Professional Documents
Culture Documents
NNIT Whitepaper
How can they deliver a better customer/end-user experience (both internally and
externally) and how fast can they bring a product to market ahead of their competitors?
CSV can play an integral part in making IT as a business enabler by adopting leaner
approaches that foster innovation and agility.
• Process inefficiencies
• Poor change management processes
• Unstructured configuration management
• Lack of preparedness for the unknowns (Business Continuity, Disaster Recovery,
Information Security).
We then looked at easy-win areas – aspects that could have a significant impact with
minimal to moderate investment and change management.
NNIT WHITEPAPER
1. Introduction of Tools
Start with a proof-of-concept to first streamline the “to-be” process. This approach tends to
be a cheaper, less time-consuming alternative, and at the same time helps the leadership
realize the real benefit of automation. This proof-of-concept also facilitates further process
streamlining in many cases.
4. Lean Principles
Implement Kaizen boards, Lean principles; lessons learned sessions at the end of each
project to iteratively improve your CSV process. Based on the maturity-level, even consider
adopting a KPI-driven delivery or a Managed Services approach.
3. Better CMDB
A comprehensive CMDB with closely-coupled upstream and downstream linkages can help
understand the impact of a change and associated testing efforts and enable quick decision
making at Change Advisory Board (CAB) meetings.
5. Plan alternatives
Understanding your vendor’s processes upfront will enable you to prepare for additional
documentation/deliverables not produced by the vendor.
NNIT WHITEPAPER
Configuration Management
In today’s world, most software and infrastructure platforms are highly configurable, giving
more power to the end user. This scalability also gives birth to a significant validation
challenge, as establishing appropriate change management and an audit trail are essential
to maintaining the validated state of a system in production.
Configuration management in a cloud-based offering isn’t as transparent as their
on-premises counterparts. Each vendor will protect a certain level of intellectual property
for their interest, and hence the clients will only get access to a high-level overview of the
system configuration. It is essential to understand the format and structure of the base
configuration as well as fully comprehend how changes are applied and tracked while the
system is in production.
Information security and data privacy create another bucket of unknowns that organi-
zations are not prepared for and, therefore, they do not address them as part of their
validation efforts.
4. Vulnerability Testing
Incorporate vulnerability and penetration testing as part of your ongoing validation and
operation process. New vulnerabilities are reported almost daily, so there must be an
operational SOP defining this process for a system in production.
NNIT WHITEPAPER
Summary
Technologies will continue to evolve, and so the risk factors that are prevalent today may
not stay relevant tomorrow. Therefore, every organization should invest in keeping the
CSV function and personnel up-to-date with new technologies and evolving business
models.
An agile CSV function, when built upon solid technology foundations and supported by
ongoing training and knowledge management, can deliver a sustainable compliant state
for an organization.
NNIT WHITEPAPER
About NNIT
www.nnit.com