CIO & LEADER-Issue-01-April 2018 (1)
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
Column<br />
Cambridge Analytica Case: Look<br />
Beyond The Scam Pg 10<br />
Face Off<br />
Is ROI Becoming Outdated For<br />
Technology Investments? Pg 20<br />
Volume 07<br />
<strong>Issue</strong> <strong>01</strong><br />
<strong>April</strong> 2<strong>01</strong>8<br />
150<br />
Track technology Build business Shape self<br />
When an<br />
Enterprise<br />
and a<br />
Start-up Walk<br />
into a room<br />
Lessons from the community on how to<br />
create a thriving partnership and grow<br />
your business Pg 12<br />
A 9.9 Group Publication
EDITORIAL<br />
Shyamanuja Das<br />
shyamanuja.das@9dot9.in<br />
What<br />
makes<br />
them<br />
tango?<br />
T<br />
“A real big<br />
factor—and<br />
arguably what<br />
has changed<br />
the game—is<br />
the hyperscale<br />
cloud providers<br />
like Amazon,<br />
Microsoft and<br />
IBM bringing in<br />
their partners."<br />
The cover story this time focuses on how the<br />
Indian corporates are working with start-ups<br />
to derive business value, resulting in a winwin<br />
for both.<br />
But before you go to the hows, it is not a bad<br />
idea to start with the whys—the imperatives of<br />
what has made this change—being talked<br />
about for long; but finally happening on the<br />
ground only now.<br />
So, why are large Indian companies putting<br />
that extra effort to work with the start-ups now?<br />
It is fashionable. Well, do not get shocked I<br />
put it first. While it may not be the No 1 reason<br />
while taking the final decision on a start-up collaborative<br />
journey, it is often the No 1 reason to<br />
get interested. Being part of the community, you<br />
know quite well that this community is quite<br />
hype driven. And start-ups are the current<br />
hype. My apologies if this sounds<br />
really mean. Let us go to some more<br />
‘logical’ reasons.<br />
Only start-ups can offer some of<br />
the emerging technologies. Like it or<br />
not, many of the new technologies such<br />
as AI, machine learning, advanced<br />
analytics, IoT and their applications<br />
to specific verticals are available only<br />
with the start-ups.<br />
Start-ups are willing to walk that<br />
extra mile. For a large enterprise user,<br />
start-ups are keen to do the tweaking to<br />
their solutions based on the actual need.<br />
Both from business and reference point of view, it<br />
makes tremendous business sense.<br />
The cloud platforms are felicitating it. Another<br />
real big factor—and arguably what has changed the<br />
game—is the hyperscale cloud providers like Amazon,<br />
Micosoft and IBM bringing in their partners.<br />
Cloud has impacted the game in more ways than<br />
one. It has ensured that a start-up focuses on its core<br />
innovation and quickly plugs in horizontal APIs like<br />
UX, security, analytics, even AI-based bots, already<br />
available on the same cloud. So, go-to-market for the<br />
solution is quicker and easier.<br />
Cloud has minimized the needs of integration.<br />
Earlier, a stand-alone solution required a lot of integration<br />
services around itself, which was often not<br />
available easily.<br />
Finally, a cloud-based solution comes with the backing<br />
of a big name. That gives a feeling of assurance.<br />
Yet, the collaboration that is happening is still in<br />
an experimental stage. If Indian enterprises accelerate<br />
their transformation journey, they will continue<br />
to need the start-ups. If that slows down for some<br />
reason, the partnerships may be impacted too<br />
<strong>April</strong> 2<strong>01</strong>8 | <strong>CIO</strong>&<strong>LEADER</strong><br />
1
Column<br />
Cambridge Analytica Case: Look<br />
Beyond The Scam Pg 10<br />
TRACK TECHNOLOGY BUILD BUSINESS SHAPE SELF<br />
A 9.9 Group Publication<br />
Face Off Volume 07<br />
<strong>Issue</strong> <strong>01</strong><br />
Is ROI Becoming Outdated For<br />
<strong>April</strong> 2<strong>01</strong>8<br />
Technology Investments? Pg 20<br />
150<br />
Lessons from the community on how to<br />
create a thriving partnership and grow<br />
your business Pg 12<br />
CONTENT<br />
APRIL 2<strong>01</strong>8<br />
cover story<br />
12-19 | When A Startup<br />
And An Enterprise<br />
Walk Into A Room<br />
When an<br />
Enterprise<br />
and a<br />
Start-up Walk<br />
into a room<br />
Cover Design by:<br />
Charu Dwivedi<br />
Please Recycle<br />
This Magazine<br />
And Remove<br />
Inserts Before<br />
Recycling<br />
Copyright, All rights reserved: Reproduction in whole or in part without written permission from Nine Dot Nine Mediaworx Pvt Ltd. is<br />
prohibited. Printed and published by Vikas Gupta for Nine Dot Nine Mediaworx Pvt Ltd, 121, Patparganj, Mayur Vihar, Phase - I, Near Mandir<br />
Masjid, Delhi-110091. Printed at Tara Art Printers Pvt ltd. A-46-47, Sector-5, NOIDA (U.P.) 2<strong>01</strong>3<strong>01</strong>1<br />
2 <strong>CIO</strong>&<strong>LEADER</strong> | <strong>April</strong> 2<strong>01</strong>8
AROUND THE TECH<br />
04-07<br />
Why Do So Few <strong>CIO</strong>s Drive<br />
Digital Transformation?<br />
www.cioandleader.com<br />
COLUMN<br />
08-09<br />
Is Hashgraph Better<br />
Than Blockchain?<br />
By Mohua Sengupta<br />
10-11<br />
Cambridge Analytica:<br />
Look Beyond The Scam<br />
By Shyamanuja Das<br />
INSIGHT<br />
26-27<br />
Blockchain’s Red Hot<br />
Indian Use Case: Invoice<br />
Discounting<br />
29<br />
The Rise of<br />
Cyptojacking in<br />
2<strong>01</strong>8<br />
30-31<br />
Blockchain’s Red<br />
Hot Indian Use Case:<br />
Invoice Discounting<br />
Security<br />
34-35<br />
Is Security Secular<br />
Across Industries?<br />
MANAGEMENT<br />
Managing Director: Dr Pramath Raj Sinha<br />
Printer & Publisher: Vikas Gupta<br />
EDITORIAL<br />
Managing Editor: Shyamanuja Das<br />
Associate Editor: Shubhra Rishi<br />
Content Executive-Enterprise Technology:<br />
Dipanjan Mitra<br />
DESIGN<br />
Sr Art Director: Anil VK<br />
Art Director: Shokeen Saifi<br />
Visualisers: NV Baiju & Manoj Kumar VP<br />
Lead UI/UX Designer: Shri Hari Tiwari<br />
Sr Designers: Charu Dwivedi, Haridas Balan & Peterson PJ<br />
sales & marketing<br />
Director-Community Engagement<br />
for Enterprise Technology Business:<br />
Sachin Mhashilkar (+91 99203 48755)<br />
Brand Head: Vandana Chauhan (+91 99589 84581)<br />
Assistant Product Manager-Digital: Manan Mushtaq<br />
Community Manager-B2B Tech: Megha Bhardwaj<br />
Community Manager-B2B Tech: Renuka Deopa<br />
Associate-Enterprise Technology: Abhishek Jain<br />
Regional Sales Managers<br />
North: Deepak Sharma (+91 98117 91110)<br />
West: Prashant Amin (+91 98205 75282)<br />
South: BN Raghavendra (+91 98453 81683)<br />
Ad Co-ordination/Scheduling: Kishan Singh<br />
PRODUCTION & Logistics<br />
Manager Operations: Rakesh Upadhyay<br />
Asst. Manager - Logistics: Vijay Menon<br />
Executive Logistics: Nilesh Shiravadekar<br />
Logistics: MP Singh & Mohd. Ansari<br />
Office Address<br />
9.9 Group Pvt. Ltd.<br />
(Formerly known as Nine Dot Nine Mediaworx Pvt. Ltd.)<br />
121, Patparganj, Mayur Vihar, Phase - I<br />
Near Mandir Masjid, Delhi-110091<br />
Published, Printed and Owned by 9.9 Group Pvt. Ltd.<br />
(Formerly known as Nine Dot Nine Mediaworx Pvt. Ltd.)<br />
Published and printed on their behalf by<br />
Vikas Gupta. Published at 121, Patparganj,<br />
Mayur Vihar, Phase - I, Near Mandir Masjid, Delhi-110091,<br />
India. Printed at Tara Art Printers Pvt Ltd., A-46-47, Sector-5,<br />
NOIDA (U.P.) 2<strong>01</strong>3<strong>01</strong>.<br />
Editor: Vikas Gupta<br />
<strong>April</strong> 2<strong>01</strong>8 | <strong>CIO</strong>&<strong>LEADER</strong><br />
3
around<br />
thetech<br />
WhAT<br />
<strong>CIO</strong>s are<br />
tired of<br />
hearing...<br />
“The <strong>CIO</strong><br />
office is a<br />
cost center”<br />
Leadership<br />
Why so few <strong>CIO</strong>s drive<br />
digital transformation?<br />
A recent research that we<br />
conducted on digital transformation<br />
in some of the core sector<br />
companies in three of India’s top<br />
business groups—Tatas, Mahindra<br />
& Mahindra and Vedanta/Sterlite—<br />
threw some interesting trends.<br />
One of the few points on which<br />
there seem to be a near-complete<br />
consensus among digital leaders,<br />
other CXOs and consultants is that<br />
only a senior, dedicated executive<br />
can drive digital transformation.<br />
‘Dedicated’ is the keyword here.<br />
The current thinking is that driving<br />
digital transformation is a full-time<br />
job. It cannot be just another KRA<br />
for some executive!<br />
It is not too difficult to explain why.<br />
A typical transformation journey,<br />
especially in a traditional business,<br />
could involve a lot of time and focus<br />
to prepare the organization before it<br />
could leverage technology.<br />
“60-70% of the transformation<br />
journey is actually about bringing<br />
a culture shift,’ says Nischal Gupta,<br />
Chief Transformation Officer<br />
at Sterlite Tech. Almost<br />
all executives we spoke to<br />
identified culture shift as<br />
the toughest part of the<br />
transformation journey that<br />
requires undivided attention.<br />
That can be manifested<br />
in a lot of discussion with<br />
other C level executives,<br />
creating communication<br />
programs for all employees,<br />
branded programs and a lot<br />
of similar stuff. Tata Steel,<br />
for ex<strong>amp</strong>le, started with a<br />
reverse mentoring program<br />
where 16 senior executives<br />
agreed to be reverse mentored<br />
by the youngsters. There was<br />
another program called Digital<br />
Enthusiastic Exploration<br />
Program (DEEP) that involved<br />
60 people immersing in<br />
technology. There was another<br />
called Digital Darshan. All<br />
these programs do require<br />
considerable time and focus.<br />
4 <strong>CIO</strong>&<strong>LEADER</strong> | <strong>April</strong> 2<strong>01</strong>8
Around The Tech<br />
By the Book<br />
Based on an in-depth analysis of over<br />
2,600 leaders drawn from a database<br />
of more than 17,000 CEOs and C-suite<br />
executives, as well 13,000 hours of<br />
interviews, and two decades of experience<br />
advising CEOs and executive<br />
boards, Elena L. Botelho and Kim R.<br />
Powell overturn the myths about what<br />
it takes to get to the top and succeed.<br />
Their groundbreaking research was<br />
the featured cover story in the May-<br />
June 2<strong>01</strong>7 issue of Harvard Business<br />
Review. It reveals the common attributes<br />
and counterintuitive choices that<br />
set apart successful CEOs—lessons<br />
that we can apply to our own careers.<br />
Much of what we hear about who<br />
gets to the top, and how, is wrong.<br />
Myth: Those who become chief executives<br />
set their sights on the C-suite at<br />
an early age. Reality: In fact, over 70%<br />
of the CEOs didn’t have designs on the<br />
corner office until later in their careers.<br />
Myth: You must graduate from an<br />
elite college. Reality: In fact, only 7%<br />
of CEOs in the dataset are Ivy League<br />
graduates--and 8% didn't graduate<br />
from college at all. To become a CEO<br />
you need a flawless résumé.<br />
makingheadlines<br />
The #DeleteFacebook hashtag has been doing the rounds on Twitter. As if to<br />
add insult to the injury, users are now deleting their Facebook accounts. Tesla's<br />
CEO, Elon Musk is the latest to join the bandwagon. He deleted his verified Facebook<br />
pages for SpaceX and Tesla after being challenged by a user on Twitter.<br />
However, the #deleteFacebook issue is a bit of a deja vu moment for the company,<br />
which has been embroiled in a series of controversies for the last decade.<br />
Almost eight years ago, an online event christened 'Quit Facebook Day' was<br />
started by a group of dissatisfied Facebook users. Their site, QuitFacebookDay.<br />
com, asked users to "commit to quit" Facebook on May 31 in 2<strong>01</strong>0 by signing their<br />
name or Twitter handle to the list of pledges. The reason was identical - most<br />
users were concerned about the privacy of their data. However, the boycott was<br />
a major flop after just over 30,000 of the site's 500 million users deleted their<br />
Facebook accounts.<br />
The gender gap in pay has narrowed since 1980,<br />
but it has remained relatively stable over the past 15<br />
years or so. In 2<strong>01</strong>7, women earned 82% of what men<br />
earned, according to a Pew Research Center analysis<br />
of median hourly earnings of both full- and part-time<br />
workers in the United States. Based on this estimate,<br />
it would take an extra 47 days of work for women to<br />
earn what men did in 2<strong>01</strong>7.<br />
Why does a gender pay gap still persist?<br />
Much of the gap has been explained by measurable<br />
factors such as educational attainment, occupational<br />
segregation and work experience. The narrowing of<br />
the gap is attributable in large part to gains women<br />
have made in each of these dimensions.<br />
But other factors that are difficult to measure,<br />
including gender discrimination, may contribute to the<br />
ongoing wage discrepancy.<br />
gender<br />
bender<br />
<strong>April</strong> 2<strong>01</strong>8 | <strong>CIO</strong>&<strong>LEADER</strong><br />
5
Around The Tech<br />
Flip the Cart<br />
matter of<br />
twitter<br />
Walmart Inc. is close to finalizing a deal to buy a majority stake in<br />
India’s leading e-commerce company for at least $12 billion and<br />
may complete the agreement in the next two weeks, according to<br />
people familiar with the matter.<br />
All the major investors in Flipkart Online Services Pvt are now<br />
on board with the Walmart purchase, after an earlier debate over<br />
whether to sell to Amazon.com Inc., said the people, asking not to<br />
be named because the matter is private. Tiger Global Management<br />
will sell nearly all its 20% stake in Flipkart, while SoftBank Group<br />
Corp. will sell a substantial part of its 20 percent-plus holding, the<br />
people said. Walmart will likely end up with 60 percent to 80% of<br />
Flipkart, which will be valued at about $20 billion, they said.<br />
Among the issues that still need to be resolved are what happens<br />
to Flipkart’s founders and who will lead Flipkart after the purchase,<br />
they said. The amount each existing investor sells and the<br />
size of Walmart’s final stake still need to be finalized, they said. It’s<br />
also possible that terms will change or the talks will fall apart.<br />
If completed, the deal would give Walmart a substantial foothold<br />
in an emerging market.<br />
Vital<br />
Statistics<br />
Is the GDPR<br />
applicable<br />
to you?<br />
*Note –the responses to these questions should be<br />
evaluated based on the facts and circumstances in<br />
your organization and discussed with legal counsel.<br />
Three key questions to assessment applicability<br />
1<br />
Are you or your service providers<br />
a processor or controller located<br />
in the EU (e.g., do I have an<br />
affiliate organization in the EU)?*<br />
Yes<br />
Yes<br />
GDPR applies<br />
Yes<br />
No<br />
2 Are you or your service providers a<br />
processor or controller that offers<br />
goods or services in the EU (e.g., do I<br />
offer payment services in England)?*<br />
No<br />
Are you or your service providers<br />
a processor or controller that<br />
monitors behavior in the EU (e.g.,<br />
am I a third party that monitors<br />
credit card balances in France)?*<br />
GDPR may apply<br />
No, I do nothave any entities, subsidiaries or affiliate organizations residing within the EU.<br />
No<br />
No, I do nothave any business activities in the EU, including those of third parties.<br />
No, I do notmonitor behavior or process data of anyone residing within the EU.<br />
Questions to consider include (but are notlimited to):<br />
• Do I have any plans or aspirations to do business in the EU in the future?<br />
• Do I process data of EU citizens who reside in the US?<br />
Source: E&Y’s GDPR: demanding new privacy rights and obligations<br />
6 <strong>CIO</strong>&<strong>LEADER</strong> | <strong>April</strong> 2<strong>01</strong>8
Around The Tech<br />
Four lessons to learn from<br />
Facebook Analytica fiasco<br />
The world's biggest social network is at<br />
the center of an international scandal<br />
involving voter data, the 2<strong>01</strong>6 US presidential<br />
election and Brexit.<br />
Damaging consumer trust<br />
The latest data ‘breach’ comes amid<br />
growing discontent around how consumer<br />
behavioural data is being used<br />
to deliver controversial, harmful or<br />
extremist content to consumers not<br />
only across the Facebook platform,<br />
but also sites on such as YouTube.<br />
Data access versus targeting<br />
As brands look to increasingly<br />
hypertarget consumers through<br />
behavioural data, there are also growing<br />
community concerns about the<br />
significant influence they could have<br />
on consumers. Certainly in the political<br />
sphere, this can be seen from the<br />
alleged claims of Russian interference<br />
in the 2<strong>01</strong>6 US Presidential Election,<br />
as well as Cambridge Analytica’s<br />
impact on Brexit.<br />
This data was shared with Cambridge<br />
Analytica in breach of Facebook’s platform<br />
policies. Facebook admitted in its<br />
statement that it became aware of this<br />
unauthorized use in 2<strong>01</strong>5, and subsequently<br />
asked Cambridge Analytica to<br />
delete the data. Facebook did not see fit<br />
to alert users about this use of their data<br />
and took very limited steps to secure<br />
the data, by seeking certifications that<br />
the information had been destroyed.<br />
<strong>Issue</strong>s for data protection law<br />
This entire affair raises two important<br />
questions about data-protection laws<br />
globally, and particularly for countries<br />
like India that are in the process<br />
of framing their laws on privacy<br />
regarding data protection.<br />
First, the delayed and limited actions<br />
taken by Facebook, upon becoming<br />
aware of the unauthorized sharing of<br />
data, raise questions about how such<br />
breaches may be regulated. The claim<br />
by Facebook that this was not a data<br />
breach is premised on the other claim<br />
that data was harvested in a legitimate<br />
manner after obtaining consent from<br />
the users. This is reminiscent of several<br />
data-security incidents in India, where<br />
public collectors of data have claimed<br />
that by securing only one key point in<br />
a data ecosystem and ignoring others,<br />
they have adequately discharged their<br />
data-security obligations<br />
Rethinking privacy principles<br />
Data-protection laws emerged in a<br />
world that saw a preponderance of<br />
volunteered data. However, as the<br />
bulk of the data collected and traded<br />
is either observed or inferred, it raises<br />
serious questions about whether<br />
these traditional frameworks remain<br />
meaningful. The idea of privacy as<br />
control is what finds articulation<br />
in data-protection policies across<br />
jurisdictions beginning from the<br />
Fair Information Practice Principles<br />
(FIPP) in the United States.<br />
<strong>April</strong> 2<strong>01</strong>8 | <strong>CIO</strong>&<strong>LEADER</strong><br />
7
COLUMN<br />
By Mohua Sengupta<br />
Is Hashgraph<br />
the Technology<br />
of the Future?<br />
It definitely addresses critical<br />
challenges that Blockchain has<br />
been grappling with<br />
T<br />
The author is EVP & Global Head of<br />
Services, 3i Infotech Ltd.<br />
The most popular questions in the<br />
technology world today is most<br />
definitely the one on whether<br />
Hashgraph is better than Blockchain.<br />
The life and credibility of the<br />
Blockchain is being questioned and<br />
Hashgraph is being predicted as the<br />
technology of the future.<br />
While it is difficult to predict whether<br />
Blockchain is a thing of the past<br />
and whether Hashgraph is the final<br />
answer, one thing is sure, Hashgraph<br />
definitely addresses a lot of the critical<br />
challenges that Blockchain has been<br />
grappling with, the challenge of speed<br />
of processing, the challenge of fairness,<br />
and the huge challenge of requiring<br />
multiple industry regulators to<br />
come together.<br />
Hashgraph can process 250000+<br />
transactions per second as opposed<br />
to Blockchain’s 7 transactions per second.<br />
Hashgraph is fast because it uses<br />
Gossip protocol to spread messages to<br />
the network and also performs some<br />
optimization of the gossiped messages<br />
to reduce the communication<br />
overhead. One other reason behind<br />
this speed of Hashgraph is because<br />
Hashgraph today uses private, permissioned<br />
networks.<br />
Coming to fairness, the main challenge<br />
of Blockchain is its dependence<br />
on miners. There could be forking<br />
and delay because of the actions of the<br />
miners, who can manipulate the process.<br />
Since Hashgraph is based on consensus<br />
and time st<strong>amp</strong>ing, it’s faster<br />
and more accurate. The Virtual Voting<br />
Consensus Algorithm of Hashgraph,<br />
which was invented by Dr. Leemon<br />
Baird, makes it straightforward to<br />
know how a node would vote and this<br />
data can be used as an input to the voting<br />
algorithm and to find whichever<br />
transactions have reached consensus<br />
quickly, thus making it more fair.<br />
I feel that one of the biggest challenges<br />
for Blockchain to be a commonly<br />
used technology, is the need<br />
for multiple industry regulators to<br />
come together and set regulations<br />
which will cut across industries. As I<br />
have said before, a Blockchain, or for<br />
8 <strong>CIO</strong>&<strong>LEADER</strong> | <strong>April</strong> 2<strong>01</strong>8
Column<br />
As Distributed Ledger Technologies move beyond the POC stage to<br />
actual implementation stage, we will see even faster evolution<br />
that matter any DLT is beneficial only<br />
when the chains are big or integrated<br />
to each other. While it’s not really a<br />
technical challenge, given the water<br />
tight compartments of today, it’s an<br />
enormous roadblock to overcome<br />
for a DLT. Hashgraph is planning to<br />
overcome or partially address that<br />
challenge by way of their 39-member<br />
council. If run properly it will take<br />
care of enabling cross-industry discussions<br />
and regulations.<br />
Added to this, Hashgraph’s security<br />
is also claimed to be better than that of<br />
Blockchain. Hashgraph has been proven<br />
to be fully asynchronous Byzantine.<br />
This means that it doesn’t make any<br />
assumption about how fast messages<br />
are passed over the internet and<br />
this makes it resilient against DDoS<br />
attacks, botnets, and firewalls. While<br />
the security in Blockchain was never a<br />
challenge, the Byzantine Consensus of<br />
Hashgraph makes it stronger.<br />
While Hashgraph does seem to<br />
have quite a few advantages over<br />
Blockchain, we cannot say that<br />
Blockchain is a thing of the past and<br />
Hashgraph is the new technology<br />
of the future. I can only predict that<br />
Distributed Ledger Technology (DLT)<br />
is the way to go, but whether it will be<br />
Blockchain or Hashgraph or Tangle<br />
or any other DLT, only time can tell.<br />
They are all evolving and evolving<br />
very fast. As Distributed Ledger<br />
Technologies move beyond the POC<br />
stage to actual implementation stage,<br />
we will see even faster evolution. So<br />
it’s very hard to predict which DLT is<br />
here to stay because tomorrow is truly<br />
another day!<br />
<strong>April</strong> 2<strong>01</strong>8 | <strong>CIO</strong>&<strong>LEADER</strong><br />
9
COLUMN<br />
By Shyamanuja Das<br />
Cambridge<br />
Analytica Case:<br />
Look Beyond<br />
The Scam<br />
While the scam may be the immediate<br />
news, the episode should also serve as a<br />
wake-up call for businesses<br />
T<br />
The author is Managing Editor<br />
at <strong>CIO</strong>&Leader<br />
The Indian media, like its counterpart in<br />
the West, has focused on the supposed<br />
‘scam’ involving Cambridge Analytica<br />
(CA), the UK-based big data firm that<br />
helped in Donald Trump’s victory<br />
through big data analytics.<br />
The controversy started with a remark<br />
by its now-ousted CEO Alexander Nix,<br />
made to undercover Channel 4 News<br />
reporters about how elections can be<br />
influenced through what is very clearly<br />
unfair means, even while taking a<br />
public posture that the company does<br />
not cross the line of ethics. This came<br />
after New York Times and The Observer<br />
published how a UK-based company<br />
Global Science Research (GSR), hired<br />
by Cambridge Analytica, created an<br />
app and collected data from millions<br />
of Facebook users, in what Facebook<br />
claims to be ‘in violation’ of its policies.<br />
Rest assured, we have a lot to see in the<br />
days to come. With GDPR kick-off date<br />
just about two months away, a lot of that<br />
debate may focus on data privacy with<br />
Facebook too as a target. Facebook CEO,<br />
Mark Zuckerberg, has been warned<br />
by authorities in the U.S and Europe<br />
for a possible testimony. Indian IT and<br />
communications minister, Ravi Shankar<br />
Prasad has also warned Facebook of<br />
stringent actions if any wrongdoing<br />
is discovered.<br />
Role in Indian Elections<br />
Prasad’s warning comes after it emerged<br />
that Cambridge Analytica had been<br />
active in India too.<br />
“CA was contracted to undertake an<br />
in-depth electorate analysis for the Bihar<br />
Assembly Election in 2<strong>01</strong>0. The core<br />
challenge was to identify the floating/<br />
swing voters for each of the parties and<br />
to measure their levels electoral apathy,<br />
10 <strong>CIO</strong>&<strong>LEADER</strong> | <strong>April</strong> 2<strong>01</strong>8
Column<br />
a result of the poor and unchanging<br />
condition of the state after 15 years<br />
of incumbent rule. In addition to the<br />
research phase, CA were tasked to<br />
organise the party base at the village<br />
level by creating a communication<br />
hierarchy to increase supporter<br />
motivation. Our client achieved a<br />
landslide victory, with over 90% of<br />
total seats targeted by CA being won,”<br />
the company’s website says.<br />
The 2<strong>01</strong>0 elections in Bihar was won<br />
by Nitish Kumar’s Janata Dal (United)<br />
against Lalu Prasad Yadav’s RJD, bettering<br />
their tally in the previous elections.<br />
Interestingly, CA was established<br />
by its parent company, Strategic<br />
Communications Lab (SCL) in 2<strong>01</strong>3.<br />
However, according to a report by the<br />
website thewire.in, SCL worked with<br />
a Ghaziabad-based company, Ovelene<br />
Business Intelligence (OBI), run by<br />
Amrish Tyagi, the son of senior JD(U)<br />
leader KC Tyagi.<br />
“OBI is Cambridge Analytica’s go-to<br />
company on the ground in the Indian<br />
subcontinent,” says thewire.in report. It<br />
quotes Tyagi junior who explains that<br />
being partners, they can use each other’s<br />
experience while making a pitch.<br />
This suggests that the work in 2<strong>01</strong>0<br />
Bihar elections was carried out by OBI.<br />
What it means is that full five years<br />
before Prashant Kishor’s ‘famed’<br />
election strategy and execution for<br />
JD(U)-RJD’s landslide in 2<strong>01</strong>5 Bihar<br />
assembly elections, the Big Data game<br />
was very much there in India.<br />
With India’s—and specifically<br />
Bihar’s—demographic reality,<br />
Facebook could have helped a little.<br />
So, it is primarily data analytics that<br />
can be credited for this successful show.<br />
I think that is something that is a<br />
takeaway from the entire episode. That<br />
Indian political parties were already<br />
doing this by 2<strong>01</strong>0, full six years<br />
before Trump won using ‘Big Data’<br />
in the US.<br />
It is now well-known that prime<br />
minister Modi too relied on data<br />
analytics (interestingly, same<br />
Prashant Kishor) in his 2<strong>01</strong>4 Lok<br />
Sabha elections. Maybe, he did that<br />
earlier in Gujarat elections too.<br />
In 2009, a strongman in a regional<br />
political party in Eastern India<br />
(who later fell out with his leader)<br />
used scientific data collection and<br />
juxtaposing that, with publicly<br />
available data, such as Census data<br />
and data from National S<strong>amp</strong>le<br />
Survey Organization, to create<br />
successful election strategies for his<br />
party. The party severed its ties with<br />
one of the national parties and came to<br />
power on its own in the elections.<br />
So, even in the muddy, free-for-all<br />
politics in India, political parties have<br />
started relying on data analytics,<br />
using both scientific data collection as<br />
well as making good use of publicly<br />
available data.<br />
According to report by<br />
Moneycontrol.com, Cambridge<br />
Analytica itself had started focusing<br />
on the 2<strong>01</strong>9 General Elections by<br />
being “in talks with a large opposition<br />
party in India” and had even made a<br />
presentation to the party in August.<br />
The report says it had “etched a datadriven<br />
strategy to target voters on<br />
social media, analyzing online user<br />
behaviour and connecting the dots<br />
across different citizen databases.”<br />
Where businesses lag<br />
All this raises an obvious question.<br />
Does this mean political parties are<br />
ahead in the Big Data game?<br />
In terms of usage of analytics tools,<br />
probably not. But one of the areas<br />
where political parties seem to have a<br />
clear lead is in using open data—or any<br />
publicly available data, for that matter.<br />
There could be four major sources of<br />
data for a business:<br />
1. Internally available data<br />
2. New data collected through custom<br />
research<br />
3. External data available publicly free<br />
or for a price and now<br />
4. Social media data, which is updated<br />
in real time.<br />
Out of the four, businesses have been<br />
focused mostly on the first two while<br />
Many<br />
businesses<br />
think unless<br />
they throw some<br />
big money and<br />
hire a big name<br />
to spend some<br />
time with, they<br />
cannot get any<br />
value out of<br />
their data<br />
the fourth has been the Holy Grail. But<br />
most of them have ignored the third<br />
one—publicly available data, that can<br />
add immense value to the businesses<br />
if analyzed in conjunction with their<br />
internal or research data.<br />
The social sector has been doing a lot<br />
of work using that data.<br />
“Many businesses think unless they<br />
throw some big money and hire a big<br />
name to spend some time with, they<br />
cannot get any value,” says a digital<br />
marketing executive and an open data<br />
enthusiast, rather bitterly.<br />
The whole thing provides the<br />
businesses with an opportunity to open<br />
their eyes to the possibilities that the<br />
political parties have already sensed.<br />
You do not have to steal data for<br />
that. You just have to think outsidein.<br />
Interestingly, the ability to do that<br />
has come as a strong pre-requisite<br />
for the digital leaders, in a research<br />
we have just completed on digital<br />
transformation in Indian companies.<br />
You may make or get amused by<br />
a smart, sarcasm-laden Twitter<br />
comment and move ahead, but it is<br />
also not such a bad idea to pause a bit<br />
and focus on the possibilities<br />
<strong>April</strong> 2<strong>01</strong>8 | <strong>CIO</strong>&<strong>LEADER</strong><br />
11
Cover Story<br />
12 <strong>CIO</strong>&<strong>LEADER</strong> | <strong>April</strong> 2<strong>01</strong>8
Cover Story<br />
How to create a thriving partnership and derive<br />
business value, resulting in a win-win for both.<br />
By Shubhra Rishi<br />
This month, Bhavish Aggarwal made it to Time's 100 list: a list of 100<br />
most influential people in the world. There are very few people in IT<br />
circles who don't know Aggarwal. He is the co-founder and CEO of<br />
Ola Cabs, who gave India its first app-based taxi service. The startup<br />
idea may not have been unique because it was almost a year after<br />
Uber (formerly UberCab) had already launched (March 2009) in California,<br />
United States but it still gave urban Indians the convenience and comfort of<br />
ordering a cab service on a mobile app. Since then, the Indian tech industry has<br />
never been the same. The last decade may have seen the rebirth of the start-up<br />
ecosystem in the country with a more sustainable business model in the form<br />
of venture capital.<br />
According to a Nasscom Start-up Report published last year, over 1,000 new<br />
starts-ups joined the start-up ecosystem in 2<strong>01</strong>7, taking the total number of technology<br />
start-ups to nearly 5,200. The B2C focused start-ups like Ola Cabs, have<br />
always found favor in the form of funding and have continued to garner 1.5x more<br />
average funding value vis-a-vis B2B start-ups, which increased from 27% in 2<strong>01</strong>6<br />
to 31% in 2<strong>01</strong>7, according to the report.<br />
However, the year 2<strong>01</strong>7 is illustrative of a trend that has been in the making for<br />
the last few years. A trend that has observed an exponential growth of start-ups<br />
with B2B focus - with more than 47% of start-ups out of the 1,000 selling technology<br />
to enterprises. According to the report, this share of B2B start-ups was higher<br />
than B2B share in the overall start-up base of 40 percent. Clearly, the enterprise<br />
product emerges as the top vertical for B2B start-ups, followed by fintech, health<br />
tech and e-commerce.<br />
Not every<br />
start-up idea<br />
must result in<br />
a big business<br />
opportunity;<br />
some can be<br />
just strategic<br />
initiatives<br />
<strong>April</strong> 2<strong>01</strong>8 | <strong>CIO</strong>&<strong>LEADER</strong><br />
13
Cover Story<br />
According to Gartner's 2<strong>01</strong>4 agenda,<br />
The IT core — infrastructure, applications,<br />
information and sourcing — was<br />
built for the IT past. <strong>CIO</strong>s report much<br />
of their new technology spending going<br />
towards improving core systems and<br />
capabilities and needed renovations to<br />
ensure fit for purpose and being “digital<br />
ready” include moving to a more<br />
loosely coupled “postmodern-ERP”<br />
paradigm, deploying public and private<br />
clouds, creating the information<br />
architecture and capabilities to exploit<br />
big data, and augmenting conventional<br />
sourcing with more innovation, including<br />
sourcing from, and partnering<br />
with, smaller and less mature enterprises.<br />
By "partnering with, smaller<br />
and less mature enterprises", Gartner<br />
was referring to SMB/start-up engagement<br />
and agile development as a solution<br />
to addressing the dual need to<br />
simultaneously renovate the core of IT<br />
systems and services, and exploit new<br />
technology options.<br />
A few years ago when we spoke to<br />
enterprise <strong>CIO</strong>s in India they didn't<br />
seem kicked about the benefits of working<br />
with technology start-ups. One of<br />
For a startup,<br />
working on a<br />
technology problem<br />
is one thing, but<br />
creating a business<br />
case is another.<br />
Kamal Karnatak<br />
Group <strong>CIO</strong>, RJ Corp.<br />
the main reasons for this reluctance to<br />
give B2B focused start-ups a chance was<br />
the lack of trust in the start-ups' ability<br />
to sustain themselves. A success or sustainability<br />
of a start-up or a unicorn was<br />
but a candle in a wind for an enterprise<br />
<strong>CIO</strong>. Even if the start-up could prove the<br />
viability of its product, the enterprise<br />
<strong>CIO</strong> was unable to prove it to business.<br />
A lot of enterprises conducted<br />
pilots with start-ups (and still do) but<br />
wouldn't talk about it. Some of these<br />
<strong>CIO</strong>s belonged to innovation-centric<br />
organizations where they believe<br />
that they can learn a great deal from<br />
start-ups, and inculcate or maintain a<br />
culture of openness and change within.<br />
These enterprises and their <strong>CIO</strong>s<br />
were the early adopters of this trend,<br />
and the ones who built a framework<br />
early on that allowed them to work<br />
with start-ups in the best possible way.<br />
However, these organizations kept<br />
this 'relationship' a low key affair until<br />
it became fashionable to talk about<br />
the 'association'- and until the digital<br />
transformation wave hit them hard.<br />
The folks at Bajaj Auto were way<br />
ahead of the curve.<br />
#When an enterprise<br />
can work with a start-up<br />
and not worry about its<br />
sustainability or financials<br />
Organization: Bajaj Auto<br />
Start-ups: Universal Robots,<br />
GladMinds, Altisource<br />
Outcome: Achieve<br />
automation, and efficiency<br />
improvement<br />
A start-up may not be<br />
able to create a legible<br />
business case. That's<br />
where enterprises can<br />
play a huge role<br />
A 72-year old flagship brand of Indian<br />
conglomerate Bajaj Group, Baja Auto<br />
is one of largest two-wheeler and<br />
three-wheeler manufacturer in the<br />
world. Despite being one of the oldest<br />
family run businesses in India,<br />
innovation has always been part of<br />
the company's DNA. The company's<br />
engagement with start-ups began in<br />
2<strong>01</strong>0 when they realized the need to<br />
automate and digitize their assembly<br />
lines. The company deployed cobots or<br />
collaborative robots, a patented technology<br />
offered by Universal Robots,<br />
a Danish manufacturer that has just<br />
launched UR5, a six-jointed articulated<br />
arm robot and was expanding<br />
its base in Europe, and didn't launch<br />
business in India until 2<strong>01</strong>6.<br />
According to Pradeep David, CTO<br />
at Universal Robots, Bajaj Auto saw a<br />
gradual rise in the productivity and<br />
efficiency in their production. It also<br />
increased the productivity of their<br />
employees along with their product<br />
quality. As a result, employees could<br />
easily program and set up these low<br />
cost robotic arms with 3D visualization.<br />
The actions of the robot are controlled<br />
and programed by a touch pad<br />
or by simply moving the robot arm to<br />
show the desired path of movement.<br />
The three-wheeler manufacturer<br />
has deployed over 150 cobots since<br />
2<strong>01</strong>0 and is now among the largest<br />
motorcycle manufacturer in the<br />
world. They are of the view that the<br />
added benefits of the cobots are easy<br />
use, very low annual maintenance and<br />
higher energy efficiency.<br />
Vikas Sawhney, General Manager<br />
Engineering (Robotics and Automa-<br />
14 <strong>CIO</strong>&<strong>LEADER</strong> | <strong>April</strong> 2<strong>01</strong>8
Cover Story<br />
Sometimes<br />
you don't see the<br />
problem till an<br />
outsider comes and<br />
shows you a better<br />
way of doing it.<br />
Rajeev Jorapur<br />
VP-MIS, Bajaj Auto<br />
tion) at Bajaj Auto, who oversaw the<br />
deployment, said of the implementation<br />
that they chose Universal Robots<br />
primarily due to the collaborative<br />
nature of the robots. "The key benefits<br />
of Universal Robots’ products such<br />
as their compactness, low pay back<br />
period, flexibility, light weight, costeffectiveness,<br />
accuracy and their safety,<br />
is what ultimately convinced Bajaj<br />
Auto about the suitability of Universal<br />
Robots for its standardized offerings,"<br />
said Sawhney.<br />
Universal Robots wasn't the only<br />
start-up that Bajaj Auto worked with.<br />
According to Rajeev Jorapur, VP-<br />
MIS at Bajaj Auto, start-ups offer an<br />
exciting model of partnership that is<br />
very difficult to get from most other<br />
partners. Their focus is on the task<br />
and to make it happen. They are<br />
driven by passion and are more entrepreneurial<br />
in nature.<br />
"Most start-ups are sharply focused<br />
and they don't have width that you<br />
expect with more established companies.<br />
Thus, you must carefully choose<br />
them with the purpose you have in<br />
mind. We won't be worried about their<br />
sustainability or how strong they are<br />
financially. We believe we would be<br />
able to handle that part," said Jorapur.<br />
The automaker was looking to simply<br />
the manual process of sending the<br />
service coupons to Bajaj Auto every<br />
time the customer visited the dealer<br />
for vehicle servicing.<br />
Jorapur said that it was crucial for<br />
the manufacturer to carefully record<br />
the timeframe within which the vehicle<br />
was brought in for servicing. In the auto<br />
world, customers must get their new<br />
vehicles serviced within a month of purchase<br />
in order to ensure that the product<br />
has a long run. There was no way of<br />
knowing whether the customer or the<br />
dealer followed the process completely.<br />
With this resolve in mind, Bajaj Auto<br />
went through careful assessment and<br />
selected GladMinds Technologies, a<br />
cloud based start-up providing CRM<br />
services. After the deployment of the<br />
solution, the paper-based coupon<br />
system was replaced by a unique digital<br />
token system and was given to the<br />
customer every time he/she brought<br />
his/her new vehicle for servicing at the<br />
dealer's shop.<br />
Jorapur said that sometimes you<br />
don't see the problem till an outsider<br />
comes and shows you a better way<br />
of doing it.<br />
In 2<strong>01</strong>5, the automaker partnered<br />
with an IoT start-up.<br />
At the time, a lot of manufacturing<br />
processes at Bajaj Auto were<br />
performed by external vendors at the<br />
company’s assembly plants. A vendor<br />
would communicate the production<br />
details at a pre-decided frequency but<br />
if machines could tell how they were<br />
performing without human interaction,<br />
not only would the manual effort<br />
at collecting information would go<br />
away and info would come directly<br />
from machines and would be more<br />
timely and reliable than somebody<br />
communicating it.<br />
“With this hypothesis, we<br />
approached the start-up, who helped<br />
us eliminate the manual channels and<br />
helped us plan our maintenance in a<br />
more robust manner,” said Jorapur.<br />
In the last four years, the company<br />
has evaluated over 50 start-ups, performed<br />
POC on 10 start-ups and are<br />
closely working with five start-ups on<br />
fully operational projects.<br />
“Most of our time is consumed in<br />
conducting background checks, financial<br />
analysis and performing due diligence<br />
– that is where most of our effort<br />
and energy is spent,” said Jorapur.<br />
#When an enterprise and<br />
a start-up can work together<br />
on resolving specific<br />
business problems<br />
Organization: ONGC<br />
Start-ups: Undisclosed<br />
Outcome: Inculcate<br />
innovation in business and<br />
eliminate critical business<br />
problems<br />
Some start-ups are only interested in increasing their<br />
own evaluation. You must gauge the motive of such<br />
organizations early on<br />
<strong>April</strong> 2<strong>01</strong>8 | <strong>CIO</strong>&<strong>LEADER</strong><br />
15
Cover Story<br />
The Rise of the B2B start-ups<br />
B2B v/s B2C focus on start-ups<br />
B2B v/s B2C focus across verticals<br />
Source: Nasscom-Zinnov Start-up report 2<strong>01</strong>7<br />
2<strong>01</strong>7<br />
Total base:<br />
5000-5200<br />
2<strong>01</strong>6<br />
77%<br />
2<strong>01</strong>7<br />
New start-up<br />
additions: 1000<br />
B2c<br />
B2B<br />
73%<br />
40%<br />
13% start-ups both B2B & B2C<br />
14% start-ups both B2B & B2C<br />
59% 47%<br />
6% start-ups<br />
both B2B & B2C<br />
37%<br />
B2B share from<br />
34%in 2<strong>01</strong>6<br />
Verticals<br />
Aggregators/eCommerce<br />
Enterprise Product<br />
Health-Tech<br />
Fintech<br />
Food Tech<br />
B2c<br />
92% 19%<br />
1%<br />
100%<br />
87%<br />
26%<br />
70%<br />
49%<br />
98%<br />
8%<br />
B2B<br />
In 2<strong>01</strong>6, ONGC launched an INR 100<br />
crore Start-up fund to foster, nurture<br />
and incubate new ideas related to oil<br />
and gas sector. The aim of the ONGC<br />
Start-up initiative is to provide the<br />
entire support chain for start-ups<br />
including seed capital, hand-holding,<br />
mentoring, market linkage and followups.<br />
It is also to increase the contribution<br />
of fresh implementable ideas in<br />
the oil and gas sector. ONGC had also<br />
set-up a dedicated portal to take this<br />
initiative forward.<br />
The company invited technology<br />
start-ups to submit their proposals<br />
for business cases (purely business<br />
related or with IT intervention) on the<br />
portal. “There were 70-80 business<br />
cases and they were left to select one or<br />
more based on their area of expertise,”<br />
said Alok Khanna, Executive Director<br />
– IS, ONGC.<br />
After a tedious selection process<br />
of evaluating the proposal comprising<br />
a three tier interview process where<br />
start-ups showcased their technical<br />
and financial viability, the company<br />
selected around 11-12 start-ups to<br />
work on specific business problems.<br />
“One major advantage of working<br />
with start-ups is that they work dedicatedly<br />
on your business case<br />
and if the project succeeds, then the<br />
company will sponsor the project<br />
for a full blown implementation.<br />
What enterprise lack in domain<br />
knowledge, start-ups have in abundance,”<br />
said Khanna.<br />
“Budgeting and funding a start-up<br />
is not an issue— once you have committed<br />
to working with the start-up,<br />
even if IT doesn't have the implementation<br />
budget, business does, and will<br />
fund the project,” he added.<br />
End result: even if 20% start-up<br />
projects are successful, it means that<br />
we have been able to cut down our<br />
business problems.<br />
“We won’t be able to share specifics<br />
of start-ups as all these projects are at<br />
different stages of implementation,”<br />
said Khanna.<br />
#When an enterprise<br />
and a start-up can work<br />
together to improve the<br />
speed of execution of IT<br />
Organization: RJ Corp<br />
Start-ups: Undisclosed<br />
Outcome: Improve<br />
productivity and efficiency<br />
The Gurgaon-based drinks and foods<br />
group RJ Corp is a USD1.1 billion conglomerate.<br />
Its flagship brand, Varun<br />
Beverages is Pepsico’s second-biggest<br />
bottler and its fast-food outfit Devyani<br />
International has 500 retail outlets for<br />
Even if 20% start-up<br />
projects are successful, it<br />
means that we were able<br />
to cut down our business<br />
problems significantly.<br />
Alok Khanna, Executive Director – IS,<br />
Oil and Gas Corporation (ONGC)<br />
16 <strong>CIO</strong>&<strong>LEADER</strong> | <strong>April</strong> 2<strong>01</strong>8
Cover Story<br />
brands such as KFC, Pizza Hut, Costa<br />
Coffee and TWG Tea.<br />
With multiple brands at disposal,<br />
there is no dearth of opportunity for<br />
the company to improve the productivity<br />
and efficiency of its vast-spread<br />
businesses. There is also a huge scope<br />
of innovation at the heart of RJ Corp<br />
and the company believes in quick<br />
decision- making when it comes to IT.<br />
According to its Group <strong>CIO</strong>, Kamal<br />
Karnatak, it has been collaborating<br />
with start-ups in the areas of data analytics,<br />
video analytics, machine learning<br />
and artificial intelligence, for the<br />
last three years.<br />
“It doesn’t matter if there was<br />
an IT project or not or if we had the<br />
budget for it but if you can create a<br />
business case, you can implement the<br />
idea.” Karnatak , who is a pursuing<br />
a research doctorate from IIT, Delhi,<br />
has a long history of association with<br />
start-ups, and mentors them from<br />
time to time.<br />
“An advanced start-up is always<br />
looking for a means to enter the enterprise<br />
market. They are ready to experiment,<br />
learn and understand your<br />
business, as well as gain exposure of<br />
their own solution,” said Karnatak.<br />
When it comes to working with<br />
start-ups, the conglomerate’s only<br />
motive is solving business problems<br />
quickly - within a short span of six<br />
months to one year.<br />
“Unlike traditional partners who<br />
spend a lot of planning and excuting a<br />
project, a start-up takes less than half<br />
of that time. Some start-ups are only<br />
interested in increasing their own<br />
evaluation. You can gauge the motive<br />
of such organizations,” said Karnatak.<br />
Take for instance, the conglomerate<br />
was using an old analytics platform to<br />
generate reports. However, their Area<br />
Sales Manager (ASM) didn’t have<br />
access to the platform due to huge<br />
licensing costs. To solve this problem,<br />
they worked with a data analytics<br />
start-up who provided a platform that<br />
not only granted access levels to ASMs<br />
but enabled an analytics interface to<br />
generate these reports.<br />
Similarly, the company also worked<br />
with a machine learning/ AI start-up<br />
to help them predict the sale of next 14<br />
days with an 85-90% o accuracy rate.<br />
With the Nike brand, the company is<br />
trying to measure the sales per store<br />
using the same start-up. This is evident<br />
of the fact that the same start-up<br />
was able to find multiple use cases<br />
within the same organization.<br />
In their work with a video analytics<br />
start-up, the primary purpose was to<br />
track footfalls in a single store. However,<br />
Karnatak asked the start-up to<br />
help them gather more data on their<br />
customers – the time they spend in the<br />
store, the ratio of male to females who<br />
We regularly reach out<br />
to new and innovative startups<br />
via referrals, technology<br />
forums, incubators and<br />
innovation summits.<br />
Nitin Chugh<br />
head-digital banking, HDFC Bank<br />
Start-ups should not<br />
compromise on their<br />
business ethos and cultures<br />
went for trials, etc – and integrate it<br />
with the sales system.<br />
“We are internal sellers for startups,<br />
and we need to make sure that<br />
we are able to mould the start-ups<br />
and help them create a typical business<br />
case that will generate business<br />
value,” said Karnatak.<br />
In short, “If I can show the value of<br />
5 crore, I can get a budget allocation of<br />
1 crore,” he added.<br />
#When an enterprise<br />
and a start-up can work<br />
together and grow together<br />
Organization: HDFC Bank<br />
Start-up(s): Niki.ai<br />
Outcome: Create new<br />
channel for doing business<br />
and improve customer<br />
experience<br />
HDFC Bank launched a new Facebook<br />
Messenger chatbot, OnChat. It was<br />
created in partnership with Niki.ai, a<br />
2<strong>01</strong>5 AI start-up. The chatbot can help<br />
customers pay utility services like<br />
bill payments and mobile recharges,<br />
make cab, bus and movie bookings.<br />
So far, the largest private sector bank<br />
has observed 160% month-on-month<br />
growth in transactions since its launch<br />
in December 2<strong>01</strong>6, and has over 2.4<br />
million messages.<br />
The number of repeat users, which<br />
is close to 34%, further bolsters the confidence<br />
in conversational banking. The<br />
Messenger chatbot also opened up yet<br />
another channel for customer acquisition,<br />
with nearly 25% of OnChat users<br />
being non-HDFC Bank customers.<br />
<strong>April</strong> 2<strong>01</strong>8 | <strong>CIO</strong>&<strong>LEADER</strong><br />
17
Cover Story<br />
Collaborating with a start-up, if the business can<br />
show the value of INR 5 crore, it can get a budget<br />
allocation of INR 1 crore<br />
Niki.ai is not the bank’s first<br />
engagement with a start-up. The<br />
bank started recruiting start-ups<br />
three years ago and has a clear<br />
selection framework in place that<br />
makes it easier to weed out solutions<br />
that don’t fit the bill.<br />
“We regularly reach out to new<br />
and innovative start-ups via referrals,<br />
technology forums, incubators and<br />
summits. Every year, we invite over 50<br />
start-ups to a technology theme-based<br />
Innovation Summit. Niki.ai along<br />
with 10 other start-ups, was chosen<br />
through a multi-layered selection<br />
process,” said Nitin Chugh, headdigital<br />
banking at HDFC Bank.<br />
“We have implemented another<br />
chatbot for employees, on our website,<br />
and these chabots have offered us<br />
great customer insights and learning<br />
experiences. With OnChat, we thought<br />
if customers are spending more time<br />
on Facebook messenger, can the bank<br />
be there?” added Chugh.<br />
The chatbot implementation with<br />
Niki.ai isn’t a one-time engagement.<br />
The start-up will continue to relevant<br />
insurance, banking, and stock broker<br />
use cases to strengthen its natural<br />
language processing capabilities<br />
that will help in cross-selling and<br />
up-selling to their customers.<br />
Last year, Niki.ai released a<br />
Software Development Kit (SDK) for<br />
businesses to enable conversational<br />
commerce on their mobile and web<br />
apps. Since then, the start-up has<br />
garnered a lot of interest from<br />
multiple enterprises.<br />
According to Sachin Jaiswal,<br />
Co-founder and CEO, Niki.ai, “HDFC<br />
is a progressive organization. Any<br />
kind of validation that a client gives<br />
to its service provider is a big deal<br />
because it builds credibility and<br />
builds our business."<br />
Especially, if the service provider is<br />
a start-up.<br />
It is true that enterprises aren’t<br />
comfortable with sharing names of<br />
the start-ups that they work with<br />
– until after the implementation.<br />
Understandably, most organizations<br />
would rather share a success story<br />
Working with<br />
large enterprises<br />
requires start-ups to<br />
have a better cash<br />
flow and ensure that<br />
their product quality<br />
is great, especially<br />
when you are trying<br />
to scale<br />
Sachin Jaiswal<br />
Co-founder and CEO, Niki.ai<br />
rather than a failed implementation.<br />
In 2<strong>01</strong>7, the start-up mortality rate was<br />
20% to 25%., with a majority of them<br />
closing down within 1.6 to 1.9 years<br />
of inception.<br />
The last three years have taught<br />
Jaiswal a few lessons too.<br />
He said, "before you interact with<br />
the client, a start-up must ensure:<br />
Whether you understand the market<br />
Whether there is a need for the<br />
product<br />
Timeline, effort, cost estimate, mark<br />
up client is willing to pay."<br />
“Most start-up players go with an<br />
open mind. However, it helps to be<br />
confident about the maturity of their<br />
product before you approach a large<br />
scale organization. There will be<br />
companies willing to experiment with<br />
a less than mature start-up, but the<br />
probability will be lesser,” he added.<br />
“Working with large enterprises<br />
requires start-ups to have a better<br />
cash flow management process and<br />
ensure that their product quality is<br />
impeccable if, as a start-up, you are<br />
trying to scale. That fundamental<br />
hasn't changed. You have to realize<br />
that what is the market that you are<br />
after and you have to cater to that<br />
market,” said Jaiswal.<br />
Additionally, Jaiswal said that<br />
start-ups you must have a clear cut<br />
understanding of what their business<br />
model is. “If you are a client servicing<br />
business, you will latch on to every<br />
opportunity that will add to your<br />
top-line but if you are a technology<br />
provider, then you must know when to<br />
exit the conversation.”<br />
The truth is, it is the people<br />
18 <strong>CIO</strong>&<strong>LEADER</strong> | <strong>April</strong> 2<strong>01</strong>8
Cover Story<br />
working in the start-ups that make<br />
them attractive to large enterprises.<br />
<strong>CIO</strong>s are always looking for a fresh<br />
wave of talent among their midst,<br />
which helps them to innovate, to<br />
inspire internal employees, and to<br />
implement a technology product in a<br />
short span of time.<br />
Despite the pressure of digital<br />
transformation and the compelling<br />
need to work with start-ups, large<br />
enterprise <strong>CIO</strong>s need to be certain of<br />
a start-up's intention. Organizations<br />
should be able to gauge that early on<br />
if it is just a marriage by association.<br />
Many a times, a start-up may display<br />
lack of transparency based on past<br />
experiences of having been taken<br />
advantage of, which makes it difficult<br />
for them to accurately assess a startup’s<br />
product or service, and may<br />
ultimately, face rejection.<br />
It is the job of the start-up to<br />
understand the requirements of<br />
the business. Most start-ups are<br />
rejected because of their failure to<br />
present a viable business case for the<br />
organization. In situations like these,<br />
it is the <strong>CIO</strong>'s or the business head's<br />
prerogative to advise and mentor the<br />
start-up in a direction that helps them<br />
to churn out a success story.<br />
All said, a leap<br />
of faith goes a<br />
long way in any<br />
partnership<br />
Like HDFC Bank, many large<br />
organizations host competitions,<br />
hackathons, and events for start-ups<br />
around a particular technology or a<br />
theme. These events provide the<br />
right kind of exposure and the<br />
opportunity to interact, meet faceto-face,<br />
and display maturity that<br />
opens doors to new relationships and<br />
business partnerships.<br />
In the last three years, digital<br />
transformation has been the driving<br />
force for many large organizations to<br />
seek greener pastures for talent, ideas<br />
and technology. As a result, <strong>CIO</strong>s and<br />
their organizations are opening their<br />
doors to innovation and new forms of<br />
collaboration with start-ups.<br />
Companies such as RJ Corp,<br />
Bajaj Auto, HDFC Bank, and ONGC,<br />
are only a few ex<strong>amp</strong>les of large<br />
organizations that are committed to<br />
working with start-ups and in the<br />
last 3-4 years, have kept a consistent<br />
dialogue with the start-ups that they<br />
have worked with in the form of<br />
product upgrades, new business, and<br />
building relationships with them.<br />
Start-ups also should understand<br />
that they must preserve their business<br />
models and stay true their DNA. A<br />
lot of organizations employ the same<br />
tedious assessment process that they<br />
do for other technology partners. As a<br />
result, they expect start-ups to tow the<br />
line and adjust to implementing a little<br />
'extra' on the side. In such cases, startups<br />
must be clear about the business<br />
they are in, and how must they are<br />
willing to accommodate. However, a<br />
lot of start-ups also see this as a form<br />
of additional business opportunity<br />
that will help them mature their<br />
products and make them more<br />
attractive to big customers.<br />
Start-ups have to overcome their<br />
fear of being let down. Many complain<br />
that they are made to work with teams<br />
at large organizations that pose as<br />
innovation centres, and the technology<br />
solution never sees the light of day.<br />
Therefore, organizations and<br />
start-up must clearly define this<br />
We have a total<br />
of 70 clients in<br />
India; Bajaj being<br />
our number one<br />
client with having<br />
deployed 150 so<br />
far. They have been<br />
buying cobots since<br />
2<strong>01</strong>0. Thanks to<br />
them, the top 5 twowheelers<br />
are using<br />
our technology.<br />
Pradeep David,<br />
CTO, Universal Robots<br />
partnership and set up deadlines<br />
for product planning and execution<br />
– even if it means shorter timelines<br />
for a 3-month long technology<br />
implementation. Large organizations<br />
must also appoint people who<br />
understand the start-up ecosystem<br />
and work towards building trust and<br />
creating continuous engagement.<br />
Partnerships demand a lot of time<br />
and investment. Therefore, once you<br />
take the plunge, start-ups and large<br />
enterprises must work together to<br />
sort out their differences at every step<br />
of the way, respect boundaries, and<br />
co-develop innovative new solutions<br />
that better serve their customers – just<br />
like a dream team playing to win<br />
<strong>April</strong> 2<strong>01</strong>8 | <strong>CIO</strong>&<strong>LEADER</strong><br />
19
FACE OFF<br />
// Is ROI becoming<br />
outdated for technology<br />
investments?<br />
For years, IT leaders have treated<br />
Return on Investment (ROI) as<br />
testament of a successful IT initiative.<br />
For most <strong>CIO</strong>s, realizing a hard ROI<br />
wasn’t always easy and it wasn’t<br />
necessary that every implementation<br />
had to result in a profit or a loss. In<br />
many cases, companies or <strong>CIO</strong>s can<br />
find that there isn’t any significant<br />
or tangible ROI associated with an<br />
implementation. These limitations can<br />
result in professional embarrassment<br />
for the IT leader.<br />
Over the years, businesses have<br />
gradually realized the importance<br />
of strategic investments without<br />
expecting any considerable tangible<br />
gains. In the digital era, however, the<br />
return on technology investment is<br />
calculated unlike the standard way of<br />
estimating ROI.<br />
Take for instance; value over<br />
investment (VoI) is more of a pay per<br />
Quick View<br />
Ajay Kumar Meher, says, in<br />
the age of digitalization, ROI is no<br />
longer calculated the same way it<br />
used to be earlier<br />
use model. So, organizations<br />
today are paying based on<br />
their usage of a technology,<br />
and replacing it with a<br />
superior option in case<br />
they get a better or cheaper<br />
technology at any moment<br />
Ajay Kumar<br />
Meher<br />
SVP & Head, IT<br />
& Post Production,<br />
Set India Pvt. Ltd.<br />
of time. With the easy exit<br />
option available, these investments<br />
are broadly driven by ‘value’ of the<br />
investment rather than ‘return’<br />
on investment.<br />
The other type of ROI that digital<br />
organizations are investing in today<br />
is known as futuristic investments.<br />
These investments are made primarily<br />
to build the digital backbone of<br />
an organization, and to enable<br />
business. Business enablement-based<br />
investment in digital technologies<br />
such as machine learning, Robotics,<br />
big-data or IoT, can result in revenue<br />
growth opportunities.<br />
The purpose of ‘building the digital<br />
backbone’- type of investments, is<br />
primarily to strengthen the core of<br />
an organization. This is to say that<br />
organizations should look at this as a<br />
capability enhancement tactic rather<br />
than a ROI based investment.<br />
The truth is technology investments<br />
should be strategic, and not tactical<br />
"The ROI<br />
on tech is<br />
calculated<br />
unlike the<br />
standard way<br />
of estimating<br />
ROI"<br />
20 <strong>CIO</strong>&<strong>LEADER</strong> | <strong>April</strong> 2<strong>01</strong>8
Face Off<br />
Ashok Jade<br />
<strong>CIO</strong>, Shalimar<br />
Paints<br />
"ROI is<br />
still a valid<br />
framework<br />
to gauge<br />
technology<br />
investments"<br />
Shalimar Paints has more than a<br />
century-old legacy and rich heritage.<br />
It was established in 1902, and is<br />
country’s first paint company in the<br />
field of paints and coatings. Being<br />
the oldest paint company, it was<br />
very essential for us to use technology<br />
to our advantage in order to<br />
compete in the market. The successful<br />
use of technology has always<br />
benefited us to remain in market<br />
despite tough competition.<br />
If we look back to the journey of IT<br />
transformation in Shalimar Paints<br />
for the past couple of years, we spent<br />
initial years strengthening our core<br />
systems like ERP and our core business<br />
processes. As ERP aged, we<br />
started investing in systems such<br />
as CRM, PLM and so on, and our<br />
journey further moved towards new<br />
technologies such as Mobility, Analytics,<br />
BPM, Cloud etc. Today, we<br />
have started evaluating how we can<br />
invest in IoT, VR and get business<br />
ahead of completion.<br />
Last financial year was the year<br />
of digitization for Shalimar Paints.<br />
Our IT investments have increased<br />
more on new technologies while<br />
balancing core systems such as ERP<br />
and CRM.<br />
Today, there isn’t much difference<br />
between innovation and enterprise<br />
IT projects. However, innovation<br />
projects demand more freedom<br />
to fail than business-as-usual infrastructure<br />
projects. I believe that ROI is<br />
important for both, and its relevance<br />
while making technology investment<br />
decisions helps a lot. Take for instance,<br />
investing in IoT may not give you<br />
Quick View<br />
Ashok Jade, <strong>CIO</strong>, Shalimar<br />
Paints, says, ROI on tech<br />
investments can be in the form<br />
of intangibles<br />
immediate result but once the entire<br />
ecosystem is integrated around IoT<br />
then we will certainly create more benefits<br />
and business value…<br />
I believe that ROI is still a valid framework<br />
to gauge technology investments.<br />
My experience is that many people do<br />
not define exact meaning of returns.<br />
The ROI could be in different forms<br />
such as profit or cash or even in other<br />
forms such as efficiency, productivity,<br />
customer delight and so on… <strong>CIO</strong>s<br />
should able to convert these in some<br />
measurable form or numbers.<br />
However, I do agree that ROI cycles<br />
have become shorter and technology is<br />
one of the reasons for this. Technology<br />
has changed market dynamics. As a<br />
result, every organization wants to be<br />
ahead of competition<br />
<strong>April</strong> 2<strong>01</strong>8 | <strong>CIO</strong>&<strong>LEADER</strong><br />
21
POINT OF VIEW: Ctrl-S<br />
“Over 200 innovations<br />
led to the creation<br />
of the most energy<br />
efficient data center”<br />
An interview with Sridhar Pinnapu Reddy, Founder &<br />
CEO, Ctrl-S, on the launch of Tier 4 DC in Bangalore<br />
C<br />
CtrlS Datacenters has launched a Tier-4 Data<br />
center in Bangalore, assessed as one of the largest<br />
Tier-4 data centers in South India. The facility is<br />
expected to provide India’s growing tech giants<br />
with reliable, robust data management and distribution<br />
networks, with near zero downtime, 100%<br />
redundancy and industry’s lowest PUE.<br />
The company has five data centers in the country<br />
(Four Tier-4 Datacenters and one Tier-3 Data<br />
center). The Tier-4 data centers are spread across<br />
Hyderabad, Mumbai, Noida and the Bangalore<br />
facility. Another Tier—3 datacenter is located in<br />
Chennai. It’s data center footprint across the country<br />
spans over half-a-million square feet and has a<br />
rack capacity exceeding 10,000.<br />
You recently launched the Bangalore<br />
Tier 4 DC. Tell us about your<br />
journey so far.<br />
Actually, very interesting. Eleven years ago, when<br />
I started thinking about Ctrl-S, everyone I spoke to,<br />
asked me only one question: Sridhar, what makes<br />
you think you can be successful in this business?<br />
The top five three brands are in the same<br />
business, but they are multibillion dollar<br />
conglomerates. To answer that question, puts my<br />
business plans behind by almost six months. Soon<br />
I realized that I have to be significantly better than<br />
them to be able to co-exist in this business. Add to<br />
that, significantly better quality, much lower prices<br />
plus a lot more flexibility which the larger players<br />
could not offer. In a way, this gives our customers a<br />
competitive advantage.<br />
This was a biggest challenge, at the same time I<br />
had to satisfy my investors and shareholders. So<br />
that’s the kind of a background with which we<br />
started. Obviously it was a huge challenge—you<br />
know whenever there is a challenge something<br />
significant has to come out. That’s what happened<br />
in Ctrl-S, and that’s how we started Tier 4 Data<br />
Center. Today we have enabled over 200 innovations<br />
which led to the creation of the most energy<br />
efficient data center.<br />
Today Ctrl-S is the world’s only LEED platinum<br />
certified data center company. It led to innovations<br />
such as, disaster recovery as a service, community<br />
clouds and as a result, not only were we able to<br />
survive the competition, but we became the market<br />
leaders in terms of growth rates, in terms of presence,<br />
in terms of occupancy levels; in all aspects, we<br />
became the market leader.<br />
Right now, we are present in almost all the<br />
important Indian cities . We have the presence<br />
and we are geared to capture the full potential<br />
Indian enterprises have to offer. Not only that,<br />
three years ago, we embarked on a bold and ambi-<br />
22 <strong>CIO</strong>&<strong>LEADER</strong> | <strong>April</strong> 2<strong>01</strong>8
Sridhar Pinnapu Reddy, Ctrl-S<br />
Interview<br />
"We are able to<br />
provide services from<br />
thirty-six locations<br />
globally in about<br />
eighteen countries."<br />
in this industry has invested in people in establishing a digital<br />
defense center within our service delivery networks. We<br />
have put together a large team to focus only on cyber defense.<br />
tious plan to expand our presence to forty countries<br />
across the world.<br />
Today we are able to provide services from thirty-six<br />
locations globally in about eighteen countries. In all these<br />
countries, we are among the top twenty companies, and the<br />
top five brands are our customers. This is ranging from South<br />
East Asia to Japan to Australia, New Zealand and Middle<br />
East, U.S.A, Mexico, Netherlands, and Norway recently.<br />
How did you boost the confidence of<br />
your customers to ensure that they are<br />
in safe hands?<br />
It’s a continuous battle of securing the digital assets. You<br />
never know what’s going to happen next. So, there are twothree<br />
things which go into staying at the top position. Of<br />
course, there’s technology, which kind of protects the tools,<br />
which are required to establish different set of controls, both<br />
at perimeter level and internal security, external security, data<br />
security, as well as from various bots and malicious attacks.<br />
For each one of them there are differentiated tools. What<br />
we’ve done over a period of time is invest in most state-of-theart<br />
tools, which are from leading solutions providers. And in<br />
terms of people, we’ve gathered, I don’t think any other player<br />
How do you see the customers eventually<br />
benefiting from a Tier 4 data center partner<br />
like you?<br />
It’s very simple. Tier 4 is like having hundreds of differentiators<br />
over Tier 3. It is not just providing dual active power<br />
sources as many in the industry believe. It is about every<br />
aspect of the data center right from physical attributes to the<br />
plot location to that of the strength of the building to hundreds<br />
of parameters which go into the making of a data center.<br />
In all those parameters, Tier 4 is a step above. So if Tier 3<br />
is 900 kg per square meter loading this is 1500 kg per square<br />
meter, which is a significant difference.<br />
What is your roadmap for the year 2020?<br />
We are going to get aggressive in DC design bids worldwide.<br />
So that’s an area where we’re progressing. In the private<br />
cloud space, we’ve formed different divisions for banking and<br />
manufacturing ERP related workloads.<br />
And we’re focusing on verticals such as insurance,<br />
government, and healthcare. Additionally, five different<br />
community clouds are going to roll out in the next, out of<br />
which, two are fully mature and the third is going to be<br />
live next month. And we look at maturing all these five<br />
community clouds over next two-year period. What it<br />
means is that we’re going to have skilled professionals in<br />
different digital technologies just like the way we have ERP<br />
professionals and banking professionals.<br />
We’re going to bring in industry experts and make sure<br />
to give a different value proposition altogether on using<br />
cloud technologies to these customers in that space. And<br />
we look at being present in all the 40 countries in the next<br />
two years. We are also looking at tripling our members in<br />
the next two years<br />
<strong>April</strong> 2<strong>01</strong>8 | <strong>CIO</strong>&<strong>LEADER</strong><br />
23
insight<br />
Companies Are Going To<br />
Spend A Lot More On AI<br />
and Cognitive Systems<br />
Every industry is evaluating to see how it will impact their<br />
business processes and go-to-market efficiencies<br />
By <strong>CIO</strong>&Leader<br />
W<br />
Worldwide spending on cognitive and artificial<br />
intelligence (AI) systems will reach USD<br />
19.1 billion in 2<strong>01</strong>8, an increase of 54.2% over<br />
the amount spent in 2<strong>01</strong>7. With industries<br />
investing aggressively in projects that utilize<br />
cognitive/AI software capabilities, the International<br />
Data Corporation (IDC) Worldwide<br />
Semi-annual Cognitive Artificial Intelligence<br />
Systems Spending Guide forecasts cognitive<br />
and AI spending will grow to USD 52.2 billion<br />
in 2021 and achieve a compound annual<br />
growth rate (CAGR) of 46.2% over the 2<strong>01</strong>6-<br />
2021 forecast period.<br />
“Interest and awareness of AI is at a fever<br />
pitch. Every industry and every organization<br />
should be evaluating AI to see how it will<br />
affect their business processes and go-tomarket<br />
efficiencies,” said David Schubmehl,<br />
research director, Cognitive/Artificial Intelligence<br />
Systems at IDC. “IDC has estimated<br />
24 <strong>CIO</strong>&<strong>LEADER</strong> | <strong>April</strong> 2<strong>01</strong>8
Insight<br />
that by 2<strong>01</strong>9, 40% of digital transformation initiatives will<br />
use AI services and by 2021, 75% of enterprise applications<br />
will use AI. From predictions, recommendations, and advice<br />
to automated customer service agents and intelligent process<br />
automation, AI is changing the face of how we interact with<br />
computer systems.”<br />
Retail will overtake banking in 2<strong>01</strong>8 to become the industry<br />
leader in terms of cognitive/AI spending. Retail firms will<br />
invest USD 3.4 billion this year on a range of AI use cases,<br />
including automated customer service agents, expert shopping<br />
advisors and product recommendations, and merchandising<br />
for omni-channel operations. Much of the USD 3.3 billion<br />
spent by the banking industry will go toward automated<br />
threat intelligence and prevention systems, fraud analysis<br />
and investigation, and program advisors and recommendation<br />
systems. Discrete manufacturing will be the third<br />
largest industry for AI spending with USD 2.0 billion going<br />
toward a range of use cases including automated preventative<br />
maintenance and quality management investigation<br />
and recommendation systems. The fourth largest industry,<br />
healthcare providers, will allocate most of its USD 1.7 billion<br />
investment to diagnosis and treatment systems.<br />
“Enterprise digital transformation strategies are increasingly<br />
including multiple cognitive/artificial intelligence use<br />
cases,” said Marianne Daquila, research manager, Customer<br />
Insights & Analysis at IDC. “Business transformation is<br />
occurring across all industries as successful companies<br />
embrace the array and potential impact of these solutions.<br />
Automated customer service agents, increased public safety,<br />
preventative maintenance, reduction of fraud, and improved<br />
healthcare diagnosis are just the tip of the iceberg driving<br />
spend today. With double-digit year-over-year spending<br />
growth forecast, IDC expects to see an increase in general use<br />
cases, as well as a refinement of industry-specific use cases.”<br />
The cognitive/AI use cases that will see the largest<br />
spending totals in 2<strong>01</strong>8 are: automated customer service<br />
agents (USD 2.4 billion) with significant investments from<br />
the retail and telecommunications industries; automated<br />
threat intelligence and prevention systems (USD 1.5 billion)<br />
with the banking, utilities, and telecommunications<br />
industries as the leading industries; and sales process<br />
recommendation and automation (USD 1.45 billion)<br />
spending led by the retail and media industries. Three other<br />
use cases will be close behind in terms of global spending<br />
in 2<strong>01</strong>8: Automated preventive maintenance; diagnosis and<br />
treatment systems; and fraud analysis and investigation. The<br />
use cases that will see the fastest spending growth over the<br />
2<strong>01</strong>6-2021 forecast period are: public safety and emergency<br />
response (75.4% CAGR), pharmaceutical research and<br />
discovery (70.5% CAGR), and expert shopping advisors and<br />
product recommendations (67.3% CAGR).<br />
Retail will overtake<br />
banking in 2<strong>01</strong>8 to<br />
become the industry<br />
leader in terms of AI/<br />
cognitive spending<br />
A little more than half of all cognitive/AI spending<br />
throughout the forecast will go toward cognitive software.<br />
The largest software category is cognitive applications,<br />
which includes cognitively-enabled process and industry<br />
applications that automatically learn, discover, and make<br />
recommendations or predictions. The other software<br />
category is cognitive platforms, which facilitate the<br />
development of intelligent, advisory, and cognitively enabled<br />
applications. Industries will also invest in IT services to help<br />
with the development and implementation of their cognitive/<br />
AI systems and business services such as consulting and<br />
horizontal business process outsourcing related to these<br />
systems. The smallest category of technology spending<br />
will be the hardware (servers and storage) needed to<br />
support the systems.<br />
On a geographic basis, the United States will deliver more<br />
than three quarters of all spending on cognitive/AI systems<br />
in 2<strong>01</strong>8, led by the retail and banking industries. Western<br />
Europe will be the second largest region in 2<strong>01</strong>8, led by<br />
retail, discrete manufacturing and banking. The strongest<br />
spending growth over the five-year forecast will be in Japan<br />
(73.5% CAGR) and Asia/Pacific (excluding Japan and China)<br />
(72.9% CAGR). China will also experience strong spending<br />
growth throughout the forecast (68.2% CAGR).<br />
“The latest iteration of the Cognitive/AI Spending Guide<br />
is a roadmap for the journey of organizational DX through<br />
the use of AI, deep learning, and machine learning,” added<br />
Schubmehl. The Worldwide Semiannual Cognitive Artificial<br />
Intelligence Systems Spending Guide sizes spending<br />
for technologies that analyze, organize, access, and provide<br />
advisory services based on a range of unstructured information.<br />
The spending guide quantifies the cognitive computing<br />
opportunity by providing data for more than 20 use cases<br />
across 16 industries in eight regions. Data is also available<br />
for the related hardware, software, and services categories.<br />
Unlike any other research in the industry, the detailed segmentation<br />
and timely, global data is designed to help suppliers<br />
targeting the market to identify market opportunities<br />
and execute an effective strategy<br />
<strong>April</strong> 2<strong>01</strong>8 | <strong>CIO</strong>&<strong>LEADER</strong><br />
25
Insight<br />
Blockchain’s Red<br />
Hot Indian Use Case:<br />
Invoice Discounting<br />
Risks such as double financing can be completely<br />
avoided using blockchain. That is what is driving the<br />
usage blockchain for receivables financing<br />
By Shyamanuja Das<br />
26 <strong>CIO</strong>&<strong>LEADER</strong> | <strong>April</strong> 2<strong>01</strong>8
Insight<br />
T<br />
The yet-unnamed blockchain,<br />
built on HyperLedger Fabric,<br />
will be used to secure<br />
recievables financing<br />
This month, three Indian factoring<br />
exchanges and the American<br />
blockchain technology firm MonetaGo<br />
announced launching of a fullfledged<br />
blockchain. The yet-unnamed<br />
blockchain, built on HyperLedger<br />
Fabric, will be used to secure<br />
receivables financing.<br />
The three factoring exchanges<br />
involved are:<br />
RXIL or Receivables Exchange<br />
of India (RXIL), a joint venture<br />
between NSE Strategic Investment<br />
Corporation Ltd (NSICL) and Small<br />
Industries Development Bank of<br />
India (SIDBI)<br />
A.TReDS, a joint venture between<br />
Axis Bank and mjunction Services<br />
M1xchange, operated by Mynd<br />
Solutions<br />
RXIL, Axis Bank and Mynd<br />
Solutions were licensed by the<br />
Reserve Bank of India to operate<br />
Trade Receivables Discounting<br />
System (TReDS), as the service is<br />
known in regulatory parlance, in<br />
November 2<strong>01</strong>5.<br />
MonetaGo, a New Yorkbased<br />
technology firm, is an old<br />
India hand. It was the primary<br />
technology supplier for a blockchain<br />
trial conducted by Institute of<br />
Development & Research in Banking<br />
Technology (IDRBT), RBI’s research<br />
arm, in January 2<strong>01</strong>7. National<br />
Payment Corporation of India (NPCI)<br />
and multiple banks participated in<br />
the trial, which incidentally was also<br />
around trade finance and was also<br />
built on Hyperledger Fabric.<br />
Tech-leveraged Invoice<br />
Discounting<br />
The process of bundling and selling<br />
invoices at a discount, is a major<br />
source of working capital finance<br />
for small and medium (MSME)<br />
companies. Suppliers to any large<br />
company are paid typically in 30 to<br />
120 days. But since the MSME needs<br />
working capital, financial companies<br />
buy the invoices at a discount and<br />
provide finance to the MSMEs and<br />
later collect the money from the<br />
buyer. Because the invoices are<br />
bought at a discounted rate, the<br />
practice is popularly known as<br />
invoice discounting,<br />
While the practice itself is quite<br />
old, in the last few years technology<br />
platforms are being used to make<br />
the process faster and efficient. The<br />
platforms work like any auctioning<br />
platform. Typically, a seller uploads<br />
an invoice on the platform, which<br />
is approved by the buyer. Once<br />
approved by the buyer, the invoice<br />
becomes a factoring unit and is<br />
auctioned on the platform which the<br />
financiers try to buy by entering their<br />
discounting rate. After the final bid is<br />
accepted by the seller (or the buyer, in<br />
case the buyer is bearing the interest<br />
rate), the TReDS platform settles the<br />
trade. The financier is debited and the<br />
supplier is credited.<br />
The shift to new technology-based<br />
platforms is catalysed by RBI’s<br />
proactive stance to promote the usage<br />
along with rapid developments in<br />
financial technologies. This stems<br />
from the Government’s thrust on<br />
energizing the MSME segment to<br />
drive economic growth.<br />
RBI came up with a concept paper,<br />
Micro, Small & Medium Enterprise<br />
Factoring-Trade Receivables<br />
<strong>April</strong> 2<strong>01</strong>8 | <strong>CIO</strong>&<strong>LEADER</strong><br />
27
Insight<br />
Exchange in March 2<strong>01</strong>4. Based<br />
on feedback from public and<br />
stakeholders, it published the final<br />
guidelines in December that year.<br />
The guidelines outlined the<br />
requirements and the basic tenets<br />
of operating the TReDS, including<br />
the system participants, their roles,<br />
transaction process flow, settlement<br />
process, etc., besides indicating the<br />
eligibility criteria for entities desirous<br />
of setting up and operating such<br />
a system. RBI also clarified, in the<br />
guidelines, that the TReDS will be<br />
an authorised payment system and<br />
will also be subject to the oversight<br />
of the Reserve Bank of India under<br />
the Payment and Settlement Systems<br />
(PSS) Act, 2007.<br />
RBI also specified that MSME<br />
sellers, corporate and other<br />
buyers, including the Government<br />
Departments and PSUs, and<br />
financiers (both banks and NBFC<br />
factors) would be direct participants<br />
Jesse Chenard, CEO, MonetaGo<br />
in the TReDS, which would<br />
provide the platform to bring these<br />
participants together for facilitating<br />
uploading, accepting, discounting,<br />
trading and settlement of the invoices<br />
/ bills of MSMEs.<br />
RBI’s guidelines were forwardlooking<br />
as the regulator explicitly<br />
mentioned that “the bankers of sellers<br />
and buyers may be provided access<br />
to the system, where necessary, for<br />
obtaining information on the portfolio<br />
of discounted invoices / bills of<br />
respective clients.”<br />
It also clarified that the TReDS may<br />
tie up with necessary technology<br />
providers, system integrators and<br />
entities providing dematerialisation<br />
services for providing its services.<br />
The three TreDS platform were<br />
licensed in November 2<strong>01</strong>5. RXIL<br />
was the first to be operational in<br />
January 2<strong>01</strong>7.<br />
KredX, another venture-funded<br />
start-up also into operating an invoice<br />
discounting platform, has also applied<br />
for a licence. KredX has already raised<br />
Series A funding of USD 6.25 million<br />
in October 2<strong>01</strong>6.<br />
Blockchain: Another<br />
Layer of Trust<br />
As the platform providers started<br />
looking out for the latest technology,<br />
blockchain seemed to be tailor made<br />
for the application. Not only it makes<br />
each transaction far more efficient, it<br />
makes it far more trusted too.<br />
What we have seen with this<br />
week’s announcement is almost<br />
unprecedented. Initiated by three<br />
competing new players, without it<br />
being driven by a major financer, is<br />
itself a major step.<br />
“The exchanges realized that there<br />
is significant value in going for a common<br />
blockchain,” says Jesse Chenard,<br />
CEO of MonetaGo, the technology<br />
company that has initiated the platform.<br />
Most important is reducing<br />
fraud and eliminate risks such as<br />
double financing. That will not just<br />
make it far more trusted, but will also<br />
make the system more efficient in the<br />
long run, helping everyone.<br />
“This technology enables us to work<br />
together with the other exchanges to<br />
achieve shared goals without sharing<br />
specific data. I look forward to the day<br />
when other players in the financial<br />
services industry also appreciate<br />
the value add in terms of preventing<br />
frauds related to Bill Discounting and<br />
become a part of this system,” said<br />
Kalyan Basu, MD & CEO of A.TReDs.<br />
“This is a simple and low-cost<br />
technology innovation which helps<br />
us mitigate risks arising from<br />
multiple financing of the same bills<br />
across the platforms in addition<br />
to our existing risk management<br />
processes which provides a clear<br />
benefit. The real benefit will actually<br />
come when other financiers such<br />
as banks, NBFCs, and others<br />
join MonetaGo’s platform,” said<br />
Kashinath Katakdhond, MD &<br />
CEO, RXIL.<br />
Echoed Chenard, “The more the<br />
merrier,” he said referring to more<br />
players joining the blockchain.<br />
The understanding among the<br />
promoters—the three exchanges and<br />
MonetaGo—is that the technology<br />
will be continuously be updated by<br />
MonetaGo.<br />
“We are constantly evaluating new<br />
methodologies and technologies<br />
which we believe will fit into our<br />
long-term product road map” said<br />
Sundeep Mohindru Director and<br />
Founder of M1xhange.<br />
“Tech will change over time. We will<br />
keep supporting that,” said Chenard<br />
of MonetaGo.<br />
The blockchain has been production-active<br />
only for two weeks after<br />
months of testing.<br />
Though this is the first enterprisegrade<br />
live blockchain, there have been<br />
several proofs of concept/trials using<br />
blockchain technology in India.<br />
Most of them have been around two<br />
areas: cross border money remittance<br />
and receivables financing with<br />
invoice discounting<br />
28 <strong>CIO</strong>&<strong>LEADER</strong> | <strong>April</strong> 2<strong>01</strong>8
Insight<br />
Cryptojacking<br />
Is On The Rise<br />
in 2<strong>01</strong>8<br />
As per Symantec, India is among<br />
the most vulnerable countries<br />
By IANS<br />
W<br />
When<br />
it comes to increased cryptojacking<br />
activities, India is second in the Asia-Pacific<br />
and Japan (APJ) region and ninth globally as<br />
hackers create a highly-profitable, new revenue<br />
stream with crypto-mining, cyber security<br />
giant Symantec said in a recent statement.<br />
According to Symantec's "Internet Security<br />
Threat Report", detection of coinminers on<br />
endpoint computers increased by a whopping<br />
8,500% in 2<strong>01</strong>7.<br />
"Cryptojacking is a rising threat to cyber<br />
and personal security," Tarun Kaura, Director,<br />
Enterprise Security Product Management,<br />
APJ at Symantec, said in a statement.<br />
"The massive profit incentive puts people,<br />
devices and organizations at risk of unauthorized<br />
coinminers siphoning resources from<br />
their systems, further motivating criminals to<br />
infiltrate everything from home PCs to giant<br />
datacenters," Kaura added.<br />
Cryptojacking is defined as the secret use of<br />
a computing device to mine cryptocurrency.<br />
With a low barrier of entry cyber criminals<br />
are harnessing stolen processing power and<br />
cloud CPU usage from consumers and enterprises<br />
to mine cryptocurrency.<br />
Coinminers can slow devices, overheat batteries<br />
and in some cases, render devices unusable.<br />
For enterprise organizations, coinminers<br />
can put corporate networks at risk of shutdown<br />
and inflate cloud CPU usage, adding<br />
to the cost.<br />
"Now you could be fighting for resources on<br />
your phone, computer or Internet of Things<br />
(IoT) device as attackers use them for profit.<br />
People need to expand their defenses or they<br />
will pay for the price for someone else using<br />
their device," Kaura added.<br />
Symantec found 600% increase in<br />
overall IoT attacks in 2<strong>01</strong>7. India today ranks<br />
among the top five countries as a source for<br />
IoT attacks.<br />
The firm also identified a 200% increase in<br />
attackers injecting malware implants into the<br />
software supply chain in 2<strong>01</strong>7.<br />
Threats in the mobile space continue to<br />
grow year-over-year, including the number<br />
of new mobile malware variants which<br />
increased by 54%.<br />
Mobile users also face privacy risks from<br />
grayware apps that are not completely malicious<br />
but can be troublesome. Symantec found<br />
that 63% of grayware apps leak the device's<br />
phone number.<br />
In 2<strong>01</strong>7, the average ransom cost lowered<br />
to USD 522.<br />
"Several cyber criminals may have shifted<br />
their focus to coin mining as an alternative to<br />
cashing in while cryptocurrency values are<br />
high," the report noted<br />
<strong>April</strong> 2<strong>01</strong>8 | <strong>CIO</strong>&<strong>LEADER</strong><br />
29
Insight<br />
Bot Seriously!<br />
Virtual assistants are becoming the new<br />
sine qua non in consumer services<br />
By <strong>CIO</strong>&Leader<br />
30 <strong>CIO</strong>&<strong>LEADER</strong> | <strong>April</strong> 2<strong>01</strong>8
Insight<br />
OOnline travel portal, Yatra.com and Kotak Mahindra Bank<br />
are the latest in a series of consumer services companies that<br />
are leveraging AI-powered chatbots to serve their customers<br />
better. While almost all leading banks, especially in the<br />
private sector, have already launched these bots, Yatra is one<br />
of the early ones in the online travel business. Online retailer<br />
Flipkart soft-launched a similar conversational search<br />
capability in early 2<strong>01</strong>7.<br />
However, one segment that has led the use of AI-powered<br />
virtual assistants from the front is banking. All new private<br />
sector banks—HDFC Bank, ICICI Bank, Axis Bank, Yes<br />
Bank and now Kotak Mahindra Bank—have launched<br />
similar products while India’s largest bank, State Bank of<br />
India, a public sector bank, too has launched its own virtual<br />
customer service assistant.<br />
While organizations have been flirting with AI-powered<br />
chatbots for close to three years, most of the commercial<br />
launches have happened in the last 18 months.<br />
In November 2<strong>01</strong>6, Axis Bank launched its intelligent<br />
chatbots, in partnership with Active.ai, a Singaporebased<br />
start-up.<br />
A month later, HDFC launched a Facebook Messenger<br />
chatbot created in partnership with Indian start-up Niki.ai,<br />
called OnChat.<br />
In February 2<strong>01</strong>7, ICICI Bank launched its own chatbot<br />
iPal for handling customer queries. It has handled an<br />
estimated 10 million queries.<br />
Flipkart launched its conversational search during<br />
that time.<br />
In March last year, HDFC Bank launched a fullfledged<br />
customer service chatbot called EVA (Electronic<br />
Virtual Assistant).<br />
Around the same time, YES Bank, in partnership with a<br />
Silicon Valley start-up Payjo, launched its wallet services<br />
through a chat-based financial assistant.<br />
In September last year, State Bank of India, the largest<br />
bank in India, launched SBI Intelligent Assistant (SIA),<br />
which the bank says addresses queries the way a “bank<br />
representative does.” The SBI chatbot also uses Payjo.<br />
Most of the commercial<br />
AI-powered chatbot<br />
launches have happened<br />
in the last 18 months<br />
In November 2<strong>01</strong>7, FirstCry, a leading bay and kids<br />
products retailer, launched its own AI-based virtual<br />
assistant Jenna.<br />
The New Kids<br />
In 2<strong>01</strong>8 too, the story continues with more launches<br />
ofcustomer service chatbots.<br />
Yatra.com’s virtual assistant is called YUVA, short for<br />
Yatra Universal Virtual Assistant. YUVA, available on<br />
desktop, Android, IOS, Google Assistant and Facebook<br />
Messenger, supports various Indian accents.<br />
“The users can search and book flights, apply multiple<br />
filters, rearrange options with different sort orders and<br />
modify bookings. The user can provide the complete<br />
information in a single sentence or talk to YUVA<br />
and provide the relevant information in a form of a<br />
communication,’ said the company in a release.<br />
Its future versions will feature multi-lingual support<br />
starting with Hindi followed by other important regional<br />
languages and will be assisting the customers in hotel and<br />
holiday bookings as well.<br />
Kotak Mahindra Bank launched 'Keya', a voice bot<br />
integrated with the bank’s phone banking helpline<br />
and augments its existing IVR in Hindi and English.<br />
It is developed using the technology from Nuance. It<br />
uses automatic speech recognition, natural language<br />
understanding and text-to-speech technology.<br />
Startups such as Payjo, Niki.ai, Haptik are making news<br />
with their solutions to enable consumer companies better<br />
their customer service using AI-powered chatbots<br />
<strong>April</strong> 2<strong>01</strong>8 | <strong>CIO</strong>&<strong>LEADER</strong><br />
31
Insight<br />
And You Thought<br />
Security Is Secular<br />
(Across Industries)?<br />
The nature and motive of data breaches could vary<br />
significantly across industries. Any strategy formulated<br />
without the understanding of those peculiarities in an<br />
industry will never be very effective<br />
By <strong>CIO</strong>&Leader<br />
32 <strong>CIO</strong>&<strong>LEADER</strong> | <strong>April</strong> 2<strong>01</strong>8
Insight<br />
Origin of breaches<br />
TThe conversation around enterprise<br />
security and threat management has<br />
always been horizontal. While there<br />
is a broader recognition today that the<br />
business impact of an incident could<br />
vary significantly across industries,<br />
there has been little effort to understand<br />
how the fundamental metrics of<br />
threat vary across businesses.<br />
That means a largely uniform, horizontal<br />
approach towards security.<br />
The recently released Verizon<br />
Data Breach Investigations Report<br />
(DBIR) 2<strong>01</strong>8 — the 11th edition of the<br />
study — reveals why that could be<br />
awfully inadequate.<br />
Whether it is in terms of the origin<br />
(external vs internal) of breach/<br />
incidents, the type of data breached<br />
or the nature of the attacks, the nine<br />
industries covered by DBIR 2<strong>01</strong>8 show<br />
significant difference. Some of those<br />
metrics are key to the understanding<br />
of the nature of threats and hence<br />
important from the point of view of a<br />
solutions approach.<br />
For ex<strong>amp</strong>le, as much as 99% of the<br />
breaches occur in the accommodation<br />
(hospitality) industry involve external<br />
factors, while in healthcare, as much as<br />
56% are internal. In fact, in hospitality,<br />
Point of Sales (PoS) accounts for 90%<br />
of all breaches.<br />
“Often restaurants are smaller organizations<br />
without the luxury of trained<br />
security staff, but they are forced to<br />
rely almost exclusively on payment<br />
cards for their existence,” explains the<br />
report. These attacks are overwhelmingly<br />
motivated by financial gain and<br />
perpetrated by organized crime.<br />
100%<br />
90%<br />
80%<br />
70%<br />
60%<br />
50%<br />
40%<br />
30%<br />
20%<br />
10%<br />
0%<br />
Accommodation<br />
100%<br />
90%<br />
80%<br />
70%<br />
60%<br />
50%<br />
40%<br />
30%<br />
20%<br />
10%<br />
0%<br />
Accommodation<br />
Education<br />
Education<br />
Financial<br />
Financial<br />
Healthcare<br />
The differences are not just in the origin.<br />
The motives too are significantly<br />
different across industries. Though<br />
increasingly, financial motives are<br />
becoming predominant, in some<br />
areas—like manufacturing and public<br />
administration—espionage are almost<br />
equally strong motives. In healthcare,<br />
curiosity is a major factor.<br />
The kind of data that is targeted also<br />
vary across industries. In Accommodation,<br />
93% of compromised data is payment<br />
data; in education, 72% of data<br />
is personal. Credentials account for a<br />
huge 41% in the Information sector.<br />
A good counter-threat strategy<br />
requires that the breaches are<br />
Information<br />
Manufacturing<br />
External Internal Others<br />
Prof Services<br />
Motive behind breaches<br />
Healthcare<br />
Information<br />
Manufacturing<br />
Prof Services<br />
Public Administration<br />
Public Administration<br />
Financial Espionage Convenience Fun ideology others<br />
Retail<br />
Retail<br />
understood clearly. Each industry<br />
has a different mix of motives, origins<br />
and the kind of data that is targeted.<br />
Since the security budget and<br />
resources are limited, they need to be<br />
channelized properly to optimize the<br />
effectiveness of the security strategy.<br />
Depending on the nature of<br />
threat, the companies will not just<br />
be able to identify the investment<br />
priorities, it may also help an entire<br />
industry segment to come together<br />
to minimize certain threats. In<br />
areas like healthcare and public<br />
administration, a collaborative<br />
approach may be more effective than<br />
siloed approach<br />
<strong>April</strong> 2<strong>01</strong>8 | <strong>CIO</strong>&<strong>LEADER</strong><br />
33
Security<br />
1 In 4 Organizations<br />
Using Public Cloud Has<br />
Had Data Stolen<br />
As per the security report, poor visibility is found to be one of<br />
the greatest challenges to cloud adoption in organizations<br />
By <strong>CIO</strong>&Leader<br />
P<br />
Poor visibility is one of the greatest challenges to<br />
cloud adoption in an organization, according to<br />
McAfee’s Navigating a Cloudy Sky: Practical Guidance<br />
and the State of Cloud Security report. Across<br />
all industries, computing storage and asset protection<br />
are transitioning to the cloud, making it difficult<br />
for IT practitioners to see what is ahead. This<br />
uncertainty and lack of visibility to new environments<br />
are causing some executives to move slowly<br />
or stick to their known paths, while others move<br />
boldly ahead.<br />
“Despite the clear prevalence of security incidents<br />
occurring in the cloud, enterprise cloud adoption<br />
is pressing on,” said Rajiv Gupta, senior vice president<br />
of the cloud security business unit, McAfee.<br />
“By implementing security measures that allow<br />
organizations to regain visibility and the control of<br />
their data, businesses can take advantage of innovative<br />
services and accelerate their business with a<br />
more informed approach to security in the cloud.”<br />
Cloud Services Nearly Ubiquitous<br />
Almost all organizations are well into cloud adoption.<br />
According to the survey, 97% of worldwide IT<br />
professionals are using some type of cloud service<br />
and are concurrently working through issues<br />
34 <strong>CIO</strong>&<strong>LEADER</strong> | <strong>April</strong> 2<strong>01</strong>8
Security<br />
related to visibility and control.<br />
The combination of public and private<br />
cloud is also the most popular<br />
architecture, with 59% of respondents<br />
now reporting they are using a hybrid<br />
model. While private-only usage is<br />
relatively similar across all organization<br />
sizes, hybrid usage grows steadily<br />
with organization size, from 54% in<br />
organizations up to 1,000 employees,<br />
to 65% in larger enterprises with more<br />
than 5,000 employees.<br />
Cloud-First is the Strategy<br />
of Most Organizations, but<br />
in Cautious Decline<br />
Cloud-First is an information technology<br />
strategy that states new projects<br />
should consider using cloud technology<br />
first as opposed to on-premises<br />
servers or software. According to the<br />
report, Cloud-First is the strategy for<br />
IT in many companies and remains a<br />
primary objective. Caution seems to<br />
have taken over for others, as the number<br />
of organizations with a Cloud-First<br />
strategy dropped from 82% to 65%<br />
this year. Despite the reported security<br />
incidents, respondents with a Cloud-<br />
First strategy still believe that public<br />
cloud is safer than private cloud.<br />
Sensitive Data Stored in<br />
the Cloud<br />
The majority of organizations store<br />
some or all of their sensitive data in<br />
the public cloud, with only 16% stating<br />
that they store no sensitive data in the<br />
cloud. The types of data stored run the<br />
full range of sensitive and confidential<br />
information. Personal customer<br />
information is by far the most common,<br />
reported by 61% of organizations.<br />
Around 40% of respondents also store<br />
one or more of internal documentation,<br />
payment card information, personal<br />
staff data or government identification<br />
data. Finally, about 30% keep intellectual<br />
property, healthcare records,<br />
competitive intelligence and network<br />
pass cards in the cloud.<br />
Managing the risk of storing sensitive<br />
data in the cloud means ensuring<br />
the organization has visibility to it. A<br />
focus on fundamental governance and<br />
technological steps, such as requiring<br />
departments and personnel to participate<br />
in asset identification, classification<br />
and accountability helps build<br />
visibility. Data Loss Prevention integration<br />
with cloud providers, including<br />
the use of Cloud Access Security<br />
Brokers, manual or automated data<br />
classification and other technology<br />
steps, will help reduce the risk of sensitive<br />
information flows to and through<br />
cloud services.<br />
Security Incidents Still<br />
Widespread<br />
Prominently, one in four organizations<br />
that uses IaaS or SaaS has had data<br />
stolen, and one in five has experienced<br />
an advanced attack against its public<br />
cloud infrastructure. As organizations<br />
prepare for the European Union’s<br />
General Data Protection Regulation<br />
(GDPR), slated for May 2<strong>01</strong>8, they will<br />
be r<strong>amp</strong>ing up compliance efforts.<br />
Organizations that are more confident<br />
in the ability of their cloud providers<br />
are more likely to have plans to<br />
increase their overall cloud investments<br />
in the coming year, while those<br />
less confident plan to keep their investments<br />
at the current level. Fewer than<br />
10% surveyed, on average, anticipate<br />
decreasing their cloud investment<br />
because of GDPR.<br />
Malware continues to be a concern<br />
for all types of organizations and 56%<br />
of professionals surveyed said they<br />
had tracked a malware infection back<br />
to a cloud application, up from 52% in<br />
2<strong>01</strong>6. When asked how the malware<br />
was delivered to the organization, just<br />
over 25% of the respondents said their<br />
cloud malware infections were caused<br />
by phishing, followed closely by<br />
emails from a known sender, driveby<br />
downloads and downloads by<br />
existing malware.<br />
Respondents<br />
with a cloudfirst<br />
strategy<br />
still believe that<br />
public cloud is<br />
safer than private<br />
cloud<br />
Skills Shortage Decreasing<br />
The shortage of cybersecurity skills<br />
and its impact on cloud adoption continues<br />
to decrease, as those reporting<br />
no skills shortage increased from 15%<br />
to 24% this year. Of those still reporting<br />
a skills shortage, only 40% have<br />
slowed their cloud adoption as a result,<br />
compared to 49% last year.<br />
Best Practices and<br />
Recommendations<br />
Based on findings from this year’s<br />
study, the report concludes with three<br />
best practices that all organizations<br />
should actively work towards:<br />
DevOps and DevSecOps have been<br />
demonstrated to improve code quality<br />
and reduce exploits and vulnerabilities.<br />
Integrating development,<br />
quality assurance and security<br />
processes within the business unit<br />
or application team is crucial to operating<br />
at the speed today’s business<br />
environment demands.<br />
Even the most experienced security<br />
professionals find it difficult to keep<br />
up with the volume and pace of cloud<br />
deployments on their own. Automation<br />
that augments human advantages<br />
with machine advantages, such<br />
as that found in tools such as Chef,<br />
Puppet or Ansible, is a fundamental<br />
component of modern IT operations.<br />
Multiple management tools make<br />
it too easy to for something to slip<br />
through. A unified management<br />
system across multiple clouds with<br />
an open integration fabric reduces<br />
complexity<br />
<strong>April</strong> 2<strong>01</strong>8 | <strong>CIO</strong>&<strong>LEADER</strong><br />
35