Posts Tagged ‘risk vs benefit’

Hello all,

I’ve been sick the last week so please accept my apologies that this post will be somewhat shorter and less meaty than usual.

I work in the IT Security field and because of this, anything related to risk peaks my interest for a number of reasons, however the main one we will be focusing on today is the benefits that accompany them!

Usually the first things managers in a traditional “1.0” organisation think of when Social Media is mentioned goes along the lines of “What?! We’re going to let them sit on the BookFace all day, and what’s it called, chirpy bird thing? Yeah right!”.

Time (you might have picked this up as a recurring theme) is usually the first thing on their minds, the risk of losing vast amounts of company paid time to employees frittering the hours away on social media. The flipside or benefit to this is of course the new pathways create interaction between employees, allows them to express themselves at work thus elevating their mood which is a good thing, as you can make more money by making your employees happy (Forbes, 2012).

External Social Media

On the “Interwebz”, areas of particular interest to me are security, loss of control, reputation and reliability. How can you control something that is out in the ether for everyone to access? Do you want to be the heavy handed “Post Patrol” that blocks all access full stop, or the fun light hearted manager who lets everyone play Farmville all day?

The answer in my opinion is neither, as both extremes are not going to get your organisation anywhere near a mature Enterprise 2.0 standard. To minimise Risk and maximise Benefit you need Compromise. You also need another layer, Physical and Logical security controls in order to provide some meat in your sandwich. Furthermore, you need to foster a Social Media Culture within your organisation where everyone knows and agrees what fly’s and what doesn’t.

Physical controls help mitigate the risks such as loss of control as well as ensuring reputation is upheld by allowing only certain users to post on the corporate page, and granting read only access to the rest of the site. The benefit here is that users are still able to access the social media platform and knowledge contained within.

Logical controls revolve around policy and procedure which many consider to be, quite frankly, a drag. To all those who are in this school of thinking, let me assure you that policy doesn’t suck! Policies and procedures are out there to educate, guide and assist people who wish to use social media tools in the approved manner set out by the company or enterprise. A good policy will ensure users are aware of their roles and responsibilities, and the consequences breaking the agreed upon rules.

Culture is the fabric that binds it all together, a socially accepted take on what’s ok to post and what’s not, how long you should spend on a certain page or site or what to do if something doesn’t look quite right. It is this culture that will ensure policy is adhered to, physical controls are respected and respect for both the enterprise 2.0 platform and the company / enterprise is observed (or not as the case may be!).

Internal Social Media

I recently read a case study revolving around one Al Essa, CIO at MIT’s Sloan School of Management who used blogs and wiki’s to not only manage a multitude of projects across multiple teams, but also leveraged the platforms to create a collaborative Business Plan, sourcing input from his entire staff faculty.

Read more @ http://www.fastforwardblog.com/2007/01/16/an-enterprise-20-poster-child-in-the-it-department/

Well that’s all for now, I hope you all have a great week and a riotous weekend!

All the best,

Dan

Advertisements