
HyperConvergence came to market with the objective of being simple, flexible and to help drive down operating expenses. It reduced the footprint by bundling the compute/storage/network into one box. This brought a new set of challenges as the HyperConverged vendors are very focused on their own proprietary building blocks. If you want to scale in a certain way, let’s say you identified a need for more storage and want to add a device that is not sold by the HyperConverged vendor, forget about it...
SYS-CON Events announced today that Loom Systems will exhibit at SYS-CON's 20th International Cloud Expo®, which will take place on June 6-8, 2017, at the Javits Center in New York City, NY. Founded in 2015, Loom Systems delivers an advanced AI solution to predict and prevent problems in the digital business. Loom stands alone in the industry as an AI analysis platform requiring no prior math knowledge from operators, leveraging the existing staff to succeed in the digital era. With offices in S...
FinTech is the sum of financial and technology, and it’s one of the fastest growing tech industries. Total global investments in FinTech almost reached $50 billion last year, but there is still a great deal of confusion over what it is and what it means – especially as it applies to retirement. Building financial startups is not simple, but with the right team, technology and an innovative approach it can be an extremely interesting domain to disrupt. FinTech heralds a financial revolution that...
What if you could build a web application that could support true web-scale traffic without having to ever provision or manage a single server? Sounds magical, and it is! In his session at 20th Cloud Expo, Chris Munns, Senior Developer Advocate for Serverless Applications at Amazon Web Services, will show how to build a serverless website that scales automatically using services like AWS Lambda, Amazon API Gateway, and Amazon S3. We will review several frameworks that can help you build serverle...
Imagine having the ability to leverage all of your current technology and to be able to compose it into one resource pool. Now imagine, as your business grows, not having to deploy a complete new appliance to scale your infrastructure. Also imagine a true multi-cloud capability that allows live migration without any modification between cloud environments regardless of whether that cloud is your private cloud or your public AWS, Azure or Google instance. Now think of a world that is not locked i...
SYS-CON Events announced today that T-Mobile will exhibit at SYS-CON's 20th International Cloud Expo®, which will take place on June 6-8, 2017, at the Javits Center in New York City, NY. As America's Un-carrier, T-Mobile US, Inc., is redefining the way consumers and businesses buy wireless services through leading product and service innovation. The Company's advanced nationwide 4G LTE network delivers outstanding wireless experiences to 67.4 million customers who are unwilling to compromise on ...
SYS-CON Events announced today that Infranics will exhibit at SYS-CON's 20th International Cloud Expo®, which will take place on June 6-8, 2017, at the Javits Center in New York City, NY. Since 2000, Infranics has developed SysMaster Suite, which is required for the stable and efficient management of ICT infrastructure. The ICT management solution developed and provided by Infranics continues to add intelligence to the ICT infrastructure through the IMC (Infra Management Cycle) based on mathemat...
MongoDB Atlas leverages VPC peering for AWS, a service that allows multiple VPC networks to interact. This includes VPCs that belong to other AWS account holders. By performing cross account VPC peering, users ensure networks that host and communicate their data are secure. In his session at 20th Cloud Expo, Jay Gordon, a Developer Advocate at MongoDB, will explain how to properly architect your VPC using existing AWS tools and then peer with your MongoDB Atlas cluster. He'll discuss the secur...
Historically, some banking activities such as trading have been relying heavily on analytics and cutting edge algorithmic tools. The coming of age of powerful data analytics solutions combined with the development of intelligent algorithms have created new opportunities for financial institutions. In his session at 20th Cloud Expo, Sebastien Meunier, Head of Digital for North America at Chappuis Halder & Co., will discuss how these tools can be leveraged to develop a lasting competitive advanta...
SYS-CON Events announced today that Interoute, owner-operator of one of Europe's largest networks and a global cloud services platform, has been named “Bronze Sponsor” of SYS-CON's 20th Cloud Expo, which will take place on June 6-8, 2017 at the Javits Center in New York, New York. Interoute is the owner-operator of one of Europe's largest networks and a global cloud services platform which encompasses 12 data centers, 14 virtual data centers and 31 colocation centers, with connections to 195 add...
SYS-CON Events announced today that Cloudistics, an on-premises cloud computing company, has been named “Bronze Sponsor” of SYS-CON's 20th International Cloud Expo®, which will take place on June 6-8, 2017, at the Javits Center in New York City, NY. Cloudistics delivers a complete public cloud experience with composable on-premises infrastructures to medium and large enterprises. Its software-defined technology natively converges network, storage, compute, virtualization, and management into a ...
SYS-CON Events announced today that SD Times | BZ Media has been named “Media Sponsor” of SYS-CON's 20th International Cloud Expo, which will take place on June 6–8, 2017, at the Javits Center in New York City, NY. BZ Media LLC is a high-tech media company that produces technical conferences and expositions, and publishes a magazine, newsletters and websites in the software development, SharePoint, mobile development and commercial UAV markets.
SYS-CON Events announced today that Juniper Networks (NYSE: JNPR), an industry leader in automated, scalable and secure networks, will exhibit at SYS-CON's 20th International Cloud Expo®, which will take place on June 6-8, 2017, at the Javits Center in New York City, NY. Juniper Networks challenges the status quo with products, solutions and services that transform the economics of networking. The company co-innovates with customers and partners to deliver automated, scalable and secure network...
In his session at Cloud Expo, Alan Winters, an entertainment executive/TV producer turned serial entrepreneur, will present a success story of an entrepreneur who has both suffered through and benefited from offshore development across multiple businesses: The smart choice, or how to select the right offshore development partner Warning signs, or how to minimize chances of making the wrong choice Collaboration, or how to establish the most effective work processes Budget control, or how to max...
"I think that everyone recognizes that for IoT to really realize its full potential and value that it is about creating ecosystems and marketplaces and that no single vendor is able to support what is required," explained Esmeralda Swartz, VP, Marketing Enterprise and Cloud at Ericsson, in this SYS-CON.tv interview at @ThingsExpo, held June 7-9, 2016, at the Javits Center in New York City, NY.
Why do your mobile transformations need to happen today? Mobile is the strategy that enterprise transformation centers on to drive customer engagement. In his general session at @ThingsExpo, Roger Woods, Director, Mobile Product & Strategy – Adobe Marketing Cloud, covered key IoT and mobile trends that are forcing mobile transformation, key components of a solid mobile strategy and explored how brands are effectively driving mobile change throughout the enterprise.
My team embarked on building a data lake for our sales and marketing data to better understand customer journeys. This required building a hybrid data pipeline to connect our cloud CRM with the new Hadoop Data Lake. One challenge is that IT was not in a position to provide support until we proved value and marketing did not have the experience, so we embarked on the journey ourselves within the product marketing team for our line of business within Progress. In his session at @BigDataExpo, Sum...
Keeping pace with advancements in software delivery processes and tooling is taxing even for the most proficient organizations. Point tools, platforms, open source and the increasing adoption of private and public cloud services requires strong engineering rigor - all in the face of developer demands to use the tools of choice. As Agile has settled in as a mainstream practice, now DevOps has emerged as the next wave to improve software delivery speed and output. To make DevOps work, organization...
Without a clear strategy for cost control and an architecture designed with cloud services in mind, costs and operational performance can quickly get out of control. To avoid multiple architectural redesigns requires extensive thought and planning. Boundary (now part of BMC) launched a new public-facing multi-tenant high resolution monitoring service on Amazon AWS two years ago, facing challenges and learning best practices in the early days of the new service.