Category: small business

Posted on

Pressure to Deliver More Value and Intelligence

Pressure to Deliver More Value and Intelligence

Okay, I get it.

Business professionals all over the world are being pressured to deliver more value and intelligence every day, yet their choices and options have become so many and varied, the influences coming from so many directions, and the solutions so bathed in complexity that many simply fail to move due to fear of making the wrong decision.  But this fear has existed for many years, with business owners facing new and increasingly more competitive obstacles at each and every turn of the market.

Accountants, like any other business or profession, must learn to embrace and adopt new approaches to problems facing the business, and learn to adapt to the various influences shaping the economy.  For there are few absolutes in life, but the need for accountability and measured performance in business is consistent throughout history.  As boundaries are broken and limits exceeded, so are the foundations of information management and analysis extended, delivering ever increasing levels of insight and resultant opportunity.

Information technology supports the foundation of business operation and individual interaction, and is becoming increasingly more familiar as the agent of change in our economy and environment.  In order to retain and demonstrate continued relevance, accounting professionals must recognize the shifts in information management and computing paradigms in order to retain their value and placement in the business value chain.  Where accounting and finance was once necessarily an after-the-fact reporting of results of activities, and provided only reactive guidance based on historical data, it now has the real opportunity to become a proactive force in delivering insight, leadership, and positive go-forward advice.

J


Follow @JoanieMann on Twitter, or subscribe to this blog to receive the next article.

Posted on

Building Smarter Businesses: Staying Relevant in a Cloud Accounting World

Building Smarter Businesses: Staying Relevant in a Cloud Accounting World

They are pretty interesting commercials, and they get you thinking.  You know what I mean: those IBM commercials about developing models for the prediction of traffic conditions in Singapore, and “infusing intelligence into the systems and processes that make the world work”.   What they’re saying makes sense, but most business owners would likely say that it addresses bigger issues and doesn’t really speak to them.

The Wikipedia entry on Smarter Planet is introduced as “a corporate initiative [which] seeks to highlight how forward-thinking leaders in business, government and civil society around the world are capturing the potential of smarter systems to achieve economic growth, near-term efficiency, sustainable development and societal progress”.   You see, the ability to leverage technology to collect data and analyze that data in real time can make a huge difference, whether it is in a small business or a global system. With an intelligent approach to enabling the enterprise, we can build smarter businesses and introduce new relevance for accounting and finance professional involved with them.

“Together, we have to consciously infuse intelligence into our decision-making and management systems, not just infuse our processes with more speed and capacity . . . We are moving into the age of the globally integrated and intelligent economy, society and planet. The question is, what will we do with that?” IBM chief executive Sam Palmisano

Our software and systems have reached the point where data collection and raw business intelligence is being gathered in real time by businesses small and large.  This new world of information management is no longer focusing on paper-based systems or business process automation; this is the world of real time information, big data and analysis.

For accounting and finance professionals, this is your time.  Accounting is not simply the final dumping ground for after-the-fact financial data; it is the department responsible for turning collected data into actionable information.  Data is just data, but information is power.

Information management and computing paradigms are shifting, and for accounting and finance professionals, the solution to the relevance problem is quite simple: shift your thinking of what accounting and finance is, and use it to your advantage.

The competitive landscape for businesses of all kinds is changing along with the progress and adoption of technology.  Accounting professionals in particular should be paying close attention to what’s happening out there, and learning to use the tools which will help them find the patterns and trends in the system which can help to forecast more accurately – coming closer to having that crystal ball than ever before.

Whether the attention is on small business or large enterprise, accounting professionals and information management specialists need to work together, and use the cloud and connected technologies to help achieve the benefits of growth, efficiency, sustainable development and progress envisioned by the Smarter Planet initiative.

Make Sense?

J

Posted on

Compliance in the Cloud – Their System; Your Responsibility

Can you outsource compliance to the cloud?

Outsourcing IT to a cloud service provider can be tremendously beneficial for a business.  The model allows an organization to offload not just IT infrastructure costs, but also the costs associated with developing and maintaining all of the practices and processes involved in managing and maintaining the infrastructure and systems.   There is tremendous responsibility in handling everything from platforms and infrastructure to creating best practices for maintenance, management of scalability and growth, forecasting bandwidth requirements, implementing and monitoring security compliance, creating effective and comprehensive disaster recovery plans, and more.

The question which begs to be asked is whether or not HIPAA, PCI/DSS or any other compliance requirements, and the complexities, risk and legalities that come along with them, can also be outsourced to the CSP. For that matter, can any real level of responsibility be fully outsourced, where the liability for non-performance or noncompliance is also fully shifted?

Ummm. No. It is still your problem.

What too many companies really don’t understand is that they aren’t eliminating risk by moving to the cloud, and the requirement to meet various compliance requirements really can’t be outsourced. Particularly in this area, businesses need to recognize that outsourcing certain functions doesn’t reduce or eliminate responsibility or liability.  Just the converse, it could make things a bit more difficult if you don’t keep close tabs on how the provider implements and is involved with your solution. Even beyond that, what is the impact to the business operation when requirements are not met?  Cost recovery from the provider may be one option, but how does that help the business remain operating in the meantime?

Gramm-Leach-Bliley (GLB) Act  Requires financial organizations to enter into contracts with third parties that they share their customer information with (including cloud vendors) to ensure that the third-party handles that information securely. Executives of those financial organizations can be held personally liable for failure to do so.

Sarbanes-Oxley Act (SOX)  Defines specific security mandates and requirements for financial reporting to protect shareholders and the public from accounting errors and fraudulent practices. SOX dictates which records are to be stored and for how long and requires the data owner to know the location of the data in the cloud and to maintain control of it. Failure to comply can result in fines and/or imprisonment.”

source: CIO.com

This discussion Isn’t limited just to compliance with regulations (at least it shouldn’t be)

In this conversation we need to also address what a business should do in terms of protecting and preserving its information assets (data!) even beyond what the CSP offers. Keeping confidential and private information secure and protecting the data of the business (and clients or patients or other entities) is essential, even when the CSP fails in its obligations or abilities.  This aspect of disaster recovery and continuity planning is not often considered by the CSP yet remains critical to the business customer. The sales pitch, however, never really delves into this area, because it represents an aspect of service coverage that the provider simply can’t provide.

Illustrating this particularly difficult aspect of outsourcing to the cloud is the hard lesson learned by customers of a QuickBooks hosting provider who experienced a severe outage due to a ransomware attack. The hosting service provider promised customers it backed up their data and it did, but the backup archives were also compromised.  In order to restore service, customers were expected to have their own backups of the cloud-hosted data.

While there may have been items in the service agreement which address these issues, I can say – based on a great deal of experience in just this area – the service providers rarely make this point very clear to customers, and more frequently tell customers backing up their data is no longer something they need to really worry about. It’s like that really tiny type at the bottom of a contract that nobody notices until it is too late.

“..restoration proved more difficult in Texas. Lezama explained that for the Texas clients, the backups had been compromised as well, because their backup data had synchronized with corrupt files. But Cloudnine clients are obligated backup their own data as well, as a sort of third-level security measure..”

source: AccountingToday

With compliance in the cloud, it’s their system, but your responsibility.

Outsourcing IT to a cloud service provider in no way eliminates or reduces the obligations of the business to manage certain aspects of information systems and data.  What outsourcing can do is deliver a greater operational capacity and agility more affordably.

The responsibilities to establish information and systems management practices and processes remain firmly with the business, and actually represent a strategic component of the business that is unwise to outsource anyway. Resilience in a business and its ability to conform to regulatory and other requirements are the foundations of sustainability. Remember that cloud providers and services can be leveraged to improve certain cost and system performance metrics, but it remains solely with the business customer to find ways to reduce risk and create a greater assurance of continued operational capability.

Make Sense?

J

Posted on

There are only two types of businesses: those who have lost their data, and those who will

The portable computer was the secret business weapon of yesterday, and is today’s essential business tool.  The processing power, portability, storage, and connectivity available with laptops, tablets and even smartphones can create a seamless extension of the office.

Truly, the workforce of today is mobile and fully-enabled.  Business owners, working in conjunction with their accounting advisors and business consultants, are able to access all the information and analytical capability they need to make informed business decisions at any time, capture and collect important information, and keep productivity at the highest levels no matter where they are.

Mobility doesn’t come without risk, however.  Some studies estimate that as much as 80% of the business data that a company has (like customer files, contracts, financial data, product specifications) is stored on portable computing devices.   While these files may be recoverable from backups in the case of loss or damage, there is an even larger potential cost in terms of exposure of confidential or proprietary – or personal and private – information.

Loss or theft can create big business and legal problems, too. Customer or client privacy may be compromised, sensitive information may be exposed, and confidential plans may be made public if a business doesn’t take steps to secure mobile data.   Software and network attacks are also prevalent, with a variety of exploits designed to take advantage of any vulnerability present.

There’s an old saying we IT folks have that there are only two types of businesses: those who have lost their data, and those who will.  Imagine the potential chaos and risk exposure, not to mention the expense, of losing your valuable business data, or having it exposed to unauthorized users.

While computing mobility delivers a host of advantages to the business and the user, care must be taken to ensure security, privacy, and confidentiality of business information.  Cloud computing solutions and managed IT services will help you provide the mobile capability your business needs, but with the additional protection, additional security, and ongoing management that the value of the data demands.  Increased exposure to liability is a reality for any mobile business, and the risk is only multiplied by the number of systems a company has in the field.  The smart business reduces risk by deploying secure yet versatile platforms for their workers that allow data to be stored and protected in centralized environments, rather than on the individual computing devices. Via the cloud, businesses of all kinds are reaping the benefits of new and innovative service delivery models and enhanced security solutions, achieving the freedom and functionality (and data security) the mobile workforce demands.

Here are a few data loss statistics for your reading pleasure…

Enjoy  🙂

J

(stats drawn from summary on BostonComputing.net.  They may be a bit dated, but the numbers have only increased since then.) http://www.bostoncomputing.net/consultation/databackup/statistics/

The following statistics were gathered from various sources:

  • 6% of all PCs will suffer an episode of data loss in any given year. Given the number of PCs used in US businesses in 1998, that translates to approximately 4.6 million data loss episodes. At a conservative estimate, data loss cost US businesses $11.8 billion in 1998. (The Cost Of Lost Data, David M. Smith)
  • 30% of all businesses that have a major fire go out of business within a year. 70% fail within five years. (Home Office Computing Magazine)
  • 31% of PC users have lost all of their files due to events beyond their control.
  • 34% of companies fail to test their tape backups, and of those that do, 77% have found tape back-up failures.
  • 60% of companies that lose their data will shut down within 6 months of the disaster.
  • 93% of companies that lost their data center for 10 days or more due to a disaster filed for bankruptcy within one year of the disaster. 50% of businesses that found themselves without data management for this same time period filed for bankruptcy immediately. (National Archives & Records Administration in Washington)
  • American business lost more than $7.6 billion as a result of viruses during first six months of 1999. (Research by Computer Economics)
  • Companies that aren’t able to resume operations within ten days (of a disaster hit) are not likely to survive. (Strategic Research Institute)
  • Every week 140,000 hard drives crash in the United States. (Mozy Online Backup)
  • Simple drive recovery can cost upwards of $7,500 and success is not guaranteed