As the Data Management Practice Director for BTRG, I deal with Data Governance challenges and solutions for our customers on a daily basis. I’ve been a consultant for over 15 years and I’ve seen the impacts of politics on many corporations as they struggle to solve problems.
Today I’d like to talk about the difference between implementing data governance after a data breach verses before a data breach. Many companies turn to data governance after a problem such as a data or security breach. I’d like to dive deeper past the obvious risk avoidance issues with preventing a breach and talk about how it is actually easier to implement data governance BEFORE an issue. We have seen that not only does it save the costs of a breach, but you can actually do more data governance and do it more easily before a security problem. Also, a comprehensive approach is the best approach and more value can be derived by moving beyond just a security centric view of data governance.
Some key questions to ask when considering a data governance approach- Ask your audience what is our view of data governance? What is the perspective on success? Do we feel that we can become totally secure? Do we have metrics around how much security we want/need? Do some folks feel that we are only fighting a loosing battle? Have we defined an understanding of how and where to put dollars behind implementation of data governance easily? Does our enterprise view data governance as a necessary evil or proactive measure?
I put forth that Data Governance is a way your corporation can innovate and derive value in many of the following ways:
• Risk mitigation
• Theft avoidance
• System security
• Increased system performance
• Improved management of system testing
• Higher quality applications
• Significant cost savings
In future blog posts I will dive into each of these benefits in greater detail.
I hope that I can convey ideas around how and why data governance is a worthy endeavor from a proactive standpoint and that actual benefits can be realized. It is best to think of all aspects of data governance and not just security. The more comprehensive you make your approach to data governance the more you will drive ROI and the more benefits will be realized.