CIO & LEADER-Issue-12-March 2018
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
Face Off<br />
Should Digital Budget Be A Part Of<br />
Enterprise IT Budget? Pg 24<br />
Insight<br />
What Does Hyper-Consolidation<br />
Mean For Enterprise <strong>CIO</strong>s? Pg 26<br />
Volume 06<br />
<strong>Issue</strong> <strong>12</strong><br />
<strong>March</strong> <strong>2018</strong><br />
150<br />
TRACK TECHNOLOGY BUILD BUSINESS SHAPE SELF<br />
Decoding<br />
Digital<br />
Transformation<br />
India, Circa <strong>2018</strong><br />
What the journeys of selected businesses in three of<br />
India's top business groups, Tata, Mahindra&Mahindra &<br />
Vedanta/Sterlite, tell us about big transformation Pg <strong>12</strong><br />
A 9.9 Group Publication
EDITORIAL<br />
Shyamanuja Das<br />
shyamanuja.das@9dot9.in<br />
The great<br />
question that<br />
has never been<br />
answered...…<br />
T<br />
“If you think<br />
you will be<br />
asked to drive<br />
transformation<br />
in a large<br />
company while<br />
keeping nuts<br />
and bolts of<br />
IT, you are<br />
mistaken"<br />
“The great question that has never been answered,<br />
and which I have not yet been able to answer,<br />
despite my thirty years of research,” confided<br />
Sigmund Freud, is ‘What does a woman want?’<br />
The big question of business today—what<br />
exactly is digital transformation?—may not be as<br />
challenging as Freud’s ‘great question’ (maybe,<br />
one of the ultimate great questions of human<br />
civilization) but in many ways, they are similar.<br />
It is not that answer to these questions have not<br />
been attempted. In fact, they have probably been<br />
attempted by more people than any other comparable<br />
questions of their time and arguably that<br />
is exactly what makes them great.<br />
So, here’s one more shot at explaining what<br />
digital transformation means—the great question<br />
of business, circa <strong>2018</strong>.<br />
The reason I started with Freud is that I can<br />
make the confession with a straight<br />
face—that what I have done is grossly<br />
inadequate to define what digital transformation<br />
means. Yet, if it can help you<br />
gauge the direction of the digital journey<br />
of some of the largest core sector companies<br />
in India a little better, I think my goal<br />
would be achieved to a great extent.<br />
Trying to define what digital transformation<br />
is not the job of editors like me.<br />
All we do is observe and report; maybe<br />
try to connect some dots at best.<br />
So, take it for what it is. It is a report on<br />
what is happening on the ground, with an<br />
attempt to identify some common trends.<br />
For <strong>CIO</strong>s, there are a couple of big messages.<br />
First and foremost, a <strong>CIO</strong> cannot drive digital<br />
transformation. Please read it completely before<br />
shooting me. All it means is a real transformation<br />
needs a dedicated driver. If you think you will be<br />
asked to drive transformation in a large company<br />
while keeping the nuts and bolts of IT (your current<br />
<strong>CIO</strong> role), you are mistaken. As you can make out, it<br />
has nothing to do with your competence or your professional<br />
background. It is everything to do about<br />
your letting go the past.<br />
Secondly, in the digital era, all that brought you<br />
here won’t take you there. You are probably here<br />
because you understand your business so well and<br />
you are a great problem solver. But for transformation,<br />
you may not be given a problem. Today, a good<br />
transformationist would look for all new technologies<br />
and should be able to quickly identify which<br />
one out of them can add great value to their business.<br />
You do not need to be apologetic about being a<br />
techie as long as you are comfortable with the landscape<br />
and do not get caught up with one.<br />
We will get into greater detail on what would<br />
make a <strong>CIO</strong> a great digital leader soon, in one of the<br />
next issues<br />
<strong>March</strong> <strong>2018</strong> | <strong>CIO</strong>&<strong>LEADER</strong><br />
1
Face Off<br />
Should Digital Budget Be A Part Of<br />
Enterprise IT Budget? Pg 24<br />
TRACK TECHNOLOGY BUILD BUSINESS SHAPE SELF<br />
A 9.9 Group Publication<br />
Insight Volume 06<br />
What Does Hyper-Consolidation <strong>Issue</strong> <strong>12</strong><br />
<strong>March</strong> <strong>2018</strong><br />
Mean For Enterprise <strong>CIO</strong>s? Pg 26<br />
150<br />
India, Circa <strong>2018</strong><br />
What the journeys of selected businesses in three of<br />
India's top business groups, Tata, Mahindra&Mahindra &<br />
Vedanta/Sterlite, tell us about big transformation Pg <strong>12</strong><br />
CONTENT<br />
MARCH <strong>2018</strong><br />
COVER STORY<br />
<strong>12</strong>-23 | Decoding Digital<br />
Transformation - India,<br />
Circa <strong>2018</strong><br />
Decoding<br />
Digital<br />
Transformation<br />
Cover Design by:<br />
Shokeen Saifi<br />
Please Recycle<br />
This Magazine<br />
And Remove<br />
Inserts Before<br />
Recycling<br />
COPYRIGHT, All rights reserved: Reproduction in whole or in part without written permission from<br />
Nine Dot Nine Interactive Pvt Ltd. is prohibited. Printed and published by Vikas Gupta for Nine Dot Nine<br />
Mediaworx Pvt Ltd, <strong>12</strong>1, Patparganj, Mayur Vihar, Phase - I, Near Mandir Masjid, Delhi-110091. Printed at<br />
Tara Art Printers Pvt ltd. A-46-47, Sector-5, NOIDA (U.P.) 2013011<br />
advertisers ’ index<br />
Seagate<br />
Netmatic<br />
IFC<br />
BC<br />
This index is provided as an<br />
additional service.The publisher<br />
does not assume any liabilities<br />
for errors or omissions.<br />
2 <strong>CIO</strong>&<strong>LEADER</strong> | <strong>March</strong> <strong>2018</strong>
AROUND THE TECH<br />
04-07<br />
<strong>CIO</strong>s Think Of Themselves<br />
As Technology Visionaries<br />
www.cioandleader.com<br />
COLUMN<br />
08-09<br />
Why New Age BI<br />
Systems Are Better<br />
Than Traditional MIS?<br />
By Anshul Rai<br />
10-11<br />
Securing The Digital<br />
Supply Chain<br />
By Rahul Kumar<br />
INSIGHT<br />
28-29<br />
India Is Among Bottom<br />
Five Countries In Global<br />
Cloud Study<br />
34-35<br />
Cloud Apps And<br />
Web Portals Are<br />
The Biggest Targets<br />
For Attackers<br />
SECURITY<br />
36-37<br />
The Case of Rising<br />
Cyberattacks<br />
<strong>LEADER</strong>SHIP<br />
38-39<br />
Ten Ways Business<br />
Leaders Can Improve<br />
Gender Diversity<br />
MANAGEMENT<br />
Managing Director: Dr Pramath Raj Sinha<br />
Printer & Publisher: Vikas Gupta<br />
EDITORIAL<br />
Managing Editor: Shyamanuja Das<br />
Associate Editor: Shubhra Rishi<br />
Content Executive-Enterprise Technology:<br />
Dipanjan Mitra<br />
DESIGN<br />
Sr Art Director: Anil VK<br />
Art Director: Shokeen Saifi<br />
Visualisers: NV Baiju & Manoj Kumar VP<br />
Lead UI/UX Designer: Shri Hari Tiwari<br />
Sr Designers: Charu Dwivedi, Haridas Balan & Peterson PJ<br />
SALES & MARKETING<br />
Director-Community Engagement<br />
for Enterprise Technology Business:<br />
Sachin Mhashilkar (+91 99203 48755)<br />
Brand Head: Vandana Chauhan (+91 99589 84581)<br />
Assistant Product Manager-Digital: Manan Mushtaq<br />
Community Manager-B2B Tech: Megha Bhardwaj<br />
Community Manager-B2B Tech: Renuka Deopa<br />
Associate-Enterprise Technology: Abhishek Jain<br />
Assistant Brand Manager-B2B Tech: Mallika Khosla<br />
Regional Sales Managers<br />
South: Ashish Kumar (+91 97407 61921)<br />
North: Deepak Sharma (+91 98117 91110)<br />
West: Prashant Amin (+91 98205 75282)<br />
Ad Co-ordination/Scheduling: Kishan Singh<br />
PRODUCTION & LOGISTICS<br />
Manager Operations: Rakesh Upadhyay<br />
Asst. Manager - Logistics: Vijay Menon<br />
Executive Logistics: Nilesh Shiravadekar<br />
Logistics: MP Singh & Mohd. Ansari<br />
OFFICE ADDRESS<br />
9.9 Group Pvt. Ltd.<br />
(Formerly known as Nine Dot Nine Mediaworx Pvt. Ltd.)<br />
<strong>12</strong>1, Patparganj, Mayur Vihar, Phase - I<br />
Near Mandir Masjid, Delhi-110091<br />
Published, Printed and Owned by 9.9 Group Pvt. Ltd.<br />
(Formerly known as Nine Dot Nine Mediaworx Pvt. Ltd.)<br />
Published and printed on their behalf by<br />
Vikas Gupta. Published at <strong>12</strong>1, Patparganj,<br />
Mayur Vihar, Phase - I, Near Mandir Masjid, Delhi-110091,<br />
India. Printed at Tara Art Printers Pvt Ltd., A-46-47, Sector-5,<br />
NOIDA (U.P.) 201301.<br />
Editor: Vikas Gupta<br />
<strong>March</strong> <strong>2018</strong> | <strong>CIO</strong>&<strong>LEADER</strong><br />
3
around<br />
thetech<br />
WHAT<br />
<strong>CIO</strong>s ARE<br />
TIRED OF<br />
HEARING...<br />
“<strong>CIO</strong>s lack<br />
the strategic<br />
vision to see the<br />
big picture.”<br />
<strong>LEADER</strong>SHIP<br />
<strong>CIO</strong>s think of themselves<br />
as technology visionaries<br />
In a recent Global C-suite Study, IBM<br />
interviewed over 2,100 <strong>CIO</strong>s to better<br />
understand how the <strong>CIO</strong> function<br />
is evolving. The study reveals that<br />
<strong>CIO</strong>s have long moved beyond the<br />
original intention of the “I” in their<br />
title – Information – to a myriad<br />
of other foci. The new-age <strong>CIO</strong> is<br />
doing everything from helping to<br />
drive business strategy to enabling<br />
the creation of new products and<br />
services, to improving the customer<br />
experience and empowering their<br />
organizations.<br />
Interestingly, the critical issues <strong>CIO</strong>s<br />
used to face have changed over the<br />
years. The number of <strong>CIO</strong>s earlier<br />
were pressured to transform their<br />
organizations wasn’t that high, but<br />
there was a significant gap between<br />
<strong>CIO</strong>s’ responses and those of the rest<br />
of the C-suite.<br />
<strong>CIO</strong>s see themselves today as<br />
technology visionaries (24%) and<br />
transformational business leaders<br />
(21%). These are the foundational<br />
competencies of the contemporary<br />
<strong>CIO</strong>. Some continue to play more<br />
traditional roles – IT coordinator and<br />
manager (13%) and trusted business<br />
advisor (<strong>12</strong> %).<br />
In the next two to three<br />
years, <strong>CIO</strong>s see the job<br />
shifting to areas much<br />
closer to the business. "The<br />
roles of transformational<br />
business leader and<br />
technology visionary<br />
still top the list, but<br />
IT coordinator<br />
and manager<br />
has dropped<br />
significantly," notes<br />
the study.<br />
4 <strong>CIO</strong>&<strong>LEADER</strong> | <strong>March</strong> <strong>2018</strong>
Around The Tech<br />
BY THE BOOK<br />
The most driven leaders are those who<br />
dare to be their true-selves. Have you<br />
ever attempted that at the workplace? In<br />
a business world that is so competitive<br />
and uncertain, how do you interact with<br />
other people more authentically to tap<br />
into their illusive want?<br />
Brave Leadership by Kimberly Davis<br />
is the essential guide for leaders in<br />
today's ever-shifting world. Wherever<br />
you are in your leadership journey—<br />
new, seasoned, young, or old—if you<br />
aspire to be the best leader you can be,<br />
then this book is for you. It gives you<br />
perspective into overcoming barriers to<br />
become brave, learn to manage stress<br />
and anxiety, and prepare for highstakes<br />
meetings and conversations<br />
Do you have the influence you want<br />
to have? Are you able to set the direction<br />
of your career, connect powerfully,<br />
and feel more confident, courageous,<br />
satisfied, and purposeful? This book<br />
promises to help you tap into the want<br />
of the people you lead to get the results<br />
you need.<br />
This alluring and inspiring book<br />
bridges traditional business how-to<br />
with a personal development approach<br />
to demystify what it takes to be the<br />
brave leader you were born to be.<br />
makingheadlines<br />
#DeleteFacebook hashtag has been doing the rounds on Twitter. As if to add<br />
insult to the injury, users are now deleting their Facebook accounts. Tesla's<br />
CEO, Elon Musk is the latest to join the bandwagon. He deleted his verified<br />
Facebook pages for SpaceX and Tesla.<br />
However, the #DeleteFacebook issue is a bit of a deja vu moment for the company,<br />
which has been embroiled in a series of controversies for the last decade.<br />
Almost eight years ago, an online event christened 'Quit Facebook Day' was<br />
started by a group of dissatisfied Facebook users. The reason was identical -<br />
most users were concerned about their data's privacy. The boycott was a major<br />
flop after just over 30,000 of the site's 500 million users deleted their Facebook<br />
accounts.<br />
As more users get conscious about privacy, the more bad news it will be for online<br />
businesses such as Facebook. Will <strong>2018</strong> serve as an end of the road for Facebook?<br />
Iceland is a tiny country, with a population of 336,483.<br />
But it is a heavyweight in gender equality. It has had<br />
the closest gender gap of any country for nine years<br />
in a row. According to European Union data, Iceland<br />
is the world leader at including women in the labour<br />
force: Participation was over 80% in 2017. Since the<br />
1970s, more and more Icelandic women have entered<br />
the workforce, thanks to several political decisions,<br />
such as a legal right for parents to return to their job<br />
after childbirth.<br />
Iceland has had an equal pay law in effect since<br />
1961. However, the icing on the cake was when the<br />
Iceland Parliament in January this year, banned pay<br />
discrimination in the workplace. In 2017, the then government<br />
of Iceland made this standard not a voluntary<br />
one. Every company with 25 or more employees needs<br />
to undergo audit to using the standard to prove that<br />
they are actually not discriminating in the workplace<br />
against men and women.<br />
gender<br />
bender<br />
<strong>March</strong> <strong>2018</strong> | <strong>CIO</strong>&<strong>LEADER</strong><br />
5
Around The Tech<br />
AUTO-NOMOUS<br />
matter of<br />
twitter<br />
Sixty-three percent of consumers are more likely to ride in an<br />
autonomous vehicle if it was offered by a brand they trust, a Deloitte<br />
survey has confirmed. Brand trust, however, is becoming more<br />
important, the type of company consumers would most trust to bring<br />
fully self-driving technology to market has not changed over last<br />
year. Consumers in Japan, Germany, and the United States still favor<br />
traditional vehicle manufacturers; this is in contrast to consumers in<br />
South Korea, India, and China, who would most favor new autonomous<br />
vehicle manufacturers or existing tech companies.<br />
So how do you make consumers feel more comfortable riding in<br />
self-driving vehicles? Deloitte reports that over 71% of US consumers<br />
fell that they would be more likely to ride in an autonomous<br />
vehicle if it had an established safety record (up from 68% last<br />
year). Howver, it only takes one negative incident to destroy much<br />
of the goodwill, faith, and interest built up around these long-term<br />
R&D experiments.<br />
VITAL<br />
STATISTICS<br />
Hit by<br />
ransomware,<br />
by country<br />
India<br />
Mexico<br />
U.S.<br />
Canada<br />
South Africa<br />
Germany<br />
France<br />
Australia<br />
U.K.<br />
Japan<br />
Hit by ransomware, by country<br />
48%<br />
48%<br />
45%<br />
41%<br />
54%<br />
51%<br />
67%<br />
65%<br />
60%<br />
59%<br />
% of<br />
organizations hit<br />
by ransomware<br />
in the previous<br />
<strong>12</strong> months<br />
Source: Sophos’ The State of Endpoint Security Today<br />
6 <strong>CIO</strong>&<strong>LEADER</strong> | <strong>March</strong> <strong>2018</strong>
Around The Tech<br />
And the award for<br />
THE BEST WORKPLACE IN INDIA<br />
goes to…<br />
#1<br />
#2<br />
#3<br />
#4<br />
#5<br />
As competition for jobseekers intensifies,<br />
Linkedin’s <strong>2018</strong> Top Companies report<br />
haw actively deployed employee-first<br />
strategies such as flexible hours, a good<br />
parental leave policy, and time-off to do<br />
more than work. Some of the emerging<br />
themes this year are:<br />
• Unconventional hiring methods: The<br />
top companies in India are looking<br />
beyond the grades and college rankings<br />
to recruit new talent. Directi (#1) cherrypicks<br />
talent using unconventional<br />
techniques such as case studies, tasks<br />
like app development and solving the<br />
Rubik’s cube.<br />
• Flexibility first: With job seekers<br />
increasingly demanding a work-life balance,<br />
these top companies have chalked<br />
out flexible parental leave policies and<br />
programs for planned time-off to recuperate<br />
or even pick up a new hobby.<br />
Amazon (#4) has a R<strong>amp</strong> Back program<br />
that offers new parents eight weeks of<br />
flexibility and partial work hours, so<br />
they can acclimatize to their new schedules.<br />
At McKinsey & Company (#6),<br />
under ‘Take Time’, employees can take<br />
five to 10 extra weeks off to pursue their<br />
passion – get a pilot’s licence, write a<br />
book – or attend to family matters.<br />
• Wellness at work: Wellness and fitness<br />
facilities continue to be the top draw for<br />
employees while choosing a company<br />
to work for. Alphabet (#7) is known for<br />
its gourmet meals, fitness facilities, and<br />
on-site childcare services, whereas Ola<br />
has on offer multiple clubs for activities<br />
ranging from music to sports — where<br />
employees can mingle with other teams.<br />
• Democratizing power: From office interiors<br />
to policy creation, top companies<br />
are ensuring its employees have a say in<br />
how things are done. For instance, PwC's<br />
NextGen Sounding Board comprises<br />
200 millennial employees who participate<br />
in policy creation for the company.<br />
All new and revised people policies are<br />
first taken to this group.<br />
• Learn to lead: The top companies have<br />
made in talent growth and development<br />
an in-house responsibility. EY (#9) last<br />
year rolled out a program called EY<br />
Badges that allows employees to earn<br />
digital certificates for skills like artificial<br />
intelligence, data science and data<br />
visualization. MakeMyTrip (#18) offers<br />
a bevy of free courses for its employees,<br />
ranging from customized behavioral<br />
programmes to study tours to Europe<br />
and Southeast Asia.<br />
<strong>March</strong> <strong>2018</strong> | <strong>CIO</strong>&<strong>LEADER</strong><br />
7
COLUMN<br />
By Anshul Rai<br />
Why New Age<br />
BI Systems Are<br />
Better Than<br />
Traditional<br />
MIS?<br />
How new-age BI systems can create<br />
value for Indian businesses<br />
T<br />
The author is the CEO and Co-founder<br />
of Happay, a business management<br />
company that caters to various business<br />
spends; the article was first published in<br />
cfo-india.in, our sister website<br />
The role of today’s CFO extends way<br />
beyond the mandate of traditional<br />
financial management into more<br />
strategic areas of business. The new<br />
responsibilities make it crucial for<br />
CFOs to have meaningful data at their<br />
fingertips to support and develop strategic<br />
business initiatives.<br />
However, the problem is with getting<br />
the right data, in the right format<br />
and at the right time. Traditional MIS<br />
systems, especially those used for revenue<br />
and expense reporting, are saddled<br />
with inaccuracy, inconsistency<br />
and unmanageable complexity.<br />
The way the data is collected, stored,<br />
compiled and presented to CFOs<br />
makes it unfit for analysis and decision-making.<br />
For department heads and finance<br />
teams, data management is an arduous<br />
and time-consuming process.<br />
Why is this the case?<br />
1. The data extracted from<br />
the traditional MIS systems<br />
is aggregate data.<br />
In any organization, department or<br />
product heads are given budgets at the<br />
start of every month or quarter, and<br />
their performance is gauged against<br />
this budget. To view their individual<br />
performance against budgets, department<br />
heads resort to the canned<br />
reports from the General Ledger (GL)<br />
generated by the finance teams. They<br />
view the report data, look for variances<br />
and take corrective measures to<br />
eliminate cost overruns and maximize<br />
budget efficiency.<br />
Seems pretty straightforward till<br />
this point, doesn’t it? Well, it’s not,<br />
especially when there are deviations<br />
in data. Aggregate data is not enough<br />
to understand the root cause of budget<br />
deviations.<br />
The GL reports show aggregate<br />
data for spends vs. budget. This<br />
data output has none of the rich<br />
transaction details that are necessary<br />
for investigating the root causes that<br />
trigger a budget deviation or an unexpected<br />
increase in a particular expense<br />
category.<br />
8 <strong>CIO</strong>&<strong>LEADER</strong> | <strong>March</strong> <strong>2018</strong>
Column<br />
In this case, the departmental managers<br />
go back to the finance teams for<br />
the underlying details behind the GL<br />
data — the individual transactions<br />
that caused them to exceed their budget.<br />
This triggers a spurt of activity<br />
within the finance department, causing<br />
workload to shoot up immediately<br />
during the month or quarter end.<br />
The finance departments run additional<br />
reports to find out the required<br />
information for managers. The process<br />
doesn’t stop there. The departmental<br />
heads often have questions on the new<br />
reports generated. Once they receive<br />
the answers, they have follow-up questions<br />
and the cycle continues. It sometimes<br />
takes weeks for the issue to get<br />
resolved satisfactorily from both ends.<br />
2. The data is stored in<br />
multiple systems managed<br />
by different teams.<br />
The GL summary report contains<br />
transaction data that is extracted from<br />
different systems like HRM & Payroll,<br />
Accounts Payable and Inventory Management<br />
– each of them managed by<br />
different teams.<br />
People other than finance also gets<br />
tasked with requests for data extracts.<br />
This makes the entire process even<br />
more complex and time-consuming.<br />
No wonder it takes weeks on end to<br />
solve one issue.<br />
3. The data does not<br />
facilitate easy comparison<br />
of different departments or<br />
cost centers.<br />
The reports generated by the finance<br />
department for comparison are<br />
income statements and balance sheets.<br />
They show profits against losses and<br />
performance vs. budget for an individual<br />
manager, department or product<br />
and are definitely useful.<br />
So what is the way out for<br />
CFOs and finance teams?<br />
Alternative #1: Replace their legacy<br />
GL system.<br />
One way is to replace their current GL<br />
system with the latest ERP or accounting<br />
software. However, this might<br />
involve substantial cost and resource<br />
commitment.<br />
Alternative #2: Adopt a self-service,<br />
business intelligence system.<br />
A smarter way out is to adopt selfservice,<br />
business intelligence (BI)<br />
systems that give CFOs the analytics<br />
they need while leaving their existing<br />
GL in place.<br />
Let us look at how<br />
automated BI tools provide<br />
their users an edge over<br />
traditional MIS:<br />
Consistent, secure and error-free<br />
reports: Rather than generate aggregate<br />
reports, BI solutions help finance<br />
teams generate role-specific reports.<br />
Such reports enable managers to<br />
easily view revenues and spends of<br />
their direct reportees or their area<br />
of responsibility. Finance teams can<br />
enable managers to view these reports<br />
via web-based dashboards, rather<br />
than sending the reports via email<br />
in the form of spreadsheets. Emailing<br />
reports can expose the company’s<br />
financial data to unauthorized<br />
individuals.<br />
Spreadsheets can be easily altered<br />
and the resulting conflicting data takes<br />
weeks to investigate and reconcile.<br />
BI systems help managers view the<br />
reports they need in the most secure<br />
environment.<br />
BI systems also help finance teams<br />
automate the data-reporting process.<br />
Finance representatives can set rules<br />
and alerts within the system to notify<br />
managers of budget overruns and help<br />
them take action immediately.<br />
All data on one system: BI systems<br />
easily integrate with other systems<br />
like accounts payables, inventory<br />
management and payroll. Such integrations<br />
help finance teams to map GL<br />
codes with transactional data, invoices,<br />
purchase orders, etc. What was initially<br />
stored in a maze of spreadsheets<br />
cannot be brought onto the same platform<br />
and viewed together with a click<br />
of a button.<br />
Easy comparison: BI tools make<br />
comparisons across departments,<br />
across different data types and across<br />
different users easier to access as<br />
well as to visualize. Apart from<br />
addressing the key gaps of traditional<br />
MIS, BI systems help finance teams<br />
gain a lot more.<br />
Centralized visibility and accountability:<br />
Since departmental managers<br />
can easily identify budget variances<br />
and the underlying reasons behind<br />
them, they can manage expenses in<br />
a better way. They can spend more<br />
time understanding what triggers<br />
budget overruns, rather than running<br />
behind finance teams asking<br />
for details behind the aggregate summaries.<br />
They also have centralized<br />
visibility over all data and can take<br />
decisions in a prompt and efficient<br />
manner.<br />
More efficient work allocation:<br />
A significant amount of time and<br />
effort of finance teams goes into backtracking<br />
bugs, errors and outliers in<br />
the data and reporting them back to<br />
the department that pointed them out.<br />
BI tools eliminate these low-value,<br />
cumbersome tasks, allowing finance to<br />
focus on core job responsibilities, such<br />
as identifying new revenue generating<br />
opportunities or mitigating risks.<br />
Powerful feedback tool: BI systems<br />
can serve as a good coaching and feedback<br />
tools for management since they<br />
facilitate easy peer-to-peer comparisons.<br />
With access to the comparison data,<br />
VPs and directors can evaluate performance<br />
of different managers, understand<br />
why certain managers are able<br />
to meet budgets and help the ones who<br />
don’t create more realistic budgets and<br />
decrease their budget overruns.<br />
As big data and analytics become<br />
a priority, CFOs have to be prepared<br />
to take strides forward and bag the<br />
best business intelligence systems for<br />
their companies<br />
<strong>March</strong> <strong>2018</strong> | <strong>CIO</strong>&<strong>LEADER</strong><br />
9
COLUMN<br />
By Rahul Kumar<br />
Securing The<br />
Digital Supply<br />
Chain<br />
It is a favored arena for malicious actors<br />
to plant malware, to devastating effect<br />
D<br />
Authored article by Rahul Kumar,<br />
Country Manager, WinMagic<br />
Ensuring a secure supply chain is a necessary<br />
precondition in today’s world of<br />
commerce. The digital supply chain has<br />
emerged as the weakest link for the potential<br />
insertion of malware backdoors. Governments<br />
and industry are just getting<br />
around to addressing the various concerns<br />
relating to supply-chain security.<br />
When it comes to data security challenges,<br />
human and technological influences<br />
can be amongst the most difficult<br />
to manage, seriously exacerbating cyber<br />
risk to IT-enabled supply chain management<br />
(SCM). It is quite common to find<br />
SCM software running on top of business<br />
software, exposing organisations to<br />
myriad risks and attacks. In fact, digital<br />
supply chain risks keep evolving with<br />
technological advancements and there is<br />
no end in sight for a definitive solution to<br />
address them. Merely determining the<br />
authenticity of various hardware, firmware<br />
and software components does not<br />
guarantee a secure system.<br />
80% of data breaches<br />
begin here<br />
It is common knowledge that most of the<br />
companies do not have full visibility into<br />
their supply chain. In fact, the potential<br />
risk exposure of a company increases<br />
with the number of unmanaged suppliers.<br />
It is quite normal for even a midsized<br />
firm to be part of a complex web<br />
of global inter-dependencies that are<br />
driving synchronized commerce today.<br />
Technological disruption has made the<br />
digital supply chain the prime source of<br />
risks, although there are several other<br />
ways that an organization could suffer a<br />
compromise leading to information theft<br />
or a service outage.<br />
With organizations relying on software<br />
and services from third-party providers,<br />
the risk of exposure to cybercrime gets<br />
only higher and supply chain disruptions<br />
are becoming costlier. It is estimated that<br />
80% of all information breaches originate<br />
in the supply chain, with manufacturers<br />
facing the brunt of all attacks—mostly<br />
from unplanned IT or communication<br />
outage, followed by cyberattacks and<br />
data breaches. The digital supply chain<br />
is also the favored arena for malicious<br />
10 <strong>CIO</strong>&<strong>LEADER</strong> | <strong>March</strong> <strong>2018</strong>
Column<br />
The continued<br />
ascendency of<br />
supply chain risks<br />
has led to the<br />
evolution of new<br />
risk management<br />
approaches,<br />
focusing on<br />
cybersecurity<br />
practices<br />
actors to plant malware, to devastating<br />
effect. Remember what happened<br />
when several Chrome extensions<br />
were compromised? It resulted in<br />
hijacking of traffic and exposing users<br />
to potentially malicious popups and<br />
credential theft.<br />
Risks exist at every stage<br />
Cyber supply chain risks may originate<br />
at the suppliers’ end (inclusion of<br />
unwanted functionality, data or network<br />
breaches, insider threats); at the<br />
place of business operation (data theft<br />
or alteration of data, insertion of malicious<br />
software and hardware, outages,<br />
etc.); or at the distribution end (theft,<br />
t<strong>amp</strong>ering, counterfeiting, etc.). Many<br />
functions, departments and roles in an<br />
organisation own the risks affecting<br />
supply chain security. Risk blind spots<br />
in the supply chain occur only when<br />
little or no communication or cooperation<br />
takes place—both inside and outside<br />
of an organization.<br />
It is, therefore, important to formulate<br />
a strategy for end-to-end risk<br />
management in the supply chain,<br />
ensuring its integrity, security, and<br />
resilience. A successful strategy<br />
should outline ways to secure the<br />
organization and its dependencies,<br />
covering all tiers in the chain. The<br />
continued ascendancy of supply chain<br />
risks has led to the evolution of new<br />
risk management approaches, which<br />
focus on existing cybersecurity and<br />
supply chain practices for building an<br />
effective digital supply-chain.<br />
By identifying vulnerable systems<br />
and components, businesses can formulate<br />
risk mitigation measures that<br />
are cost-effective and efficient. Organisations<br />
can keep information assets<br />
secure by adopting and applying standards<br />
such as ISO 27000 and 31000,<br />
and recommending the same to all<br />
the players in the supply chain. This<br />
would require the implementation<br />
of technology and process upgrades,<br />
encryption, access policies, intrusion<br />
prevention systems, and other key<br />
best practices. It also makes sense to<br />
have a core group of risk owners collaborate<br />
on administrative and operational<br />
affairs, which also have a direct<br />
or indirect bearing on supply chain<br />
security. For instance, it is particularly<br />
important to immediately communicate<br />
any personnel changes to supply<br />
chain partners so that account profiles<br />
can be updated.<br />
Businesses can change for the better<br />
when they realize that the cyber-security<br />
of any one organisation within<br />
the chain is only as strong as that of<br />
the weakest member. With information<br />
and security practices shared<br />
across a supply chain, continued<br />
effort on the part of all stakeholders<br />
can convert their weakest link into<br />
an asset. Encryption of data and endpoint<br />
devices provides the last line<br />
of defense in a digital supply chain.<br />
Of what use is the best technology or<br />
practice if an organization’s staff or<br />
those in supplier organizations still<br />
are fooled by phishing attacks? Just<br />
one misplaced click could affect millions<br />
of consumers, bring down the<br />
organization’s reputation, impact<br />
revenues, and even risk business<br />
continuity. Securing data and devices<br />
with encryption across the enterprise<br />
and supply chain networks is a great<br />
means of protecting the enterprise<br />
against attacks, threats, and other<br />
risks—whether malicious or<br />
unintentional<br />
https://www.rsaconference.com/writable/presentations/<br />
file_upload/grcw03_integrating_cybersecurity_into_<br />
supply_chain_risk_management.pdf<br />
https://www.proofpoint.com/us/threat-insight/post/threatactor-goes-chrome-extension-hijacking-spree<br />
<strong>March</strong> <strong>2018</strong> | <strong>CIO</strong>&<strong>LEADER</strong><br />
11
Cover Story<br />
Decoding<br />
Digital<br />
Transformation<br />
India, Circa <strong>2018</strong><br />
What the journeys of selected businesses in three of India's top<br />
business groups, Tata, Mahindra&Mahindra & Vedanta/Sterlite, tell<br />
us about big transformation<br />
By Shyamanuja Das<br />
<strong>12</strong> <strong>CIO</strong>&<strong>LEADER</strong> | <strong>March</strong> <strong>2018</strong>
Cover Story<br />
transform. verb trans•form \ tran(t)s-ˈfȯrm \<br />
a: to change in composition or structure<br />
b: to change the outward form or appearance of<br />
c: to change in character or condition<br />
transformation. noun trans•for•ma•tion \ ˌtran(t)s-fər-<br />
ˈmā-shən , -fȯr- an act, process, or instance of transforming<br />
or being transformed<br />
First things first. Why another story on digital<br />
transformation?<br />
After all, isn’t it the most used (abuse is also a use)<br />
catch-phrase of our times? Don’t all vendors—selling<br />
connectivity to anti-virus and all things in between—<br />
promise to enable, nay ‘power’ your digital transformation<br />
journey, adding their bit of definition of ‘real’<br />
digital transformation?<br />
That is the very reason this story was<br />
conceptualized.<br />
Paradoxical as it may sound, but this continuous<br />
sermonizing on transformation—coming right from<br />
global think tanks to your local recruitment agency—<br />
inspired us to look beyond those gems of wisdom<br />
and get to the bottom of it, asking a simple question.<br />
What exactly is happening in India as far as digital<br />
transformation is concerned?<br />
However, that sounded fairly large in scope for us<br />
to handle. We further trimmed it down to focus only<br />
on core sectors—where the need for big scale transformation<br />
is more acute.<br />
To ensure that we get into the depth, we decided<br />
to cut down on the breadth. We decided to restrict<br />
ourselves to just three of the large business groups in<br />
India who are strong players in businesses that have<br />
crying needs for technology-enabled transformation.<br />
Those groups are Tata, Mahindra&Mahindra &<br />
Vedanta/Sterlite—three of the largest, most forwardlooking<br />
organizations who have strong play in businesses<br />
that need significant transformation.<br />
How we selected these three is also fascinating.<br />
This writer was working on a story on India’s chief<br />
digital officers/heads of transformation. Keeping<br />
out too small companies and those for whom digital<br />
is a line of business (such as online media, agencies<br />
etc), we figured out that India has just a little over 40<br />
such designated people.<br />
More than a third of them work for one of<br />
these groups.<br />
What it means is not only are these companies<br />
serious about their transformation journey, they are<br />
a good representative s<strong>amp</strong>le to study if one wants to<br />
understand the course that digital transformation is<br />
taking in India.<br />
Within these groups too, we selected only those<br />
businesses that have a dire need for transformation.<br />
So, instead of a TCS or a Mahindra Holidays, we<br />
wanted to focus on the journeys at Tata Steel, a large<br />
manufacturing company and Mahindra Finance,<br />
which primarily operates in rural areas of India.<br />
What you will get from this story are a set of<br />
observations—occasionally pieces of wisdom too,<br />
but from the practitioners directly—and analysis<br />
based on those observations.<br />
Much like the digital transformationists themselves,<br />
we have taken a bottom-up approach, in sharp<br />
contrast to the ‘framework approach’ you have listened<br />
largely so far. So, we have spoken to the heads of<br />
transformations at these companies to understand the<br />
journey. Roughly, this is what you will get<br />
<strong>March</strong> <strong>2018</strong> | <strong>CIO</strong>&<strong>LEADER</strong><br />
13
Cover Story<br />
• Why digital transformation?<br />
• What are the specific outcomes<br />
they are looking for?<br />
• What are the models of carrying it<br />
out?<br />
• How is tech impacting it?<br />
• And finally, the learning from all<br />
this: What does digital transformation<br />
entail?<br />
One big piece is missing—what<br />
have they achieved? We realized it is<br />
still too soon; you may notice glimpses<br />
of it in the story, however.<br />
One danger, though, is that a bottom-up<br />
study could tend to become a<br />
blind-men-and-elephant proposition.<br />
Being sensitized to that, we will not<br />
draw a model transformation dos-anddon’ts<br />
but will present common observations<br />
and their stories individually<br />
too, so that you can apply your filter<br />
on what is relevant for you and what<br />
is not.<br />
We will be tangible, and specific, as<br />
much as possible.<br />
Applying<br />
technology to business<br />
needs has been done<br />
since ever…but what is<br />
happening today is –<br />
you can impact all the<br />
three layers, strategy,<br />
product and processes<br />
which was not possible<br />
earlier.<br />
Sarajit Jha, Chief Digital Value<br />
Accelerator, Tata Steel<br />
Last point…this story is not a status<br />
report on digital transformation in<br />
India…e.g it does not even get into the<br />
macro picture. It means you will not<br />
find what is the percentage of companies<br />
that have chosen the path. It seeks<br />
to find what digital transformation<br />
means, from a micro perspective.<br />
The Imperatives<br />
Why was this transformation necessary?<br />
And how is this round different<br />
from the past changes? After all,<br />
changing business processes is something<br />
businesses are not trying out for<br />
the first time!<br />
“Applying technology to business<br />
needs has been done since ever…but<br />
what is happening today is – you can<br />
impact all the three layers, strategy,<br />
product and processes today which<br />
was not possible earlier,” says Sarajit<br />
Jha, Chief, Digital Value Acceleration<br />
at Tata Steel, one of the largest manufacturing<br />
companies in India and a<br />
leading steel company globally<br />
Newer companies are, of course,<br />
in better positions to take full advantage<br />
of the new regime. And they are<br />
disrupting age-old business models.<br />
Earlier, an aggressive new challenger<br />
would look at taking away your market<br />
share; now, it can make your business<br />
irrelevant.<br />
Adds Jha, “You rework your products/processes/strategy<br />
to remain<br />
relevant. If you don’t, there is a<br />
large price to be paid. “Yesterday, it<br />
was excellence that was driving the<br />
change; today, it is survival.”<br />
These are the companies that have<br />
taken a proactive stance to be on top of<br />
that change, rather than being pushed<br />
to act.<br />
That is what Dr Anand Agarwal,<br />
CEO, Sterlite Tech says quite unequivocally.<br />
“We are dealing with telecom companies,<br />
social media companies, cities.<br />
And we see each of them is itching to<br />
transform—to become significantly<br />
different from what they are,” he says.<br />
“We clearly realized that if we<br />
Why Digital<br />
Transformation<br />
in a<br />
nutshell<br />
1. New digital technologies have gone<br />
beyond information flows and are<br />
now impacting hitherto untouched<br />
areas in business: manufacturing on<br />
one hand and decision making on the<br />
other—in the process not just creating<br />
tremendous low hanging fruits which<br />
are acting as hooks for companies<br />
but also blurring the boundaries<br />
between these layers in a business<br />
2. Newer challengers are in a better<br />
position to take advantage of this<br />
new proposition and are creating<br />
alternate business models (like<br />
platform-based businesses) that are<br />
shaking established models. The<br />
large companies need to transform to<br />
effectively thwart this challenge. It is<br />
a question of survival.<br />
3. The global economy becoming<br />
increasingly collaborative and<br />
connected; it is difficult to remain<br />
isolated. Some have decided to be<br />
more proactive than others.<br />
4. Rapid penetration of digital<br />
technologies among consumers is<br />
increasing expectation to be served<br />
across digital channels (even more<br />
important in a demographically<br />
young country like India.<br />
need to continue to be relevant in this<br />
ecosystem, for us to rapidly transform<br />
and create a lead and enable our<br />
ecosystem to transform is an obvious<br />
requirement. We have to transform<br />
and we have to drive this transformation<br />
that is taking place,” he adds.<br />
Sterlite itself is changing its positioning<br />
from a cable manufacturer to<br />
an integrated telecom products and<br />
services company rapidly.<br />
“To enable external transformation,<br />
we have to do a lot of internal transformation.<br />
And that is what we are driving,”<br />
he adds.<br />
It was similar environmental<br />
changes that made Mahindra Finance<br />
take up transformation significantly.<br />
The company, that operates in rural<br />
14 <strong>CIO</strong>&<strong>LEADER</strong> | <strong>March</strong> <strong>2018</strong>
Cover Story<br />
India, was finding that the world was<br />
digitalizing and there was need for it<br />
to better customer experience not just<br />
by providing information and interactions<br />
over mobile phone, which by<br />
now has become ubiquitous, but also<br />
by bettering customer experience by<br />
cutting down on decision cycle time.<br />
Clear, measurable<br />
business goals<br />
When survival—of even a market<br />
leader—is threatened, you go back<br />
to the basics. And that is what businesses<br />
are doing with digital transformation—they<br />
are trying to DIRECTLY<br />
impact one of the three fundamental<br />
parameters for any business—growth<br />
(scalability), profitability and sustainability<br />
of that profitable growth.<br />
“It is simple. it was to maintain and<br />
retain our market leadership,” says<br />
Tina Singh, Chief Digital Officer at<br />
Mahindra & Mahindra, pointing to<br />
the desired outcome of the company’s<br />
digital transformation journey.<br />
In Tata Steel, the identification of<br />
digital as the means is a little more<br />
explicit. “By 2020, we need to be an<br />
industry leader in manufacturing in<br />
the use of digital technology,” says Jha<br />
of Tata Steel.<br />
But it does not always have to be<br />
#THEJOURNEY<br />
Mahindra Finance<br />
MAHINDRA GROUP is one that started<br />
the digital journey at the group level when<br />
it hired an SVP, Digital Transformation<br />
in mid-2015. The mandate for Jaspreet<br />
Bindra was to explore how digital can add<br />
value to the business at the group level<br />
and help the individual group companies<br />
kickstart their digital journey.<br />
“My and my small team’s role is to work<br />
with a bunch of companies and chart<br />
out their roadmap,” Bindra had told us in<br />
late 2016. Their mandate is to look for<br />
new technologies and figure out how the<br />
technology can add value to an existing<br />
business or create a new revenue stream.<br />
One of the key technologies they selected<br />
was blockchain. And the group company<br />
that they selected was Mahindra Finance.<br />
And the use case was invoice discounting,<br />
often called bill discounting.<br />
Invoice discounting, the process of<br />
bundling and selling invoices at a<br />
discount, is a major source of working<br />
capital finance for many suppliers. Invoice<br />
discounting processes have traditionally<br />
been difficult, slow and risky, requiring<br />
each party to maintain and manually<br />
update separate ledgers. The application<br />
of blockchain to this process to test how it<br />
works successfully ended in end 2016.<br />
Having tries a cutting-edge technology—<br />
the trial made international headlines—the<br />
expectation was huge. That is when the<br />
current CDO, Tina Singh took charge.<br />
Her immediate task was to set a digital<br />
roadmap to ‘maintain and retain our<br />
market leadership.’<br />
There were three explicit expectations.<br />
1. Streamlining by digitizing processes:<br />
efficiency/turnaround time leading t<br />
better customer experience<br />
2. Being able to use data to make better<br />
decisions; better respond to change<br />
and create new products and services<br />
3. Harness new tech at sector level (four<br />
companies in Mahindra in finance)<br />
complete new models – new revenue<br />
streams<br />
One of the challenges for Mahindra<br />
Finance was absence of a basic digital<br />
infrastructure. The company works<br />
primarily in rural India. In many cases,<br />
the branches had no connectivity; so the<br />
model was that they were working as silos<br />
and taking decisions independently. With<br />
new requirements like Aadhaar, that was<br />
not an option. So, building that is a priority<br />
before anything else can be done.<br />
In terms of customer facing functions,<br />
there was a need to reach out to the<br />
customers using mobile; but being in rural<br />
areas, it had to be done through SMS or<br />
through assisted mobile apps.<br />
At the same time, the company was<br />
trying out cutting-edge technologies like<br />
blockchain.<br />
These three belong to sort of three<br />
different generations. Few good<br />
businesses lack basic ICT infra; that is<br />
very clearly the past. Mobile apps is the<br />
current technology; while blockchain is<br />
clearly a future technology. The company<br />
was doing everything at the same time,<br />
not an easy challenge.<br />
Building the right data architecture is<br />
what the company is doing now. That<br />
means first they must bring all data to<br />
one platform—customer data that the<br />
company has (and that is really unique),<br />
alternate data available about individuals<br />
like that of census data. The next step<br />
is to use publicly available data such<br />
as weather and crop production to<br />
triangulate. And all that data has to be<br />
analyzed using appropriate analytics.<br />
Apart from blockchain which is moving<br />
From PoC to commercial even while<br />
being considered for other use cases,<br />
the company is looking at using AI & ML<br />
algorithms and is working actively with<br />
fintech partners.<br />
After the first phase of automation,<br />
Mahindra Finance wants to go for<br />
Robotics Process Automation.<br />
The approach in Mahindra Group’s digital<br />
transformation is to try doing things such<br />
as data architecture not just at company<br />
level but at the sectoral level. The CDO is<br />
responsible for the sector.<br />
Singh does not have any doubt about<br />
the important role played by Enterprise<br />
IT “We are a small team that works with<br />
Enterprise IT; give them the roadmap. I<br />
cannot do it without enterprise IT”<br />
And this is how she summarizes the<br />
raison d’ etre of the digital team.<br />
“We are creating a new sense of urgency<br />
which will not happen in a business as<br />
usual scenario,” she says.<br />
<strong>March</strong> <strong>2018</strong> | <strong>CIO</strong>&<strong>LEADER</strong><br />
15
Cover Story<br />
#THEJOURNEY<br />
Sterlite Copper<br />
THE STORY digital transformation<br />
journey of Vedanta Resources is not<br />
too old. The company took help of<br />
consultants to figure out if it could drive<br />
transformation but ultimately settled<br />
for hiring internal drivers of digital<br />
transformation.<br />
In June-July 2017, executive search firm<br />
Russel Reynolds helped the group hire<br />
three chief digital officers for its three<br />
business units – Aluminium, Sterlite<br />
Copper and Sesa Goa.<br />
While it is too early to talk about the<br />
journey in past tense, there are some<br />
initiatives that the company, Sterlite<br />
Copper is trying.<br />
“For large manufacturing companies<br />
like ours, the expectations from digital<br />
is around operations, maintenance<br />
and cost. If you reduce operations and<br />
maintenance cost by 10% or production<br />
cost by 5%, it is significant business<br />
value,” says CDO Amitabh Mishra.<br />
So, big efficiency gains are very much<br />
part of its transformation. But it is how<br />
it is planning to achieve that is what tells<br />
its transformation focus.<br />
“You can use digital to improve visibility<br />
of different components of production<br />
cost, such as manufacturing cost,<br />
cost of raw materials, cost of power<br />
and so on. Once you understand what<br />
contributes to cost, you can start<br />
reducing,” says Mishra.<br />
But one of the areas that the company is<br />
trying to leverage digital is in eliminating<br />
fatality. “It is very important to us. Digital<br />
goes a long way in improving health and<br />
safety environment,” says Mishra<br />
The company, where the Head of IT<br />
reports to the CDO, implementing tech<br />
is not a challenge. For the time being,<br />
apart from large scale industrial<br />
automation, the company is looking at<br />
building a data platform that can support<br />
the journey.<br />
eliminate fatality. It is very important<br />
to us,” says Mishra, explaining the<br />
outcomes expected from digital<br />
journey.<br />
Even for Mahindra Finance, CDO<br />
Tina Singh spells out the specific<br />
impact areas. They are:<br />
a. Streamlining by digitizing processes:<br />
efficiency/turnaround time<br />
leading to better customer experience<br />
b. Being able to use data to make better<br />
decisions; better respond to<br />
change and create new products<br />
and services<br />
c. Harness new tech at sector level<br />
(four companies in finance sector)<br />
for complete new models for new<br />
revenue streams<br />
In Sterlite Technologies, which is<br />
going through a change in its positioning<br />
from a product manufacturer to a<br />
solution provider, the person driving<br />
the transformation is not called CDO.<br />
Nischal Gupta, who reports to CEO Dr<br />
Anand Agarwal, is the Chief Transformation<br />
Officer.<br />
a long-term change. In most manufacturing<br />
businesses, for ex<strong>amp</strong>le,<br />
application of digital can bring about<br />
some disruptive efficiency gains to<br />
processes hitherto untouched by IT—<br />
delivering two distinct immediate benefits—the<br />
stated objective of cost and<br />
the unstated (but often an important)<br />
objective of bringing in credibility<br />
of the exercise and buy-in from the<br />
old-timers. The latter could otherwise<br />
become the most daunting task in any<br />
change management program.<br />
In addition to this immediately<br />
delivered benefit, digital enables clear<br />
visibility into areas that had relied on<br />
gut-feel often euphemistically called<br />
‘experience’ of people. By collecting<br />
and analyzing data, digital converts<br />
that to a pure science from guess work.<br />
In short, this is the essential of the<br />
famed industry 4.0 or 4th industrial<br />
revolution.<br />
In Sterlite Copper—a group company<br />
of Vedanta Resources, which has<br />
initiated digital transformation in all<br />
its group companies—huge cost gains<br />
are a stated outcome.<br />
“For large manufacturing companies<br />
like ours, the expectations<br />
from digital is around operations,<br />
maintenance and cost. If you reduce<br />
operations and maintenance cost<br />
by 10% or production cost by 5%, it<br />
is significant business value,” says<br />
Amitabh Mishra, Chief Digital Officer<br />
at Sterlite Copper.<br />
“You can use digital to improve<br />
visibility of different components of<br />
production cost, such as manufacturing<br />
cost, cost of raw materials, cost<br />
of power and so on. Once you understand<br />
what contributes to cost, you<br />
can start reducing,” he adds.<br />
In addition to cost gains, Sterlite<br />
Copper is looking at significant<br />
improvements in “health, safety and<br />
environment. “We want to absolutely<br />
We are dealing with<br />
telecom companies,<br />
social media<br />
companies, cities.<br />
And we see each of<br />
them is itching to<br />
transform—to become<br />
significantly different<br />
from what they are.<br />
Dr Anand P Agarwal, CEO,<br />
Sterlite Tech<br />
16 <strong>CIO</strong>&<strong>LEADER</strong> | <strong>March</strong> <strong>2018</strong>
Cover Story<br />
Desired Outcomes<br />
in a<br />
nutshell<br />
1. Digital transformation is invariably<br />
driven by one or more company-level<br />
strategic goals, which roll into one<br />
or more of the three fundamentals<br />
of business: growth, profitability<br />
and sustainability of that profitable<br />
growth.<br />
2. The specific objectives—and even<br />
the mission statements—sound very<br />
different for companies because<br />
strategic priorities are different for<br />
each company<br />
3. Different companies are at<br />
different stages of journey. For<br />
some manufacturing companies,<br />
the desired outcome is to simply<br />
achieve those cost/efficiency gains<br />
in manufacturing through digital<br />
technology that IT has already<br />
achieved in service functions such as<br />
finance, HR, supply chain etc.<br />
4. For some companies, digital is part<br />
of a larger transformation initiative<br />
5. One commonality is that everyone<br />
agrees at the end, the business gain<br />
(even if it is efficiency) will come from<br />
analyzing data and not just simple<br />
automation of tasks.<br />
Companies<br />
realize that you<br />
cannot transform by<br />
help of an external<br />
consultant without<br />
the commitment of<br />
a full-time employee<br />
driving it.<br />
Amitabh Mishra, Chief Digital<br />
Officer, Sterlite Copper<br />
Obviously, the transformation<br />
agenda for Sterlite Tech is broader and<br />
bigger. It starts with basic automation<br />
of hitherto non-automated processes<br />
to “building a sustainable way of<br />
doing business so that it can scale,” as<br />
Gupta puts it.<br />
Some of the changes needed to<br />
achieve are<br />
• To free up the minds of every leader<br />
to focus on value addition rather<br />
than getting stuck in the business<br />
as usual in the day to day basis<br />
• To enable every leader to speak<br />
freely for desired outcomes<br />
• To have a collaborative goal setting<br />
in the organization rather than a<br />
directive goal setting<br />
• To ‘absorb’ the latest technologies<br />
to leverage them better<br />
• Bringing in a process based<br />
thinking (“don’t postpone problems;<br />
balance the short term and<br />
the long term”)<br />
Choosing the Right Model<br />
Digital transformation is not Newton’s<br />
Law. What I mean to each company<br />
may be very different<br />
“Transformation,” says Nischal<br />
Gupta of Sterlite, “is a customized<br />
recipe for each organization.”<br />
While there is a broad super list<br />
of common ingredients to choose<br />
from, the process of putting them<br />
all together could be very different.<br />
That is because there are so many<br />
business variables—the nature of<br />
business, the size of business, the<br />
starting point in terms of culture, the<br />
starting point in terms of technology,<br />
the outcomes expected…<br />
Hence, the models could vary<br />
significantly.<br />
Tata Steel, for ex<strong>amp</strong>le, looked at<br />
digital transformation as something<br />
that will change the way the company<br />
works. It was not about a quick of<br />
couple of big impact projects in lowhanging<br />
areas. So, it decided to do two<br />
things simultaneously – on one hand,<br />
it slowly changed the DNA of the company<br />
to a digital DNA by a variety of<br />
initiatives and on the other, created<br />
exemplars by trying things out on the<br />
ground. This balanced the short term<br />
and the long term.<br />
And the exemplars were not pilots.<br />
They were full-fledged transformation,<br />
albeit in a section of the business.<br />
On the other hand, Mahindra<br />
Finance had to focus on building basic<br />
technology infrastructure in rural<br />
areas so that processes could be automated.<br />
That was too a company-wide<br />
change like Tata Steel, albeit the actual<br />
tasks were completely different. While<br />
Tata Steel focused right away on<br />
people and culture, Mahindra Finance<br />
had to build some of the fundamental<br />
building blocks.<br />
In Sterlite Technologies, a larger<br />
transformation is underway with specifically<br />
identified components—IT,<br />
data science, process transformation—<br />
<strong>March</strong> <strong>2018</strong> | <strong>CIO</strong>&<strong>LEADER</strong><br />
17
Cover Story<br />
#THEJOURNEY<br />
Tata Steel<br />
TATA STEEL’S digital journey is about<br />
three years old.<br />
It is in early 2015 that Sarajit Jha, who<br />
was running Tata Business Support<br />
Services as its COO moved to Tata Steel<br />
as Chief of Corporate Strategy.<br />
Till 20<strong>12</strong>, Jha had worked in Tata Global<br />
Beverages. Harish Bhatt, the then CEO of<br />
Tata Global Beverages was one of the first<br />
senior executives within Tata Group to talk<br />
about digital.<br />
When Jha moved in, not surprisingly,<br />
there was little awareness about digital<br />
in the company. In May 2015, Tata Steel<br />
formed a digital cross-functional team<br />
of youngsters; the logic was: they know<br />
more about the subject.<br />
In August 2015, the company hired<br />
Accenture as the consultant and started<br />
the first program called Digital Awareness<br />
Program for senior leadership on what<br />
is happening around digital and what is<br />
the potential impact. This was followed<br />
by a program called Digital Immersion<br />
Program which was followed by a<br />
program called Digital Darshan in<br />
January 2016.<br />
In August 2015, it had launched a<br />
reverse mentoring program for which 16<br />
senior people volunteered to be reversementored<br />
by younger employees. This got<br />
a mention by the World Economic Forum.<br />
This was followed by some pilots.<br />
That is when the company decided to<br />
go for a digital exemplar. The Tubes<br />
plant was chosen for that. The idea was<br />
how would a digital company look in<br />
2020. Based on that, identified some 50<br />
dimensions corresponding to 50 projects.<br />
Those were then prioritized based on<br />
feasibility and impact and they were<br />
piloted in an agile fashion.<br />
FAMD (Ferro Alloys and Minerals Division)<br />
followed Tubes as a digital exemplar.<br />
Exactly a year after the first steps<br />
were taken on digital, in May 2016,<br />
the company created the Digital Value<br />
Acceleration team. That is when Jha’s<br />
designation too changed to Chief, Digital<br />
Value Acceleration.<br />
Prioritizing the Objectives<br />
“We knew where the money was.<br />
Upstream was more money than<br />
downstream and some amount in<br />
marketing. We set up small teams to<br />
go and figure out where the money was<br />
and we crafted it into projects,” says Jha<br />
explaining how they prioritized.<br />
The approach helped the company to<br />
channelize the resources better. But<br />
some challenges remain. For ex<strong>amp</strong>le,<br />
the company is now realizing that it<br />
has probably too many point solutions.<br />
Sometimes, the actual value of many of<br />
these projects are not as much as it was<br />
through to be initially.<br />
Keeping Focus<br />
To keep its focus, the company launched<br />
its marquee program, MARVEL (Making<br />
Analytics Real Valuable Efficient and<br />
Logical) in September 2017. It is moving<br />
from MARVEL 1.0 to MARVEL 2.0 shortly.<br />
MARVEL 1.0 has 20-25 algorithms out of<br />
which <strong>12</strong> are close to completion. “The<br />
program should give us close to INR<br />
200-250 crore of value. The company is<br />
creating an analytics centre of excellence<br />
with close to 200 people.<br />
Probed on IoT, Jha explains that it is<br />
part of analytics. “To us, industrial IoT is<br />
the ability to increase, inject intelligence<br />
through the power of sensing into any<br />
discreet mobile or asset people and<br />
process – actually it is a subset of<br />
analytics.”<br />
The company is using MARVEL 2.0<br />
as the umbrella program for digital<br />
transformation.<br />
Making it Tangible<br />
The company uses a filter called SCRIPT—<br />
Scalable, Connected, Rapid, Intelligent,<br />
Personalized, Technology-leveraged—to<br />
decide its agenda. For the company,<br />
anything that is not on SCRIPT is not<br />
digital.<br />
In addition to serving as a filter, it makes<br />
digital transformation more tangible for<br />
everyone.<br />
The company intends to be an industry<br />
leader in manufacturing in the use of<br />
digital technology. The current focus is<br />
to deliver INR 500 corer EBIDTA impact<br />
through digital and establish a value<br />
pipeline of INR 2500 crore.<br />
By 2020, the company intends to be an<br />
industry leader in manufacturing in the<br />
use of digital technology.<br />
being driven by individuals but as<br />
part of a transformation team headed<br />
by a senior executive into which all<br />
these specific functions report to.<br />
Another hotly debated issue when<br />
it comes to models is centralized versus<br />
decentralized models—whether<br />
to drive digital at the group level or at<br />
the individual company level. This is<br />
especially relevant in India (and much<br />
of Asia), because there are large number<br />
of conglomerates with diversified<br />
businesses.<br />
Sudhir Singh Dungarpur, Partner<br />
and Leader Digital at PwC that consults<br />
many Indian conglomerates on<br />
their digital transformation, points<br />
to the model shifting to the decentralized<br />
model.<br />
“In large groups, the Group Chief<br />
Digital Officer role has become more<br />
of a ceremonial position,” he says.<br />
“In a conglomerate, each of the<br />
business is different and it is difficult<br />
to create a centralized strategy.”<br />
“Some of these companies have<br />
already taken quite a few digital initiatives,<br />
while at the group level, it is still<br />
being defined,” says Dungarpur.<br />
Agrees Maneesh Dube, Consultants<br />
at executive search and corporate<br />
advisory group Russel Reynolds,<br />
“Digital transformation is a hands-on<br />
18 <strong>CIO</strong>&<strong>LEADER</strong> | <strong>March</strong> <strong>2018</strong>
Cover Story<br />
Approaches<br />
1. Most companies have a dedicated,<br />
senior person reporting to CEO<br />
driving the change. So, it is not an<br />
extra KRA for some executive.<br />
2. In all cases, there is a team<br />
dedicated to the CDO/Head of<br />
transformation, but it is small.<br />
The idea is to change the way<br />
organization is working and not do<br />
things in a closed lab.<br />
3. There is a clear move towards<br />
decentralized model.<br />
in a<br />
nutshell<br />
4. A consultant can help but cannot<br />
do it for you.<br />
job, not a hands-off one. So, doing it at<br />
group level is fairly difficult.”<br />
The biggest testimony to the<br />
change is from Jaspreet Bindra, one<br />
of the first Group CDOs in India, who<br />
joined as SVP Digital Transformation<br />
at Mahindra & Mahindra way back in<br />
2015 and helped the group companies<br />
in setting up their<br />
own digital teams and<br />
carry some pilots.<br />
“Ultimately, it<br />
has to be done at the<br />
company level,” he<br />
agrees. Though he<br />
refused to confirm it,<br />
sources say he is moving<br />
on from the role.<br />
While Bindra<br />
moves out, Tata<br />
sons appointed<br />
a group CDO,<br />
Aarthi Subramanian,<br />
a business<br />
person with<br />
a tech background,<br />
who comes from TCS, less<br />
than a year back. We could not speak<br />
to her for the story.<br />
Vedanta, the last of the three<br />
groups we cover, despite a having a<br />
mandate at a group level to go for large<br />
scale digital transformation, never<br />
went for a group CDO. It appointed<br />
CDOs for each of the companies,<br />
almost at the same time frame. They<br />
do share some of the best practices<br />
and talk to each other, but work separately,<br />
closely with the respective business<br />
heads.<br />
Another thing that we hear from<br />
mid-sized companies is appointing a<br />
consultant to transform the company<br />
digitally. Larger companies have<br />
already learnt—some of them the<br />
hard way—that that is a impractical<br />
expectation.<br />
“Companies realize that you cannot<br />
transform by help of an external<br />
consultant without the commitment of<br />
a full-time employee driving it,” says<br />
Amitabh Mishra of Sterlite Copper.<br />
In case of Tata Steel, Accenture<br />
was a consultant but an internal<br />
person has been driving it.<br />
Tech First<br />
Tech is to digital transformation<br />
what the mantras are<br />
to a Hindu puja. Without it,<br />
the rest of the components not<br />
possible; that explains why digital<br />
always precedes transformation, notwithstanding<br />
how much pains people<br />
take to explain that it is less about digital<br />
and more about transformation.<br />
In short, these two mantras together<br />
sum up the role of tech in the digital<br />
transformation journey.<br />
Transformation is a<br />
customized recipe for<br />
each organization.<br />
Nischal Gupta,<br />
Chief Transformation Officer,<br />
Sterlite Tech<br />
It (the<br />
objective of digital<br />
transformation) is<br />
simple – to maintain<br />
and retain our market<br />
leadership.<br />
Tina Singh, Chief Digital Officer,<br />
Mahindra Finance<br />
Mantra 1: Do not underestimate the<br />
value of tech<br />
Mantra 2: Do not overestimate the<br />
value of tech<br />
You cannot start with tech; tech<br />
cannot be your ultimate outcome. But<br />
it is the most crucial thing in between.<br />
Let us put it this way. This is not<br />
<strong>March</strong> <strong>2018</strong> | <strong>CIO</strong>&<strong>LEADER</strong><br />
19
Cover Story<br />
Sterlite Technologies<br />
“We have decided to lead the change.”<br />
Dr Anand Agarwal has been heading Sterlite Tech for last one and a half decade. Today, he is driving the change<br />
of the company from a cable and fiber manufacturer to an integrated telecom products and solutions player. He<br />
shares his perspectives on his company’s transformation leveraging digital.<br />
What necessitated the<br />
transformation? And how is it<br />
different from changes that you<br />
have seen/driven earlier?<br />
The thought of course came from<br />
what we are seeing in the overall<br />
marketplace; the opportunity frame<br />
that we have seen around us. We see<br />
the ecosystem around us on the verge<br />
of transformation. We are dealing with<br />
telecom companies, social media<br />
companies, cities. And we see each<br />
of them is itching to transform—to<br />
become significantly different from<br />
what they are.<br />
Transformation is a strong word; it is not<br />
an improvement. It is a transformation<br />
of the revenue and business models of<br />
all our customers. We clearly realized<br />
that if we need to continue to be<br />
relevant in this ecosystem, for us to<br />
rapidly transform and create a lead and<br />
enable our ecosystem to transform is<br />
an obvious requirement. We have to<br />
transform and we have to drive this<br />
transformation that is taking place. You<br />
can either wait for the ecosystem to<br />
transform when you are compelled to<br />
change, or you can transform before the<br />
ecosystem and enable and drive that<br />
transformation. We chose the latter.<br />
What it means is a shift in the offerings<br />
that we do. For ex<strong>amp</strong>le, if I sold a<br />
product, now I am selling the product<br />
as part of a solution enabling the<br />
transformation.<br />
What are the measurables?<br />
For everything, there are clear<br />
measurables. On the external side,<br />
the measurable is how am I able to do<br />
more for my customers at the same<br />
level of cost.<br />
For instance, I am providing my<br />
customer 100 capacity at 100 cost.<br />
Can I provide them 100 capacity at <strong>12</strong>0<br />
You can either wait<br />
for the ecosystem to<br />
transform when you are<br />
compelled to change,<br />
or you can transform<br />
before the ecosystem<br />
and enable and drive that<br />
transformation. We chose<br />
the latter.<br />
cost? For me, it is a revenue increase of<br />
20%; for them, it is doubling their capacity<br />
at 20% extra cost. If I have a manufacturing<br />
plant where 300 different designs are<br />
being churned out, how do I optimize<br />
those designs to 40-50? Same with tome<br />
for RFQs – how can I bring them down<br />
significantly? All these programs have<br />
clear measurables.<br />
One of the key components of the<br />
transformation journey seems to be<br />
data. Your take?<br />
For most of the companies, data is a<br />
byproduct. We are moving data. Our<br />
customers are in the business of carrying<br />
data, storing it and processing it. For us,<br />
hence, the question is a little different.<br />
How do we handle that data—do we keep<br />
it close to the end customer? How fast can<br />
it move between one center to another?<br />
What kind of compression technologies<br />
you must apply?<br />
We are not thinking of creating a new<br />
revenue model from the data; we are<br />
focusing on making these processes—<br />
transporting data, storing data,<br />
processing data—better.<br />
As someone who has been in<br />
manufacturing industry for long,<br />
how do you see the phenomenon<br />
called industry 4.0?<br />
The best thing about all these is that<br />
it has created a sense of urgency in<br />
everyone. Now, people are compelled<br />
to know about it. For me, that is the<br />
big shift. But the danger is people get<br />
fascinated by a tool and say I must<br />
use it. I must do industry 4.0, I must do<br />
blockchain…<br />
For us, it is a natural progression. For<br />
ex<strong>amp</strong>le, the new factories that we are<br />
making now have much more sensing;<br />
much more robotics-enabled material<br />
movement; they have much better<br />
communication channels. It is leading to<br />
better decision making.<br />
But it is all powered by our 25 years of<br />
experience as well.<br />
The tools and the expertise need to<br />
marry. If you use the tool for sake of a<br />
tool, I do not think it is a great thing.<br />
But we have seen companies<br />
coming from nowhere and<br />
shaking markets, just because<br />
the existing leaders did not<br />
change fast enough….<br />
Yes, you need to do both. If you do<br />
not change, you will die. You must be<br />
willing to change, must know about all<br />
the tools available out there but must<br />
have the expertise to use them most<br />
appropriately to create business value<br />
for yourself and your customers.<br />
As I said, it should be a marriage.<br />
And it is that marriage you need<br />
to manage.<br />
20 <strong>CIO</strong>&<strong>LEADER</strong> | <strong>March</strong> <strong>2018</strong>
Cover Story<br />
the first-time businesses are going<br />
through a change. It has happened in<br />
the past, many times. But this time’s<br />
change is not just powered, but to a<br />
great extent, initiated by tech.<br />
When Klaus Schwab talks about<br />
the Fourth Industrial Revolution, he<br />
defines it as the fusion of physical,<br />
digital and biological. So, tech is fundamental<br />
to this round of changes.<br />
The only thing that some experts—<br />
like Sudhir Singh Dungarpur of<br />
PwC—worry about is that much of<br />
the talk in many enterprises are still<br />
focused around tech. That is going to<br />
take you nowhere.<br />
Nischal Gupta, Head of Transformation<br />
at Sterlite Tech, while putting<br />
tech as a major factor, however, clarifies<br />
that it is probably the easiest part<br />
of the entire set of things that you need<br />
to do—starting with culture.<br />
What gives a clue to the importance<br />
of tech is how the lingo has changed.<br />
Earlier tech was being ‘applied’ to<br />
solve business problems, implying<br />
Role of Tech<br />
in a<br />
nutshell<br />
1. The round of change called<br />
digital transformation is initiated by<br />
technology.<br />
2. Tech is very crucial but should not<br />
hijack your digital transformation<br />
discourse—seems to be the most<br />
common message from both<br />
practitioners and advisors<br />
3. There’s a definite shift from an<br />
inside-out to an outside-in approach<br />
in application of technology. You<br />
now need to scan the tech landscape<br />
to proactively figure out what<br />
technologies can potentially add<br />
value to your business<br />
4. AI/ML, IoT, analytics/Big Data<br />
and Blockchain are the technologies<br />
most referred to; usually applied in an<br />
integrated manner<br />
5. However, digital transformation<br />
may need any tech—from basic<br />
process automation to collaborative<br />
tools<br />
you had a business requirement which<br />
tech helped fulfil. Today’s common<br />
phrase is ‘use case’. That implies that<br />
you need to continuously watch technology<br />
landscape to scan for new technologies<br />
that can ‘potentially’ impact<br />
the business and find use cases for<br />
them. This means technology first. To<br />
be sure, this must be part of a broader<br />
transformation journey.<br />
Call it the outside-in regime, as<br />
opposed to the inside-out approach<br />
that we have traditionally seen.<br />
So, what are the specific technologies?<br />
Well, depending on where you<br />
are, it could be any information technology,<br />
starting with basic process<br />
automation but newer technologies<br />
that are specifically referred to in the<br />
context of digital transformation are<br />
the usual suspects: Artificial Intelligence/Machine<br />
Learning, Analytics,<br />
IoT, Blockchain…and they are not<br />
always independent of each other. You<br />
never know where your IoT ends and<br />
analytics begins or machine learning<br />
takes over.<br />
Sarajit Jha of Tata Steel simplifies it.<br />
“You need a very strong sensing layer;<br />
you need a data platform on top of<br />
that; you need analytics and then the<br />
decision on which products you want<br />
to change which is the business layer.”<br />
What does Digital<br />
Transformation entail?<br />
Based on the research, these are<br />
some of the top-level trends that we<br />
could figure out. Some of them may<br />
have been discussed in the above sections<br />
but have been listed here again<br />
because we believe they are important<br />
trends that meaningfully define a contour<br />
of digital transformation in India,<br />
circa <strong>2018</strong>.<br />
1. Digital transformation is<br />
essentially an organizational<br />
change.<br />
In all organizations, digital transformation<br />
is a mandate from the top and<br />
aims to transform the entire organization.<br />
If it does not, it is not digital<br />
In a<br />
conglomerate, each<br />
of the business is<br />
different and it is<br />
difficult to create a<br />
centralized strategy.<br />
Sudhir Singh Dungarpur,<br />
Partner, Digital Services, PwC<br />
transformation. You may find people<br />
holding Chief Digital Officer designation<br />
who focus only on customer<br />
facing aspect (i.e digital marketing,<br />
customer service etc) or technology<br />
(process automation). They do not<br />
drive digital transformation of an<br />
organization. They just drive one digital<br />
initiative. Summary: not all CDOs<br />
drive digital transformation. How is<br />
that for a beginning?<br />
2. Digital transformation rolls back<br />
into basic business metrics.<br />
All outcomes (often integrated into<br />
a mission statement) must have a<br />
direct path into one of the basic business<br />
metric—growth, profit, sustainability—and<br />
hence are measurable.<br />
Of course, there may be intermediate<br />
measures to track progress, but<br />
they are more of milestones than the<br />
destination. For ex<strong>amp</strong>le, in Sterlite<br />
Tech, one of the objectives is to “free<br />
up the minds of every leader to focus<br />
on value addition rather than getting<br />
<strong>March</strong> <strong>2018</strong> | <strong>CIO</strong>&<strong>LEADER</strong><br />
21
Cover Story<br />
stuck in the business as usual in the<br />
day to day basis”—and the objective is<br />
faster growth.<br />
3. Digital transformation typically<br />
follows a cycle.<br />
Typically, digital transformation<br />
components follow a sequential<br />
pattern<br />
a. significant (often disruptive) efficiency<br />
improvement<br />
b. better customer experience<br />
c. newer products/services and<br />
d. better business decision making<br />
leading to agility and scalability.<br />
e. Creating new business models/<br />
platforms and ecosysteme<br />
Often (b) is a direct result of (a)<br />
and sometimes, they are independent<br />
initiatives. In many services firms and<br />
newer companies, the first is already<br />
achieved by It and hence the journey<br />
begins at (b). Usually, (c) and (d) follow<br />
(a) and (b). For large companies—and<br />
not just in India—(e) is often a distant<br />
goalpost. Few have even gone to a<br />
stage where they can start planning<br />
for it seriousy.<br />
4. A top-level dedicated person<br />
must drive digital transformation.<br />
Design thinking<br />
is a must for<br />
organizations.<br />
Jaspreet Bindra, SVP, Digital<br />
Transformation, Mahindra &<br />
Mahindra<br />
That is the current thinking. A digitalization<br />
initiative which delivers<br />
significant value to the company may<br />
be driven by a non-C-level person but<br />
a transformation cannot be achieved<br />
that way. Some argue that the role of<br />
CDO, head transformation is temporary.<br />
The jury is out on that one.<br />
But that debate can wait. The current<br />
thinking is you need a dedicated person.<br />
That is about it. It cannot be an<br />
added KRA for someone.<br />
5. Shifting to the decentralized<br />
model.<br />
In most large conglomerates, the digital<br />
transformation initiatives are at the<br />
individual company level. (See Choosing<br />
the Right Model)<br />
6. It is a culture shift.<br />
“60-70% is actually bringing a culture<br />
shift,” says Nischal Gupta, Head<br />
of transformation of Sterlite Tech.<br />
“Shifting the mindset without replacing<br />
everyone,” is how he explains it.<br />
The Tata Steel journey shows what<br />
it involves – right from branded programs<br />
to reverse mentoring.<br />
7. At the end, it is a change<br />
management.<br />
People, Process, Technology—any<br />
change management has these three<br />
leavers and so has digital transformation.<br />
The prefix digital just emphasizes<br />
the fact that it has been initiated by a<br />
fundamental change in technology’s<br />
capability.
Cover Story<br />
8. It is not enough to do good work;<br />
one must talk about it.<br />
That is a mantra that iconic chairman<br />
of American ICT regulator FCC Reed<br />
Hundt often repeated. Communications<br />
is an important aspect of any<br />
transformation journey and digital<br />
transformation is no exception. Branded<br />
programs do help. Tata Steel had<br />
every aspect of it branded, including<br />
the key program and even filters.<br />
9. Technology’s impact this time is<br />
beyond processes.<br />
Technology has been applied to<br />
achieve dramatic gains in efficiency.<br />
This time, it is impacting changes to<br />
all the three layers, strategy, process<br />
and product.<br />
10. Some technologies are more<br />
equal than others.<br />
Thanks to the buzz around sensing<br />
(IoT) in the context of the Fourth<br />
Industrial Revolution and the sci-fi<br />
kind of stories around AI/Machine<br />
Learning, they may be getting all the<br />
limelight as far as tech is concerned,<br />
but it is the good old cloud model that<br />
started this change becoming a reality<br />
in many ways.<br />
11. It is essentially a game of data.<br />
Take out data out of it—it will look<br />
like another automation exercise.<br />
In manufacturing, for ex<strong>amp</strong>le,<br />
SCADA and other ICT-based systems<br />
in an isolated manner have been there<br />
since long, delivering great functionality.<br />
But now, they feed data into the<br />
enterprise systems and that makes all<br />
the difference. From customer experience<br />
to new efficiency, from better<br />
planning to risk management…it is<br />
data that is crucial to a digital transformation.<br />
Without a solid data<br />
and analytics strategy, digital change<br />
is tactical.<br />
<strong>12</strong>. Design thinking is the emerging<br />
catch phrase.<br />
In the context of digital transformation,<br />
design thinking is emerging as an<br />
essential requirement. Most of the digital<br />
leaders we spoke to mentioned it<br />
either in the context of organizational<br />
requirement or as one of the essential<br />
capabilities of an executive driving<br />
digital transformation.<br />
13. Culture change top challenge,<br />
tech is the easiest.<br />
Almost everyone agrees that culture<br />
shift is the biggest challenge; technology<br />
is the easiest one to tame.<br />
14. Use-case, not application of tech:<br />
the shift to Outside-in.<br />
Traditionally, tech has been applied<br />
to solve an existing business problem/<br />
requirement. In the digital era, where<br />
the transformation is essentially<br />
digital leveraged, it is the other<br />
way around. Look for new tech,<br />
quickly gauge if it has a scope to<br />
make big changes to your business,<br />
articulate that and convince the top<br />
management of the value that it can<br />
add to your business. ‘How’ has a<br />
fancy name: use case. So, in that sense,<br />
it is technology first. You can call it an<br />
outside-in regime. What it also means<br />
is tech becomes one more thing that<br />
any senior executive (not just one<br />
Digital<br />
transformation is a<br />
hands-on job, not a<br />
hands-off one. So,<br />
doing it at group level<br />
is fairly difficult.<br />
Maneesh Dube, Consultant,<br />
Russell Reynolds Associates<br />
person) must follow in a transformed<br />
organization and continuously<br />
think of how it can improve the<br />
company, the function, the business<br />
unit.<br />
15. The role of enterprise IT is<br />
important but rarely does it drive<br />
transformation.<br />
Why do so few <strong>CIO</strong>s drive digital<br />
transformation? This question often<br />
is interpreted as: what do <strong>CIO</strong>s lack?<br />
While the second question can be<br />
answered, that is a smaller reason, if at<br />
all. For ex<strong>amp</strong>le, their way of looking<br />
inside-out: too much focus on problem<br />
solving (the problem must be stated by<br />
someone else) than the ability to draw<br />
on blank canvas. That may be true<br />
to some extent but the big reason is<br />
something else.<br />
That is the unwillingness of the<br />
<strong>CIO</strong>s themselves. Sounds strange.<br />
Here is how it pans out. Most <strong>CIO</strong>s,<br />
who are otherwise quite capable of<br />
driving digital transformation are<br />
denied that opportunity are keen to do<br />
so without giving up their <strong>CIO</strong>’s role,<br />
which includes everything from infrastructure<br />
(the big-budget technology)<br />
to applications.<br />
That is a clear no-no for any<br />
organization serious about digital<br />
transformation. Digital transformation<br />
is not a KRA. It is the singlemost<br />
important initiative for an organization<br />
choosing that path. It cannot<br />
be handled along with data center<br />
rollout.<br />
In some organizations, <strong>CIO</strong>s are<br />
given this designation. They are either<br />
just fancy designation or are in techmature<br />
organizations like IT-ITES or<br />
other B2B services where transformation<br />
is around a specific aspect. More<br />
importantly, culture change is not part<br />
of the transformation journey.<br />
In many organizations (like<br />
most Vedanta companies), the CDOs<br />
are techies but do not directly look<br />
after traditional IT. In Sterlite Copper,<br />
for ex<strong>amp</strong>le, Head of IT reports to<br />
the CDO<br />
<strong>March</strong> <strong>2018</strong> | <strong>CIO</strong>&<strong>LEADER</strong><br />
23
FACE OFF<br />
//SHOULD DIGITAL BUDGET<br />
BE SEPARATE FROM<br />
ENTERPRISE IT BUDGET?<br />
If you keep digital budget as part of<br />
IT budget, there is a high possibility<br />
that it might be reused in some form<br />
that is not digital spend. However,<br />
every executive must understand why<br />
digital budget shouldn't be a part of<br />
enterprise IT budget. Today digital<br />
transformation is not just IT Transformation<br />
– but is made up of business<br />
transformation (BT), IT, culture and IT<br />
security as well. Out of these four, only<br />
two directly concern the IT department.<br />
The other two, BT and culture,<br />
make up digital creation --which may<br />
or may not be IT's responsibility.<br />
Therefore, if companies are to allocate<br />
digital and enterprise IT budgets<br />
separately, it may vary, depending on<br />
the industry, organization, and demographics.<br />
Typically, digital budget is a<br />
measure of the percentage of a company's<br />
IT budget while ideally it should<br />
be of the percentage of revenue of a<br />
company. IT budgets are in tune 0.6%<br />
to 4.2% of the company's ROI, digital<br />
budgets should be at least 50 % of IT<br />
budget if not more or 0.3 to 2.1% of the<br />
company's revenue.<br />
Quick View<br />
Anjani Kumar, Global<br />
CDO, Collabera, says<br />
digital budget should be a<br />
percentage of the revenue of a<br />
company.<br />
Historically, the enterprise<br />
IT budget used to account<br />
for a lot of infrastructure<br />
and a little for applications.<br />
Slowly it has changed.<br />
Today, in many organizations<br />
budget costing for<br />
applications outweighs<br />
infrastructure. Specially<br />
with SaaS subscription,<br />
IT infra gets hidden under<br />
application subscription.<br />
A lot of organizations still<br />
grapple with 30-50% of this<br />
ANJANI<br />
KUMAR<br />
Global CDO,<br />
Collabera<br />
budget being used for IT<br />
operations - keeping the lights on - but<br />
true DT can help optimize the same<br />
over a period of time.<br />
Today, every company embarking<br />
on a DT initiative realizes that digital<br />
tech is more expensive than traditional<br />
technologies. For instance, if your company<br />
wants to invest in any technology,<br />
you must chart a clear roadmap, and<br />
explain how you plan to use the digital<br />
budget and timeline in a manner that<br />
will help realize the ROI. It is because<br />
your business may know how the IT<br />
budget is consumed, but accounting<br />
for digital budget is fairly new to business<br />
execs and finance, and therefore,<br />
the buy-in for such projects can be difficult.<br />
One way to overcome this complexity<br />
is by explaining business how<br />
a small portion of this budget will be<br />
allocated for POC and a working prototype,<br />
and the rest of the budget will<br />
be released only after weighing in the<br />
pros and cons of the initiative.<br />
"Accounting<br />
for digital<br />
budget is<br />
fairly new<br />
to business<br />
execs and<br />
finance"<br />
24 <strong>CIO</strong>&<strong>LEADER</strong> | <strong>March</strong> <strong>2018</strong>
Face Off<br />
ANIL KUMAR<br />
SINGH<br />
Former GM &<br />
<strong>CIO</strong>, KRIBHCO,<br />
Noida<br />
"Keeping<br />
separate<br />
budgets in<br />
the name<br />
of digital is<br />
demanding<br />
extra fund<br />
allocation"<br />
In my view, there is no need to keep<br />
separate budget allocation in the<br />
name of digital.<br />
When we talk about enterprise<br />
IT, we always talk about a larger<br />
frame of IT implementation in any<br />
enterprise IT environment, it is<br />
required to keep business running.<br />
To do that, one need to budget for<br />
all activities —from data preparation<br />
to application development<br />
to users training— and provide<br />
all necessary information relating<br />
to business. We have to understand<br />
the concept of allocating<br />
IT budget. Keeping in view of the<br />
type of business, we prepare the<br />
IT budget based on the business<br />
requirements and business plan of<br />
an enterprise. The company’s management<br />
is only concerned about<br />
their ROI and it is the responsibility<br />
of <strong>CIO</strong> to plan and distribute<br />
the allocated budget into various<br />
activities. There are three types of<br />
transformation to be activated in<br />
any organization:<br />
Digital transformation<br />
IT Ttransformation<br />
Workforce transformation<br />
Enterprise IT transformation<br />
encompasses all of the above. While<br />
considering the business plan of<br />
an enterprise, one should always<br />
consider all three activities in order<br />
to achieve a successful IT implementation.<br />
This means that while<br />
preparing an IT budget, <strong>CIO</strong>s should<br />
always think of an end<br />
to end solution for an enterprise so that<br />
at any stage of implementation - from<br />
data preparation to digital transformation,<br />
security implementation and<br />
users training - it is enough to propel<br />
Quick View<br />
Former General Manager<br />
(Management Services &<br />
<strong>CIO</strong>) - KRIBHCO, says that<br />
no separate budget allocation<br />
is necessary<br />
the business in a stable manner with<br />
the help of adequate IT infrastructure.<br />
Digital transformation is an integral<br />
part of IT transformation. But yes, if<br />
digitization requires more effort, one<br />
can plan accordingly during the implementation<br />
stage. Keeping separate<br />
budgets just in the name of digital is<br />
demanding an extra fund allocation for<br />
IT activities.<br />
The expenditure for digitization and<br />
digital transformation can be met within<br />
your enterprise IT budget, which<br />
must project a clear picture of your<br />
enterprise IT spending across infra,<br />
digital and business as usual. In view of<br />
the above, keep the enterprise IT budget<br />
as a whole and then implement the various<br />
activities in different phases.<br />
<strong>March</strong> <strong>2018</strong> | <strong>CIO</strong>&<strong>LEADER</strong><br />
25
INSIGHT<br />
What Does Hyper-<br />
Consolidation Mean<br />
For Enterprise <strong>CIO</strong>s?<br />
The Rule of Three framework may give some ideas on<br />
what to expect<br />
By <strong>CIO</strong>&Leader<br />
26 <strong>CIO</strong>&<strong>LEADER</strong> | <strong>March</strong> <strong>2018</strong>
Insight<br />
RRecently, market research firm Synergy<br />
Research Group published its<br />
2017 market data for telepresence<br />
market. The specialized research firm<br />
said while the market is showing signs<br />
of revival, two companies—Cisco and<br />
Polycom—together account for 78% of<br />
the market share.<br />
Just a few days prior to this<br />
announcement, Synergy had released<br />
the data for the cloud infrastructure<br />
services market. There too, the top<br />
four—Amazon, Microsoft, IBM and<br />
Google—together hold 60% of the market<br />
share. But the big news is not that;<br />
it is that they are continuously gaining<br />
market share. In Q4 2017, data for<br />
which was released, they have taken<br />
away 3% market share from the rest.<br />
So, not only are these four dominating<br />
the market, they are further strengthening<br />
that dominance.<br />
The research firm has also released<br />
the Unified Communications as a Service<br />
(UCaaS) market data for Q4 last<br />
week. Though it did not explicitly indicate<br />
revenue market share available Q3<br />
data suggests that three companies—<br />
RingCentral, Mitel and 8x8—accounted<br />
for close to 55% market share.<br />
The story is similar in hyper-converged<br />
infrastructure (HCI) market.<br />
IDC’s Q3 2017 data shows that two<br />
companies—Dell EMC and Nutanix—<br />
accounted for more than 51% market<br />
share.<br />
These are just four segments for<br />
illustration purpose. One can go on<br />
illustrating the points further by citing<br />
more ex<strong>amp</strong>les of markets where the<br />
top 2-4 players account for more than<br />
half the market share.<br />
In short, we are seeing a sort of<br />
hyper-consolidation—far more concentrated<br />
than even what Prof Jagdish<br />
Sheth and Rajendra Sisodia predicted<br />
for free, mature B2C market segments<br />
in their famous 2002 book, The Rule<br />
of Three.<br />
There is little common to the type of<br />
companies who hold the dominant positions<br />
in these markets. Some of them are<br />
IT giants (Cisco, Microsoft), some are<br />
well-established niche players (Nutanix)<br />
and some are unknown names even to<br />
enterprise IT community.<br />
Also, in terms of size, there is little<br />
commonality among these markets.<br />
Cloud infrastructure services is a USD<br />
45 billion plus market while telepresence<br />
is less than USD 2 billion in size.<br />
Yet, there is one thing that is common<br />
to all of these: these are all mature<br />
horizontal enterprise technologies—<br />
areas where <strong>CIO</strong>s are still the undisputed<br />
decision makers, in contrast<br />
to the vertical-specific solutions or<br />
emerging technologies like AI, IoT and<br />
Analytics, where other business and<br />
operational managers could be calling<br />
the shots.<br />
What does it mean?<br />
Of course, lesser number of vendors<br />
invariably suggests that power shifts<br />
to the vendors from the buyers. Or the<br />
vendor becomes more powerful. This<br />
has prompted many to raise the possibility<br />
of vendor lock-in.<br />
Though the traditional vendor lockin<br />
of the 90s and prior may not become<br />
a reality, it may make cost of switching<br />
a bit higher. While the technologies are<br />
open and hence no vendor can blackmail<br />
a user, today barriers are created<br />
by nurturing the ecosystem. So, even<br />
if switching may be theoretically possible,<br />
every step from finding an integrator<br />
to get skilled people to hire may<br />
be challenges.<br />
And it is already happening. The<br />
cloud players are today projecting the<br />
size of their ecosystem more than the<br />
services metrics when selling their<br />
value proposition. However, it may<br />
also mean that from the skill standpoint,<br />
things may be less challenging.<br />
However, it may be a worthwhile idea<br />
to look at the market through<br />
the framework of Sheth and Sisodia’s<br />
Rule of Three model. What it says is<br />
that free markets often lead to a situation<br />
where equilibrium is attained<br />
eventually by two kinds of competitors:<br />
full-service generalists and<br />
specialists who could focus on a submarket<br />
(either products or vertical/<br />
horizontal segments).<br />
While full-service companies want<br />
to grab market share, specialists’ financial<br />
performance deteriorates as they<br />
gain market share and they play a margin<br />
game—thus driving innovation.<br />
While the leaders—the generalists—<br />
try to compete by offering price advantages,<br />
specialists try to innovate. The<br />
middle guys are in disadvantage positions.<br />
Often, the model is explained by<br />
illustrating the shopping mall analogy.<br />
While a few large general stores<br />
anchor the malls, high value niche<br />
players go there to tap top customers.<br />
Of course, IT markets are still not the<br />
ideal candidate (thanks to multiple factors<br />
including the non-independence<br />
of markets segments from each other)<br />
for conforming to the rule of three.<br />
Specialists are often forced to be<br />
super-niche players creating and commanding<br />
dominant position in those<br />
super-niches. While no framework or<br />
rule can help you manage your challenges,<br />
it may be worthwhile to look<br />
at the market proactively through this<br />
framework to understand how they<br />
may evolve<br />
<strong>March</strong> <strong>2018</strong> | <strong>CIO</strong>&<strong>LEADER</strong><br />
27
Insight<br />
India Is Among<br />
Bottom Five<br />
Countries In Global<br />
Cloud Study<br />
India ranks 20th out of 24 leading IT economies,<br />
compared to its ranking of 18th in 2016, a sign that the<br />
legal and regulatory environment for cloud computing in<br />
India is restricting innovation<br />
By <strong>CIO</strong>&Leader<br />
28 <strong>CIO</strong>&<strong>LEADER</strong> | <strong>March</strong> <strong>2018</strong>
Insight<br />
BSA Global Cloud Computing Scorecard<br />
AAs per BSA <strong>2018</strong> Global Cloud Computing<br />
Scorecard, a flagship study that<br />
assesses cloud computing policies<br />
around the globe, India ranks 20th out<br />
of 24 leading IT economies, compared<br />
to its ranking of 18th in 2016, a sign<br />
that the legal and regulatory environment<br />
for cloud computing in India is<br />
restricting cloud innovation.<br />
The study reflects an updated methodology<br />
that better reflects the policies<br />
that have helped cloud computing’s<br />
exponential growth over the past five<br />
years, putting additional emphasis on<br />
countries’ privacy and cybersecurity<br />
laws and broadband infrastructure.<br />
In <strong>2018</strong>, most countries continue<br />
to make improvements, but some<br />
markets are falling further behind.<br />
Germany scored the highest on the<br />
Scorecard – due to its national cybersecurity<br />
policies and promotion of<br />
free trade – followed closely by Japan<br />
and the United States. Bringing up<br />
the rear are a small group of nations<br />
that have failed to embrace the international<br />
approach: Russia, China,<br />
Indonesia, and Vietnam. The following<br />
Chart shows that Germany to Korea<br />
maintained a consistent score before<br />
a sudden drop to 60.6 by Mexico. The<br />
downfall continues upto Vietnam with<br />
a lowly score of 36.4 while India ranks<br />
20th with a score of 48.4.<br />
As per the study, the low score and<br />
ranking of India is because of its poor<br />
Germany<br />
Japan<br />
US<br />
UK<br />
Australia<br />
Singapore<br />
Canada<br />
France<br />
Italy<br />
Spain<br />
Poland<br />
Korea<br />
Mexico<br />
Malaysia<br />
South Africa<br />
Turkey<br />
Argentina<br />
Brazil<br />
Thailand<br />
India<br />
Russia<br />
China<br />
Indonesia<br />
Vietnam<br />
results in Data Privacy (Score: 4/<strong>12</strong>.5<br />
and Rank: 20/24) and IT Readiness<br />
and Broadband Deployment (Score:<br />
6.9/25 and Rank: 24/24).<br />
The Scorecard’s key findings include:<br />
Advanced privacy and security<br />
policies set leading countries apart<br />
from lagging markets. Countries<br />
continue to update and refine their<br />
data protection regimes, most often<br />
in a way that enables cross-border<br />
data flows. Several countries, however,<br />
still have not adopted adequate<br />
privacy laws.<br />
Emerging markets continue to lag<br />
in the adoption of cloud-friendly<br />
policies, hindering their growth.<br />
Ex<strong>amp</strong>les include regulations that<br />
impose significant barriers for cloud<br />
service providers, data localization<br />
requirements, and a lack of cybersecurity<br />
protections.<br />
Deviations from widely adopted<br />
regimes and international agreements<br />
hold back key markets.<br />
Internationally accepted standards,<br />
certifications, and testing help<br />
improve the security environment<br />
for cloud computing, but not every<br />
country recognizes such best practices<br />
as meeting local standards.<br />
60.6<br />
59.3<br />
57.3<br />
54.3<br />
51.8<br />
50.3<br />
48.4<br />
48.4<br />
45<br />
43.7<br />
40.7<br />
36.4<br />
84<br />
82.1<br />
82<br />
81.8<br />
80.6<br />
80.2<br />
80<br />
79.6<br />
79<br />
78.4<br />
77<br />
72.2<br />
Source: BSA <strong>2018</strong> Global Cloud Computing Scorecard<br />
Those few countries that have<br />
embraced localization policies<br />
pay a heavy price. Data localization<br />
requirements act as a barrier to cloud<br />
computing, causing negative financial<br />
impacts for local markets.<br />
Increased emphasis on IT readiness<br />
and broadband deployment<br />
leads to interesting results. The<br />
ability of countries and companies to<br />
leverage cloud computing for growth<br />
requires access to a powerful network.<br />
While almost all countries continue<br />
to work to improve broadband<br />
access, the success of those efforts<br />
remains very inconsistent.<br />
By examining the legal and regulatory<br />
framework of 24 countries, the<br />
Scorecard aims to provide a platform<br />
for discussion between policymakers<br />
and cloud service providers. This<br />
dialogue can help develop an internationally<br />
harmonized regime of laws<br />
and regulations that facilitate cloud<br />
computing.<br />
“The Scorecard is a tool that can help<br />
countries constructively self-evaluate<br />
their policies and determine next steps<br />
to increase adoption of cloud computing,”<br />
said Victoria Espinel, President<br />
and CEO of BSA<br />
<strong>March</strong> <strong>2018</strong> | <strong>CIO</strong>&<strong>LEADER</strong><br />
29
Insight<br />
Artificial Intelligence<br />
WIll Take Care Of<br />
Your Baggage<br />
Every mishandled bag is one too many for airlines and airports<br />
By <strong>CIO</strong>&Leader<br />
TThe smart use of technologies such as artificial<br />
intelligence is expected to revolutionize the management<br />
of baggage over the next decade, promising<br />
to make mishandled bags an increasingly rare<br />
event for passengers globally. This is according to<br />
SITA’s Intelligent Tracking: A Baggage Management<br />
Revolution paper published recently.<br />
The paper notes that more than 4.5 billion bags<br />
are handled by industry baggage systems each<br />
year but airlines and airports will have to cope<br />
with twice that number with passenger numbers<br />
set to double over the next 20 years. Already,<br />
through improvements to technology and processes,<br />
the air transport industry has halved its<br />
annual mishandling cost over the past decade from<br />
USD 4.22bn to USD 2.1billion. However, every mishandled<br />
bag is one too many and the industry continues<br />
to seek ways to reduce the number further.<br />
30 <strong>CIO</strong>&<strong>LEADER</strong> | <strong>March</strong> <strong>2018</strong>
Insight<br />
Ilya Gutlin, President of SITA Air<br />
Travel Solutions, said: “We at SITA<br />
believe that harnessing data and AI in a<br />
meaningful way will revolutionize how<br />
we manage the air transport industry in<br />
the next decade. SITA has a unique role<br />
to play in realizing the potential of data<br />
andbaggage management is one area that<br />
will benefit. It is an area we are strongly<br />
focused on, collaborating across the<br />
industry to innovate.”<br />
The industry’s immediate focus is on<br />
implementing the International Air<br />
Transport Association’s Resolution 753.<br />
The resolution requires member airlines<br />
keep track of each bag and share that<br />
tracking information with all involved in<br />
delivering those bags back to passengers<br />
at their destination. While the resolution<br />
will deliver accurate data on the journey<br />
undertaken by each and every bag, the<br />
industry is already looking beyond the<br />
resolution to develop an even more accurate<br />
model for baggage operations.<br />
Ilya Gutlin, said: “The bag tracking<br />
data that will be generated and collected<br />
under Resolution 753 will provide the air<br />
transport industry with a rich stream of<br />
data. This can be enhanced with AI tools<br />
to create greater efficiencies in baggage<br />
operations and, ultimately, to improve<br />
our experience as passengers.”<br />
From an operations point of view, AI will<br />
allow airports and airlines to learn what<br />
baggage routes cause the most stress on<br />
their systems and what factors are most<br />
likely to cause them. These systems could<br />
also generate insight into the patterns of<br />
baggage movements that would enable airlines<br />
to deliver bags more effectively.<br />
Using AI, intelligent machines will<br />
enable baggage to be autonomously<br />
managed from the moment a passenger<br />
checks in their bag to when it arrives<br />
at the destination – all without human<br />
intervention. For ex<strong>amp</strong>le, in this vision<br />
of the future, autonomous loaders could<br />
be used to transport bags between the<br />
terminal and aircraft. Baggage data will<br />
also allow airlines and airports to provide<br />
passengers more relevant information on<br />
their baggage as it makes its journey from<br />
departure to destination<br />
Form IV<br />
Statement of ownership and other particulars about the<br />
publication <strong>CIO</strong> & <strong>LEADER</strong> as per Rule 8<br />
1. Place of Publication Nine Dot Nine Mediaworx Private Ltd.<br />
<strong>12</strong>1, Patparganj, Mayur Vihar Ph. I,<br />
Near Mandir Masjid, Delhi-110091.<br />
2. Periodicity of Publication Monthly<br />
3. Printer's Name Anuradha Das Mathur<br />
Nationality<br />
Indian<br />
(a) Whether a citizen of India? Yes<br />
(b) If a foreigner, the country of origin N/A<br />
Address<br />
C-144, Sarvodaya Enclave<br />
New Delhi-110017<br />
4. Publisher’s Name Anuradha Das Mathur<br />
Nationality<br />
Indian<br />
(a) Whether a citizen of India? Yes<br />
(b) If a foreigner, the country of origin N/A<br />
Address<br />
C-144, Sarvodaya Enclave<br />
New Delhi-110017<br />
5. Editor’s Name Anuradha Das Mathur<br />
Nationality<br />
Indian<br />
(a) Whether a citizen of India? Yes<br />
(b) If a foreigner, the country of origin N/A<br />
Address<br />
C-144, Sarvodaya Enclave<br />
New Delhi-110017<br />
6. Names and addresses of<br />
individuals who own the newspaper<br />
and partners or shareholders<br />
holding more than one per cent<br />
of the total capital<br />
I, Anuradha Das Mathur, here by declare that the particulars given above are true to<br />
the best of my knowledge and belief.<br />
Dated: 1st <strong>March</strong>, <strong>2018</strong><br />
1. Dr. Pramath Raj Sinha<br />
N-154, Panchsheel Park<br />
New Delhi, 110024<br />
2. Mr. Asheesh Kumar Gupta<br />
103, Tower II, The Palms<br />
South City-1, Gurgaon-<strong>12</strong>2001<br />
3. Mr. Vikas Gupta<br />
C-5/10, Safarjung Developmement<br />
Area, New Delhi-110016<br />
4. Ms. Anuradha Das Mathur<br />
C-144, Sarvodaya Enclave<br />
New Delhi-110017<br />
5. Mr. Kanak Ghosh<br />
BH-44, Sector-II<br />
Salt lake City, Kolkata 700091<br />
And Others<br />
Sd/-<br />
Signature of Publisher<br />
<strong>March</strong> <strong>2018</strong> | <strong>CIO</strong>&<strong>LEADER</strong><br />
31
Insight<br />
Indian Businesses<br />
Increase Spend<br />
On Enterprise<br />
Applications<br />
Increased competition, alignment of IT to business and<br />
rate of technology change are some of the reasons<br />
By <strong>CIO</strong>&Leader<br />
32 <strong>CIO</strong>&<strong>LEADER</strong> | <strong>March</strong> <strong>2018</strong>
Insight<br />
EEnterprise application software<br />
spending in India will reach USD 2.5<br />
billion in <strong>2018</strong>, a 19.8% increase from<br />
2017, according to Gartner. In China,<br />
<strong>2018</strong> enterprise application software<br />
spending will reach USD 5.1 billion, a<br />
18.9% rise from 2017.<br />
While both countries are poised<br />
for continued growth, organizations<br />
have different criteria for selecting<br />
the vendors they use. For ex<strong>amp</strong>le,<br />
a recent end-user survey by Gartner<br />
showed that corporate branding is<br />
an important software selection criterion<br />
in China, while organizations in<br />
India focus more on pricing and contract<br />
flexibility.<br />
“China’s and India’s enterprise application<br />
software spending has grown<br />
at double-digit rates historically, and<br />
they will continue to be hot spots,” said<br />
Keith Guttridge, research director at<br />
Garner. “To be competitive in those<br />
countries, technology business unit<br />
leaders in technology providers must<br />
understand software adoption dynamics<br />
and spending intentions.”<br />
Hot spots for growth<br />
Survey respondents were asked how<br />
they anticipate that spending on enterprise<br />
applications will change in <strong>2018</strong>.<br />
The survey found that India’s spend-<br />
ing intention is more aggressive than<br />
China’s. In all categories, India has a<br />
higher percentage of respondents who<br />
want to increase spending across all<br />
enterprise applications. Enterprise<br />
content management (ECM), business<br />
intelligence (BI), customer relationship<br />
management (CRM) and open source<br />
(enterprise edition) were the most<br />
popular in India. In China, the most<br />
popular were open source, ECM<br />
and CRM.<br />
“Although ECM is considered a hot<br />
market, it remains small in terms<br />
of share. However, as organizations<br />
in emerging countries are growing<br />
rapidly and business requirements<br />
becoming increasingly complex, there<br />
is increasing demand for solutions to<br />
digitalize content to support business<br />
processes as part of digital workplace<br />
initiatives,” said Guttridge. “CRM is<br />
claiming some budget spending intention<br />
from other major applications,<br />
such as ERP, while open-source applications<br />
continue to have a good proportion<br />
of increased spending intentions.”<br />
Looking at data<br />
from decades,<br />
China's<br />
and India's<br />
enterprise<br />
app spend<br />
has grown at<br />
double-digit<br />
rates<br />
Reasons for increased<br />
spending<br />
Although transforming to digital business<br />
is an important reason to increase<br />
software spending, other factors take<br />
precedence in the survey results.<br />
Respondents suggested practical reasons<br />
for increasing software spending<br />
in <strong>2018</strong>, including increased competition,<br />
alignment of IT to business and<br />
rate of technology change. In India,<br />
increased competition and availability<br />
of skills are other top reasons for<br />
increased spending. In China, many<br />
end-user organizations are struggling<br />
to keep up with fast-growing customer<br />
requirements, and must invest in their<br />
rapidly expanding customer bases.<br />
Key initiatives for software<br />
spending<br />
In India, increased software spending<br />
is being strongly influenced by overarching<br />
digital transformation (chosen<br />
by 91% of respondents), followed by<br />
mobile (88%) and artificial intelligence<br />
(AI — 88%). In China, cloud/SaaS<br />
offerings lead as the top influencer<br />
(chosen by 63% of respondents), followed<br />
by Internet of Things (IoT —<br />
62%) and mobile (60%).<br />
IoT is particularly significant in<br />
China due to the large manufacturing<br />
base, and the fact that “smart manufacturing”<br />
is an official initiative in<br />
the country’s 13th Five-Year Plan.<br />
However, adoption of emerging initiatives<br />
such as IoT, AI and digital transformation<br />
will largely vary. Some enduser<br />
organizations are still piloting,<br />
experimenting with and trialing their<br />
own resources in order to implement<br />
these initiatives.<br />
“Despite moderate economic growth,<br />
technology and service providers<br />
(TSPs) should craft a go-to-market<br />
strategy that assumes that China and<br />
India will continue to be fast-growth<br />
markets in the region and the world,”<br />
said Guttridge. “TSPs can differentiate<br />
their offerings by providing ‘handholding’<br />
mini-consultations for key<br />
initiatives, such as IoT (especially in<br />
China), AI and digital transformation<br />
(especially in India). They can also<br />
deliver use-case scenarios that demonstrate<br />
the value of products and services<br />
to these emerging technologies.”<br />
<strong>March</strong> <strong>2018</strong> | <strong>CIO</strong>&<strong>LEADER</strong><br />
33
Insight<br />
Cloud Apps And<br />
Web Portals Are The<br />
Biggest Targets For<br />
Attackers<br />
Gemalto’s <strong>2018</strong> Identity and Access Management<br />
Index Survey indicates that the role of a dedicated Chief<br />
Information Security Officer within organizations has<br />
increased by a quarter in the last year<br />
By <strong>CIO</strong>&Leader<br />
34 <strong>CIO</strong>&<strong>LEADER</strong> | <strong>March</strong> <strong>2018</strong>
Insight<br />
AThe mainstreaming of cloud and the<br />
use of a disparate range of devices<br />
within businesses has led to nearly twothirds<br />
of IT decision makers admitting<br />
that their security teams are considering<br />
implementing consumer-grade<br />
access to cloud services for employees.<br />
Gemalto’s <strong>2018</strong> Identity and Access<br />
Management Index Survey interviewed<br />
more than 1,000 IT decision makers<br />
globally and found that a majority of<br />
them believe that the authentication<br />
methods they implement in their businesses<br />
are not as good compared to<br />
those found on popular sites including<br />
Amazon and Facebook.<br />
Nine in ten IT decision maker<br />
respondents state that their organization’s<br />
security policies around access<br />
management have been influenced by<br />
breaches of consumer services, which<br />
shows how powerful these breaches<br />
can be.<br />
Most vulnerable to attacks<br />
Around 50% of respondents highlight<br />
web portals as one of the biggest targets,<br />
around two in five say the same<br />
for cloud applications (SaaS, PaaS,<br />
IaaS), 39% mobile applications, 37%<br />
local network access and just under<br />
three in ten say so for VPN. In addition,<br />
two fifths of respondents consider<br />
unprotected infrastructure such as IoT<br />
to be a big target for cyber-attacks.<br />
Over four in ten respondents see<br />
cloud applications as one of the biggest<br />
targets for cyber-attacks. Of these<br />
respondents, 71% indicate the reason<br />
behind this may be the increasing<br />
volume of cloud applications in use,<br />
and 55% say that the lack of strong<br />
cyber security solutions to implement<br />
appropriate solutions. Over two fifths<br />
also indicate cloud applications may<br />
be targeted for cyber attacks because<br />
access management solutions are currently<br />
in place for the cloud are poor,<br />
which is something that organizations<br />
could improve.<br />
Two-factor authentication<br />
is gaining adoption<br />
The vast majority of respondents’<br />
organizations are now using twofactor<br />
authentication for at least one<br />
application. For instance, eight in ten<br />
respondents report that their organization<br />
has at least one application that<br />
is currently protected by two-factor<br />
authentication for cloud applications<br />
(SaaS, PaaS, IaaS), 78% for local network<br />
access and web portals, with 77%<br />
for VPN and enterprise applications.<br />
9 in 10 IT<br />
decision makers<br />
feel that their<br />
org's security<br />
policies around<br />
access mgmt<br />
is influenced<br />
by persistent<br />
breaches<br />
Spend more on security<br />
A total of 45% respondents agree that<br />
their companies have started spending<br />
spending on access management<br />
(45%), staff being trained on security<br />
and access management (44%), and<br />
more resources being allocated to<br />
access management (42%). In addition,<br />
around two in five say that secure<br />
access management is now a priority<br />
for the board, rising slightly from 34%<br />
in 2016.<br />
The impact of social media<br />
The survey also highlights the extent<br />
to which social media platforms play a<br />
role in marketing. Interestingly, despite<br />
social platforms having been used in<br />
the past as an attack route for malicious<br />
actors to breach organizations,<br />
it seems IT departments fall short in<br />
being able to apply cohesive access<br />
security for social platforms. For<br />
ex<strong>amp</strong>le, over two fifths indicate that<br />
employees use a company-approved<br />
individual account when using social<br />
media for work. According to the survey,<br />
50% of respondents report that<br />
their organization secures access to its<br />
social media accounts via a relatively<br />
simplistic method of username and<br />
password, a slight drop from the 65%<br />
who reported doing so in 2016. There<br />
are of course, those who say that their<br />
organizations use native two-factor<br />
authentication provided by social<br />
media sites.<br />
Compliance and auditing<br />
Nearly all respondents think that twofactor<br />
authentication will be able to<br />
contribute towards their organization’s<br />
ability to comply with data protection<br />
regulations and pass security<br />
audits, with over half believing that<br />
this is definitely the case. Similarly, the<br />
majority of respondents believe that it<br />
is important that their organization is<br />
able to produce a single audit trail of<br />
access events taking place throughout<br />
different resources used by the organization,<br />
with nearly three in ten viewing<br />
this as extremely important. The<br />
ability to encourage better compliance<br />
and easier auditing may not often be<br />
the primary reason to implement twofactor<br />
authentication, but is certainly<br />
an added bonus<br />
<strong>March</strong> <strong>2018</strong> | <strong>CIO</strong>&<strong>LEADER</strong><br />
35
SECURITY<br />
The Case of Rising<br />
Cyberattacks<br />
Automated and sophisticated swarm attacks are making it difficult<br />
for organizations to protect users, applications, and devices<br />
By <strong>CIO</strong>&Leader<br />
A<br />
A latest Fortinet Global Threat Landscape Report<br />
reveals that attacks per firm increased over the<br />
previous quarter. In addition, automated and<br />
sophisticated swarm attacks are accelerating making<br />
it increasingly difficult for organizations to<br />
protect users, applications, and devices. Some of<br />
the highlights of the report are:<br />
Swarm Cyberattacks Increase in<br />
Volume, Variety, and Velocity<br />
The sophistication of attacks targeting organizations<br />
is accelerating at an unprecedented rate.<br />
Digital transformation isn’t just reshaping business,<br />
cybercriminals are leveraging the expanding<br />
attack surface it creates for new disruptive opportunities<br />
to attack. They are implementing newer<br />
swarm-like capabilities while simultaneously targeting<br />
multiple vulnerabilities, devices, and access<br />
points. The combination of rapid threat development<br />
combined with the increased propagation of<br />
36 <strong>CIO</strong>&<strong>LEADER</strong> | <strong>March</strong> <strong>2018</strong>
Security<br />
new variants is increasingly difficult<br />
for many organizations to combat.<br />
Unprecedented Volume: An average<br />
of 274 exploit detections per firm<br />
were detected, which is a significant<br />
increase of 82% over the previous<br />
quarter. The number of malware<br />
families also increased by 25% and<br />
unique variants grew by 19%. The<br />
data not only indicates growth in<br />
volume, but also an evolution of<br />
the malware as well. In addition,<br />
encrypted traffic using HTTPS and<br />
SSL grew as a percentage of total<br />
network traffic to a high of nearly<br />
60% on average. While encryption<br />
can certainly help protect data in<br />
motion as it moves between core,<br />
cloud, and endpoint environments,<br />
it also represents a real challenge for<br />
traditional security solutions.<br />
IoT Attack Intensity: Three of the<br />
top twenty attacks identified targeted<br />
IoT devices and exploit activity<br />
quadrupled against devices like<br />
Wi-Fi cameras. None of these detections<br />
were associated with a known<br />
or named CVE, which is one of the<br />
troubling aspects of vulnerable IoT<br />
devices. In addition, unlike previous<br />
attacks, which focused on exploiting<br />
a single vulnerability, new IoT<br />
botnets, such as Reaper and Hajime<br />
can target multiple vulnerabilities<br />
simultaneously. This multi-vector<br />
approach is much harder to combat.<br />
Reaper’s flexible framework<br />
means that, rather than the static,<br />
pre-programmed attacks of previous<br />
IoT exploits, Reaper’s code is easily<br />
updated to swarm faster by running<br />
new and more malicious attacks<br />
as they become available. Demonstrating<br />
its swarm abilities, exploit<br />
volume associated with Reaper<br />
exhibited a jump from 50,000 to<br />
2.7 million over a few days before<br />
dropping back to normal. In Asia<br />
Pacific, the top prevalent exploits<br />
detected exhibits a similar pattern.<br />
For ex<strong>amp</strong>le, exploits targeting the<br />
Apache Struts and IP camera/DVR<br />
vulnerabilities make up some of the<br />
top exploits detected in APAC for<br />
Q4, 2017 as well. IP camera/DVR<br />
vulnerabilities in APAC are quite<br />
prevalent as these devices are popular,<br />
available at low cost, but do not<br />
have sufficient security designed<br />
into them.<br />
Ransomware Still Prevalent: Several<br />
strains of ransomware topped<br />
the list of malware variants. Locky<br />
was the most widespread malware<br />
variant and Globe Imposter followed<br />
as the second. A new strain of Locky<br />
emerged, tricking recipients with<br />
spam before requesting a ransom.<br />
In addition, there was a shift on the<br />
darknet from only accepting Bitcoin<br />
for payment to other forms of digital<br />
currency such as Monero. In APAC,<br />
new malware variants and ransomware<br />
droppers account for the top<br />
prevalent malware seen in Q4, 2017.<br />
Cryptocurrency Mining on the<br />
Rise: Cryptomining malware<br />
increased globally and in APAC,<br />
which seems to be intertwined with<br />
the changing price of Bitcoin. Cybercriminals<br />
recognize the growth in<br />
digital currencies and are using a<br />
trick called cryptojacking to mine<br />
cryptocurrencies on computers<br />
using CPU resources in the background<br />
without a user knowing.<br />
Cryptojacking involves loading a<br />
script into a web browser, nothing is<br />
installed or stored on the computer.<br />
Security should<br />
operate at<br />
digital speeds<br />
by automating<br />
responses as<br />
well as applying<br />
intelligence and<br />
self-learning<br />
Sophisticated Industrial Malware:<br />
An uptick in exploit activity against<br />
industrial control systems (ICS) and<br />
safety instrumental systems (SIS)<br />
suggests these under-the-radar<br />
attacks might be climbing higher<br />
on attackers’ radar. An ex<strong>amp</strong>le is<br />
an attack codenamed Triton. It is<br />
sophisticated in nature and has the<br />
ability to cover its tracks by overwriting<br />
the malware itself with garbage<br />
data to thwart forensic analysis.<br />
Because these platforms affect vital<br />
critical infrastructures, they are<br />
enticing for threat actors. Successful<br />
attacks can cause significant damage<br />
with far-reaching impact.<br />
Attack Variety: Steganography is an<br />
attack that embeds malicious code<br />
in images. It’s an attack vector that<br />
has not had much visibility over the<br />
past several years, but it appears to<br />
be on the resurgence. The Sundown<br />
exploit kit uses steganography to<br />
steal information, and while it has<br />
been around for some time, it was<br />
reported by more organizations<br />
than any other exploit kit. It was<br />
found dropping multiple ransomware<br />
variants.<br />
Fighting Swarm Attacks<br />
Requires Integrated<br />
Security<br />
The threat data in this quarter’s report<br />
reinforces many of the predictions<br />
unveiled by the Fortinet FortiGuard<br />
Labs global research team for <strong>2018</strong>,<br />
which predicted the rise of selflearning<br />
hivenets and swarmbots on<br />
the horizon. Over the next couple of<br />
years, the attack surface will continue<br />
to expand while visibility and control<br />
over today’s infrastructures diminish.<br />
To address the problems of speed and<br />
scale by adversaries, organizations<br />
need to adopt strategies based on<br />
automation and integration. Security<br />
should operate at digital speeds<br />
by automating responses as well as<br />
applying intelligence and self-learning<br />
so that networks can make effective<br />
and autonomous decisions<br />
<strong>March</strong> <strong>2018</strong> | <strong>CIO</strong>&<strong>LEADER</strong><br />
37
<strong>LEADER</strong>SHIP<br />
Ten Ways Business<br />
Leaders Can<br />
Improve Gender<br />
Diversity<br />
Grant Thornton has tracked the progress of women in<br />
business for the last 14 years<br />
By <strong>CIO</strong>&Leader<br />
38 <strong>CIO</strong>&<strong>LEADER</strong> | <strong>March</strong> <strong>2018</strong>
Leadership<br />
AAccording to Grant Thornton, the professional<br />
services company, that has tracked the progress<br />
of women in business around the globe for<br />
14 years, explores how business leaders think<br />
and feel, and outlines practical steps that can<br />
create change.<br />
Creating an<br />
inclusive<br />
workplace<br />
that<br />
supports<br />
gender<br />
diversity<br />
won't be<br />
easy<br />
1. Ch<strong>amp</strong>ion the cause<br />
To create change, senior leadership need to take<br />
the issue seriously and lead from the top.<br />
2. Make diversity and inclusion a<br />
core value<br />
Organisational values drive behaviour, so it’s<br />
important that the whole business is signed up<br />
to diversity and inclusion.Our research shows<br />
that translating good intentions into practice is<br />
an ongoing challenge for businesses.<br />
3. Set goals<br />
Making gender diversity a core value is<br />
not enough in itself; business leaders should<br />
set clear goals by which they will measure<br />
progress.<br />
4. Link progress to pay<br />
They say that what gets measured gets managed,<br />
so business leaders should make diversity<br />
and inclusion goals part of the leadership team’s<br />
compensation packages to encourage change.<br />
5. Avoid tokenism<br />
Simply putting one woman on the senior management<br />
team is not enough to ensure a range of<br />
voices is heard and for the business to reap the<br />
rewards of diversity. The issue is not only about<br />
whether there are women present but also whether<br />
women feel their perspectives are valued.<br />
6. Reduce ‘mini me’ recruitment<br />
and promotion<br />
Providing support to understand why this<br />
happens and how it can be avoided will forge<br />
a better process. Unconscious bias training<br />
can help people at all levels of the business<br />
avoid the temptation to hire and promote<br />
employees who look, speak and think in the<br />
same ways.<br />
7. Introduce sponsorship<br />
Sponsorship can have a significantly greater<br />
impact on gender diversity in leadership than<br />
simple mentoring schemes.<br />
8. Investigate the benefits<br />
Evidence of the commercial gains brought by<br />
gender diversity will help convince sceptics of<br />
the need for change and provide justification for<br />
investment in new initiatives.<br />
9. Be comfortable with<br />
discomfort<br />
Creating an inclusive business environment<br />
that supports gender diversity in leadership<br />
will not be easy, so leaders need to be in it for the<br />
long term.<br />
10. Share your story<br />
Business leaders who are open about what is<br />
driving change in their own companies can<br />
encourage others and help them overcome the<br />
complexity of turning theory into action. It can<br />
be challenging for business leaders to feel able<br />
to be transparent about internal ways of working,<br />
and particularly about mistakes they’ve<br />
made, but without this we are unlikely to see<br />
widespread progress<br />
<strong>March</strong> <strong>2018</strong> | <strong>CIO</strong>&<strong>LEADER</strong><br />
39