Center for CIO Leadership Member Success Case   Olayinka Oni, Wema Bank Plc.     “The Center for CIO Leadership site is a great resource when I am seeking knowledge on a particular topic and I also receive tremendous value from the virtual events.  It is beneficial to hear what others are working on and learn that they are facing the same challenges as me.  The Center has always been a great sounding board for me.” – Olayinka Oni, Wema Bank Plc		Member Profile:   Olayinka Oni is Divisional Head IT & Operations at Wema Bank Plc, Nigeria, where he is responsible for the strategic direction of the bank’s IT and Operations.  Olayinka joined Wema Bank Plc, Nigeria in November 2009.  Before Wema Bank Plc, Olayinka was Group Head Information Technology at FCMB where he provided executive leadership.  He was responsible for all aspects of strategic IT planning, implementation and support as an integral component of the business plan.    Connect directly with Olayinka Oni by visiting his member profile.

Olayinka Oni is Divisional Head IT & Operations at Wema Bank Plc, which is headquartered in Lagos, Nigeria, and operates a network of 110 branches throughout the country.  Olayinka joined the Center for CIO Leadership in 2009 to access the peer community and content, and gain insights and advice from peers and experts that he can leverage in his role as an IT leader.  Olayinka has attended a number of Center virtual events, participated in a mentoring relationship through the Center and is also an active member on the Center’s Member Steering Committee. 

Leveraging Technology to Enable Transformation

In a competitive market that is changing rapidly, Olayinka recognized that services and technology would be the key differentiators for his organization to stand out from other niche players in the banking industry.  Olayinka is leading a major IT-enabled transformation at his organization and through his involvement in the Center for CIO Leadership, he is able to tap into resources and peer insights that help him manage through the challenges he faces on the journey.  Additionally, as a result of his active involvement in the Center community and the Center’s Member Steering Committee, he has gained industry credibility in Nigeria.

Read the full member case to learn more about Olayinka’s transformation journey and how he is applying his learnings from Center events and activities within his own organization. 

If you do not see the file below, click here.

	Center for CIO Leadership Member Success Case   Yuvinder Kochar, The Washington Post Company     "We as technologists need to be partners to the business and be thinking about things that are happening in the marketplace and how they would translate into business value or new products.  Innovation is the name of the game." – Yuvinder Kochar, The Washington Post Company		Member Profile:   Yuvi Kochar, corporate CTO, collaborates with the major divisions of The Washington Post Company in the areas of technology strategy, architecture and Shared Information Technology Services.  Under his leadership, Shared IT Services has rapidly expanded to support key Compliance, Identity Management, Security and Privacy, HR, Benefits, Finance, Payroll and Procurement processes across all divisions.  The team also supports the Enterprise 2.0 corporate Intranet and is innovating in the areas of enterprise collaboration, flexible architectures, and analytics – enabling rapid deployment of new solutions to respond to the fast-evolving requirements of the Company’s business units.  Yuvi is also the President of the Washington Area CTO Roundtable, a group of 250 CTOs that is built around discussions of events and trends poised to have an impact on the technology industry.   Connect directly with Yuvinder Kochar by visiting his member profile.

Yuvinder “Yuvi” Kochar is Chief Technology Officer for The Washington Post Company, a diversified education and media company whose principal operations include educational services, newspaper print and online publishing, television broadcasting and cable television systems.  Yuvi has been a member of the community since the Center for CIO Leadership’s inception in 2007.

Diverse Career Experience Enabling Business Leadership

Ranging from experience with an international outsourcing organization, to an innovative start-up company, a large insurance and financial services organization to his current role as CTO at a large diversified enterprise, Yuvi’s career journey has provided him with a diverse set of technology and business management experiences that have positioned him to be a forward-thinking business leader.  In this case Yuvi describes how this evolving career path has enabled him to be a true business partner in his current role and innovative technologist who is creating value through technology.

How the Center Helped

Over the course of his membership, Yuvi has attended numerous Center virtual events and taken advantage of Center content, through which he has gained benefit from peer sharing and integrated insights on specific topics, and new ideas to evolve his thinking.  Yuvi shared that in particular he has found value in attending and actively participating in the virtual events.  “I, like many technology leaders, am pulled in so many different directions that frequently the desire to remain current with industry trends falls behind due to the day-to-day pressures of the CTO’s office.  Through the virtual events, the Center provides a deep dive into a topic of interest, best practices, real experiences and an opportunity to interact with other IT professionals and thought leaders from around the world.  Through a global reach, the virtual events attract a diverse set of people to discuss topics – it is hard to get that elsewhere.”

Read the full member case in the attached file, below to learn more about how Yuvi has leveraged his diverse career experiences to transform from a traditional IT manager to a true business leader, his lessons learned along the way, and how he is applying learnings from Center events and activities to advance his thinking.

If you do not see the file below, click here.

In an effort to share insights and advice coming out of the great conversations CIOs are having as a community, the Center has launched a new and exciting six-part video series, CIO Perspectives. This series brings together leading CIOs as they discuss topics, exchange ideas and compare experiences on important topics for CIOs to enhance their impact as business leaders.

Listen to Harvey Koeppel, Executive Director of the Center for CIO Leadership as he leads a discussion focusing CIO and CEO alignment with Center CIO Members, Jeanette Horan, CIO, IBM, Peter Whatnell, CIO, Sunoco, Inc., and Ron Bergmann, Vice President and CIO, Lehman College/CUNY.

Episode 2: CIO Perspectives | CIO and CEO Alignment

In the video, Harvey Koeppel mentions the blog post he wrote, Essential Reading:  "The Essential CIO", about the 2011 CIO Study by IBM, the Essential CIO.

“The involvement of the entire organization is very important.  You have to have a policy of security and risk management so that the people are involved in the process and are being more proactive than reactive.” —CIO, government finance ministry

Risk management is a topic of concern and priority for CIOs in all industries.  High profile attacks on customer databases and company websites have heightened the focus on information security and data protection as a core component of IT risk management.  The explosion of social media has presented CIOs with a score of concerns, from reputational risks to the brand to the dangers of unfettered employee access.  The evolving regulatory environment has created significant new demands upon enterprises and their CIOs and continues to require increased transparency and proof that these risks are being well managed.  And the call for more mobile access to corporate tools is challenging the traditional IT tactic of securing the perimeter and forcing CIOs to focus instead on end point security.

The Center for CIO Leadership interviewed CIO members across industries and geographies to gain their perspectives on how IT risk is changing for CIOs and what approaches CIOs are implementing to take a leadership role in risk management.  The following themes emerged from the qualitative research:

• IT risk management and security processes should be integrated into overall enterprise risk management governance
• A balanced approach to risk management is key
• IT leaders must market IT’s risk management and security strategies in business terms
• IT risk management and cyber security are not annual exercises
• Continuous education is paramount
• Risk management must be ingrained in every facet of IT strategy and management

Read this white paper to gain peer advice and insight on approaches that CIOs are implementing to take a leadership role in risk management and how CIOs are partnering with the entire organization on this imperative area.

Read the white paper attached below.  If you do not see the file below, click here.

George Westerman

Join the Center for CIO Leadership for this interactive virtual roundtable for CIOs and other C-suite executives, IT Risk: Turning Business Threats into Competitive Advantage featuring Dr. George Westerman, Research Scientist, MIT Center for Digital Business and Kris Lovejoy, Vice President of Risk Management, IBM.  The roundtable will take place Tuesday, September 27, 2011 at 9:00 am EDT (New York, USA).   Recent press about cyber and malware attacks, combined with ever-increasing regulatory compliance burdens, has Boards demanding that CIOs keep their companies out of the headlines.  At the same time, the consumerization of IT and exploding use of social media across enterprises are increasing the challenges of managing risk.  Yet IT risk management efforts are often seen as preventing progress rather than managing risk.  This session will explore key elements of the risk management challenge, the approaches to successfully manage risk and the potential for CIOs to find new value from risk management.  The speakers will explain how CIOs can reframe the discussion to turn these challenges into business opportunities.  The session will also feature a case study on how IBM is tackling the risk management challenge.

Kris Lovejoy

To register for the September 27th Virtual Roundtable or if you would like further information, please contact event@cioleadershipcenter.com.

I recently chaired a meeting of the Center’s Member Steering Committee (13 CIO peers helping the Center to engage members and drive value). As part of our discussion, we tackled the topic of risk management, and what we as CIOs are facing now in the area of risk management and security.

I would like to share some of the pressing issues we uncovered in our conversation, and invite you to add your own thoughts on what is keeping you up at night when it comes to risk management.

Regulatory oversight is making it tougher than ever

In the US, state level regulators are increasing scrutiny on information and data protections and security, which is consuming resources. One of my Committee colleagues described it this way:

“There is an increase in oversight in many areas from State attorneys general. I have the new responsibility to safeguard information.  We are seeing the regulators looking at the protections we have in place; we have significant challenges around mobile technology and how we are securing the data; and we have a broad spectrum of challenges, with plenty of remediation work needed. This is a big drain on resources and we are in middle of fire drills to see where we have exposure.”

Outside the US, regulators are going beyond mandating what to do, to mandating what technology and even which vendors to use to do it. Two CIOs on the Committee share concerns in this arena:

“The scary part in all of this is not what to do, but how to do it. It is dangerous when the regulators start pointing you to what technologies to use and what vendors to use.”

“I have a similar experience in my country. The regulators have been overbearing, and are defining the vendors we can work with. It is not helping with the differentiation that you would want as an organization.”

Globally regulations vary greatly, with the imbalance in less regulated geographies providing weak links that impact security for everyone.

“It is not about regulation in one country.  It is about a balance in the world.  Is it okay that some countries have tighter regulations than others?  The hackers or others that are trying to get into your systems will go through the weakest link…”

The consumerization of technology is upping the ante

Another hot button issue right now for the Committee is the consumerization of technology. Several committee members agreed that the proliferation of technologies and the end users’ knowledge and expectations around those technologies are making “the consumerization of technology a problem” to enterprises globally.

Social media brings lots of opportunity for enterprise threats and risk

As CIOs wrestle with social media in their enterprise, one of the biggest issues on their mind is the exposure and risk that comes along with all of the open networks and conversations. As one of my fellow members put it:

“The propagation of social media is propagating the risk management issues as well.  We don’t really know who is making comments on social media. We need to constantly monitor what people are saying, and we need to address the customers and even competitors who are putting comments on social media. And don’t forget that the regulators are mandating that we have an approach to managing this, so we need to start having a plan to address this.”

The drumbeat for transparency is beating faster but so are the risks and threats

A final point made in our discussion is the CIOs must walk a challenging line, as the demands for transparency across the enterprise accompany ever-increasing risks and threat.

“We have to be aware that risk threat is higher than ever, and at the same time we are also charged with being more transparent than ever.  Those two contexts are important to remember. Our risk management is also driven by the need for reputation damage control- driven both by compliance and a commitment as a profession that our organizations are protected”

These are a few thoughts from this Committee on the subject of risk management.  As I consider these comments, and think through the challenge of managing risk for CIOs, I would add this additional perspective as you think about IT risk management:

Recognizing risk to manage it

A big risk management issue I see is how to recognize a threat and to know that a threat is present for your organization.  Often it is hard to realize that a threat exists. When a threat finally occurs, it is hard to know how to reduce/eliminate it.  And finally, it's also difficult to quantify the threat/risk (the chance of the threat to occur and the damage it might generate). I put these threats into three groups as a way to help think through my own strategy for risk management.

• Internal threats (e.g. people: screening; physical security measures: identification, biometrics; organizational: processes)
• External threats (e.g. hacker attacks; dependency of suppliers, power supply/electricity; physical threats: earthquakes, radiation, attacks, etc.)
• Compliancy threats (legal, liability, etc.). How can an organization oversee all new regulations (what is the risk of missing one...)

My question to my fellow CIOs is - how can technology help in deterring threats? The strength of the chain is decided by its weakest link: often people are the weakest part in the chain. What are you doing to deter threats in your organization?

More broadly, what risk management issues are keeping you up at night? What should CIOs be putting on their highest priority list in mapping their strategic risk management plans going in to 2012?

CIO Virtual Roundtable – Wednesday, June 22nd, 2011

Professor Ari Lightman Carnegie Mellon University’s H. John Heinz III College	Marc Brown Senior Vice President, Corporate Service Center and Chief Information Officer Del Monte Foods Company	Ken Spangler Senior Vice President and Chief Information Officer FedEx Ground

Please join the Center for CIO Leadership and our partner, Carnegie Mellon University’s H. John Heinz III College, for this exclusive and highly topical session for CIOs and other c-suite executives.  The roundtable, led by Professor Ari Lightman and two leading CIOs, Marc Brown, Senior Vice President, Corporate Service Center and Chief Information Officer, Del Monte Foods Company and Ken Spangler, Senior Vice President and Chief Information Officer, FedEx Ground, focuses on Getting Value from Social Media and Unstructured Data: The New Unified View.  This Virtual Roundtable for CIOs will take place Wednesday, June 22, 2011 at 9:00 am EDT (New York, USA).

Social media is now pervasive across companies and industries, representing an exploding opportunity to connect with customers and prospects, and internally to collaborate and innovate.  The customer interactions and engagement that proliferate across social networks represent a powerful, but unstructured data source to incorporate into a unified view of the customer.  CIOs are wrestling with how to access and integrate the results of social strategies and campaigns into their broader analytics efforts while providing support for various departments and acceptable levels of security.

Professor Ari Lightman, from CMU’s Heinz College, researches social technologies and trends in social media data analysis, and works with companies like EBay, Bayer, Comcast and the Pittsburgh Steelers looking to understand and measure benefit associated with social content.  In this exclusive roundtable, he will provide CIOs with key insights to get value from integrating online social strategies into analytics and go to market strategy.

Professor Lightman, with insights from Mr. Brown & Mr. Spangler, will discuss what makes online social initiatives successful, how CIOs are managing and measuring the impact of these efforts, and how the rapidly expanding body of unstructured data provides a critical data source for the customer-centric enterprise.

To register please contact event@cioleadershipcenter.com

Click here to read more about the Panelists.  NOTE: You must be a CIO member of the Center to access the panelist bios.  Join now.