Welcome!

@CloudExpo Authors: Pat Romanski, Elizabeth White, William Schmarzo, Liz McMillan, Yeshim Deniz

Related Topics: @CloudExpo

@CloudExpo: Article

SaaS and Cloud Sprawl By @SoftwareHollis | @CloudExpo [#SaaS #Cloud]

CIOs Unaware of Majority of Cloud and SaaS Proliferation

SaaS and Cloud Sprawl - What IT Doesn’t Know Can Definitely Hurt You

The advancement of technology has led to widespread Cloud data and SaaS application usage throughout enterprises - ask anyone who uses applications such as Dropbox, Salesforce, Jive, Marketo, NetSuite, Google Apps, Twitter, Workday or any of the thousands of other software titles out there. And CIOs are largely unaware of the "SaaS Sprawl" in their organizations - and unprepared for the implications of this invasion.

These Cloud applications are available for just about every role in a company - from human resources to marketing, there's an app for that.  And odds are, someone in your organization is using it - most likely without IT knowing.  And this has the potential to create some serious problems in areas ranging from compliance to security to backup & recovery.

As application (primarily SaaS and Cloud nowadays) usage within organizations continues to spread and accelerate, IT professionals are largely unaware of the massive scale of Cloud application utilization according to studies done by Netskope and others.  However, IT continues to be held responsible for many of the implications resulting from this widespread proliferation.

Gaute Solaas, CEO of Cloud-based Business Intelligence vendor iQumulus commented, "This is entirely consistent with what I see with our customers and partners.  They are interested in Big Data solutions, but what's really impacting their business the most are the hundreds and thousands of smaller, disparate and often distributed applications and data repositories spread across the typical enterprise and up into the Cloud.  Organizations are struggling to cost-effectively get value out of this rapidly growing number of un-connected systems."

A recent study by Netskope validates this - they found that IT experts misjudged Cloud application usage within their companies by as much as 90%. In the Netskope report, when asked to approximate the number of Cloud and SaaS applications in use by their organization, IT professionals estimated that their company only used between 40 and 50 applications. According to Netskope, which based its conclusions on recordings of Cloud application events from "hundreds of thousands" of users across desktop and mobile platforms, actual use averages around 397 applications.  And this is in addition to the hundreds to thousands of disparate and potentially distributed on-premises "legacy" apps and data sources that companies have.

Here are the top five categories mentioned in the report, and the number of Cloud apps per enterprise on average:

  • Marketing - 51 Cloud applications
  • Human Resources - 35 Cloud applications
  • Storage - 26 Cloud applications
  • Customer Relationship Management and Sales Force Administration - 23 Cloud applications
  • Collaboration - 23 Cloud applications

Marketing and human resource applications include a large set of functions, while Cloud storage applications operate on a much narrower scope. Companies that have elected to standardize storage apps, like Google Drive or Dropbox, discovered many of these applications are unauthorized but used widely.

Even if the IT department does not know it, company data is being revealed through a wide range of these Cloud applications. In addition, according to the recent study, many of these applications do not meet company compliance or security standards.  Of significant concern, approximately 77% of these Cloud apps are not "ready for corporate use" because of issues such as auditability, security or governance/compliance issues. This causes IT departments to have the added challenge of trying to secure more apps than they originally thought, by as much as 10x more.

Another concern (and missed opportunity) for the organization is that all these apps represent isolated and un-integrated data silos. Critical business functions such as Business Intelligence are made increasingly difficult when the organization is faced with a large and growing number of incompatible and disparate systems.

Lori Witzel, a software technology expert at Spanning - a software vendor who provides enterprise-class backup and recovery capabilities to organizations who have mission-critical applications and data in the Cloud, raises another concern - the very real possibility of data loss.  Line-of-business professionals are used to IT being responsible for backup and recovery of their applications and data.  In the SaaS and Cloud world, many people mistakenly believe that it is the SaaS or Cloud vendors responsibility to back up all that valuable data - this is very rarely the case.

Witzel comments on this - using Marketing as an illustration of the situation, "as if the expectations CMOs must meet weren't daunting enough, CMOs now find themselves expected to take on a responsibility previously owned by IT: protecting Cloud data in those applications owned by Marketing."  Witzel continues with some sage advice on the topic, "check your terms of user and service level agreements: in most cases, the ultimate responsibility for protecting an organization's marketing and sales data/metadata rests with the Cloud application owner or with IT."

Of course, if IT doesn't know about your Cloud application, the responsibility for being the "Cloud Data Protector" relies with you - the application owner.

With all this in mind, some CIOs may consider blocking any unsanctioned apps. Aside from the simple fact that IT is unaware of the various apps being used, it can be an up-hill battle to discover which activities within these apps are being performed, and limit such activities.

This is simply because the majority of these apps are being used because someone or a group of people within the organization felt that these apps would be useful - and some even critical in their daily work lives. For instance, Twitter plays an important part for the marketing team, as well as for researchers and analysts, who examine the shared and collected data from this application.  So CIOs attempting to limit such apps are likely to face howls of protest.

Clearly, CIOs need to be aware of the parties these Cloud applications are trying to address, before limiting unsanctioned app usage. As Sanjay Beri, Netskope CEO said, "Sometimes saying no to Cloud apps is like saying no to business."

More Stories By Hollis Tibbetts

Hollis Tibbetts, or @SoftwareHollis as his 50,000+ followers know him on Twitter, is listed on various “top 100 expert lists” for a variety of topics – ranging from Cloud to Technology Marketing, Hollis is by day Evangelist & Software Technology Director at Dell Software. By night and weekends he is a commentator, speaker and all-round communicator about Software, Data and Cloud in their myriad aspects. You can also reach Hollis on LinkedIn – linkedin.com/in/SoftwareHollis. His latest online venture is OnlineBackupNews - a free reference site to help organizations protect their data, applications and systems from threats. Every year IT Downtime Costs $26.5 Billion In Lost Revenue. Even with such high costs, 56% of enterprises in North America and 30% in Europe don’t have a good disaster recovery plan. Online Backup News aims to make sure you all have the news and tips needed to keep your IT Costs down and your information safe by providing best practices, technology insights, strategies, real-world examples and various tips and techniques from a variety of industry experts.

Hollis is a regularly featured blogger at ebizQ, a venue focused on enterprise technologies, with over 100,000 subscribers. He is also an author on Social Media Today "The World's Best Thinkers on Social Media", and maintains a blog focused on protecting data: Online Backup News.
He tweets actively as @SoftwareHollis

Additional information is available at HollisTibbetts.com

All opinions expressed in the author's articles are his own personal opinions vs. those of his employer.

@CloudExpo Stories
In his session at 20th Cloud Expo, Brad Winett, Senior Technologist for DDN Storage, will present several current, end-user environments that are using object storage at scale for cloud deployments including private cloud and cloud providers. Details on the top considerations of features and functions for selecting object storage will be included. Brad will also touch on recent developments in tiering technologies that deliver single solution and an end-user view of data across files and objects...
IBM helps FinTechs and financial services companies build and monetize cognitive-enabled financial services apps quickly and at scale. Hosted on IBM Bluemix, IBM’s platform builds in customer insights, regulatory compliance analytics and security to help reduce development time and testing. In his session at 20th Cloud Expo, Tom Eck, Industry Platforms CTO at IBM Cloud, will discuss how these tools simplify the time-consuming tasks of selection, mapping and data integration, allowing developers ...
For financial firms, the cloud is going to increasingly become a crucial part of dealing with customers over the next five years and beyond, particularly with the growing use and acceptance of virtual currencies. There are new data storage paradigms on the horizon that will deliver secure solutions for storing and moving sensitive financial data around the world without touching terrestrial networks. In his session at 20th Cloud Expo, Cliff Beek, President of Cloud Constellation Corporation, w...
DevOps is often described as a combination of technology and culture. Without both, DevOps isn't complete. However, applying the culture to outdated technology is a recipe for disaster; as response times grow and connections between teams are delayed by technology, the culture will die. A Nutanix Enterprise Cloud has many benefits that provide the needed base for a true DevOps paradigm.
SYS-CON Events announced today that Progress, a global leader in application development, has been named “Bronze Sponsor” of SYS-CON's 20th International Cloud Expo®, which will take place on June 6-8, 2017, at the Javits Center in New York City, NY. Enterprises today are rapidly adopting the cloud, while continuing to retain business-critical/sensitive data inside the firewall. This is creating two separate data silos – one inside the firewall and the other outside the firewall. Cloud ISVs ofte...
SYS-CON Events announced today that Outscale, a global pure play Infrastructure as a Service provider and strategic partner of Dassault Systèmes, will exhibit at SYS-CON's 20th International Cloud Expo®, which will take place on June 6-8, 2017, at the Javits Center in New York City, NY. Founded in 2010, Outscale simplifies infrastructure complexities and boosts the business agility of its customers. Outscale delivers a secure, reliable and industrial strength solution for its customers, which in...
Cloud applications are seeing a deluge of requests to support the exploding advanced analytics market. “Open analytics” is the emerging strategy to deliver that data through an open data access layer, in the cloud, to be directly consumed by external analytics tools and popular programming languages. An increasing number of data engineers and data scientists use a variety of platforms and advanced analytics languages such as SAS, R, Python and Java, as well as frameworks such as Hadoop and Spark...
SYS-CON Events announced today that DivvyCloud will exhibit at SYS-CON's 20th International Cloud Expo®, which will take place on June 6-8, 2017, at the Javits Center in New York City, NY. DivvyCloud software enables organizations to achieve their cloud computing goals by simplifying and automating security, compliance and cost optimization of public and private cloud infrastructure. Using DivvyCloud, customers can leverage programmatic Bots to identify and remediate common cloud problems in rea...
Amazon started as an online bookseller 20 years ago. Since then, it has evolved into a technology juggernaut that has disrupted multiple markets and industries and touches many aspects of our lives. It is a relentless technology and business model innovator driving disruption throughout numerous ecosystems. Amazon’s AWS revenues alone are approaching $16B a year making it one of the largest IT companies in the world. With dominant offerings in Cloud, IoT, eCommerce, Big Data, AI, Digital Assis...
Interested in leveling up on your Cloud Foundry skills? Join IBM for Cloud Foundry Days on June 7 at Cloud Expo New York at the Javits Center in New York City. Cloud Foundry Days is a free half day educational conference and networking event. Come find out why Cloud Foundry is the industry's fastest-growing and most adopted cloud application platform.
While some vendors scramble to create and sell you a fancy solution for monitoring your spanking new Amazon Lambdas, hear how you can do it on the cheap using just built-in Java APIs yourself. By exploiting a little-known fact that Lambdas aren’t exactly single threaded, you can effectively identify hot spots in your serverless code. In his session at 20th Cloud Expo, David Martin, Principal Product Owner at CA Technologies, will give a live demonstration and code walkthrough, showing how to ov...
Most DevOps journeys involve several phases of maturity. Research shows that the inflection point where organizations begin to see maximum value is when they implement tight integration deploying their code to their infrastructure. Success at this level is the last barrier to at-will deployment. Storage, for instance, is more capable than where we read and write data. In his session at @DevOpsSummit at 20th Cloud Expo, Josh Atwell, a Developer Advocate for NetApp, will discuss the role and value...
In order to meet the rapidly changing demands of today’s customers, companies are continually forced to redefine their business strategies in order to meet these needs, stay relevant and continue to see profitable growth. IoT deployment and development is integral in this transformation, and today businesses are increasingly seeing the value of investing their resources into IoT deployments. These technologies are able increase ROI through projects such as connecting supply chains or enabling sm...
SYS-CON Events announced today that delaPlex will exhibit at SYS-CON's @CloudExpo, which will take place on June 6-8, 2017, at the Javits Center in New York City, NY. delaPlex pioneered Software Development as a Service (SDaaS), which provides scalable resources to build, test, and deploy software. It’s a fast and more reliable way to develop a new product or expand your in-house team.
SYS-CON Events announced today that Cloudistics, an on-premises cloud computing company, has been named “Bronze Sponsor” of SYS-CON's 20th International Cloud Expo®, which will take place on June 6-8, 2017, at the Javits Center in New York City, NY. Cloudistics delivers a complete public cloud experience with composable on-premises infrastructures to medium and large enterprises. Its software-defined technology natively converges network, storage, compute, virtualization, and management into a ...
New competitors, disruptive technologies, and growing expectations are pushing every business to both adopt and deliver new digital services. This ‘Digital Transformation’ demands rapid delivery and continuous iteration of new competitive services via multiple channels, which in turn demands new service delivery techniques – including DevOps. In this power panel at @DevOpsSummit 20th Cloud Expo, moderated by DevOps Conference Co-Chair Andi Mann, panelists will examine how DevOps helps to meet th...
A strange thing is happening along the way to the Internet of Things, namely far too many devices to work with and manage. It has become clear that we'll need much higher efficiency user experiences that can allow us to more easily and scalably work with the thousands of devices that will soon be in each of our lives. Enter the conversational interface revolution, combining bots we can literally talk with, gesture to, and even direct with our thoughts, with embedded artificial intelligence, whic...
As DevOps methodologies expand their reach across the enterprise, organizations face the daunting challenge of adapting related cloud strategies to ensure optimal alignment, from managing complexity to ensuring proper governance. How can culture, automation, legacy apps and even budget be reexamined to enable this ongoing shift within the modern software factory?
Every successful software product evolves from an idea to an enterprise system. Notably, the same way is passed by the product owner's company. In his session at 20th Cloud Expo, Oleg Lola, CEO of MobiDev, will provide a generalized overview of the evolution of a software product, the product owner, the needs that arise at various stages of this process, and the value brought by a software development partner to the product owner as a response to these needs.
SYS-CON Events announced today that A&I Solutions has been named “Bronze Sponsor” of SYS-CON's 20th International Cloud Expo®, which will take place on June 6-8, 2017, at the Javits Center in New York City, NY. Founded in 1999, A&I Solutions is a leading information technology (IT) software and services provider focusing on best-in-class enterprise solutions. By partnering with industry leaders in technology, A&I assures customers high performance levels across all IT environments including: mai...