Cooper Mann Consulting

January 6, 2014

Security and Users: Change is the Only Constant

Managing user accounts and access to business IT assets is challenging, particularly as cloud and social computing models introduce new wrinkles in security and identity management. Information has become “mobile” along with the users accessing it, yet management of user behavior is even more complicated that trying to manage a digital resource.

If you look at the history of security breaches, you’ll find that many of them started with a user making a mistake – like losing a laptop or clicking on a phishing email, downloading bad software, or forgetting to report an employee termination to the IT dept – something which inadvertently created a vulnerability that could be exploited. It’s tough to stop breaches because there are so many possible ways for them to happen.

If most security breaches start with a user mistake, then IT departments have their hands full because users aren’t static, unchanging objects to monitor and manage. Users change, sometimes a lot. It is this constant change which undermines the ability for some IT departments to meet the demand to adequately secure company information systems and data. Now is the time to take control of user security and identity management, creating automation and controls to protect business assets in a constantly evolving environment.

It is not simply employee turnover that challenges security management. Certainly, IT departments have been dealing with user account creation and termination for a long time. And sure, users have sometimes been promoted and demoted, resulting in the requirement for IT to increase or perhaps decrease access to information and applications. These are normal and expected activities for a business IT department. Unfortunately, IT often doesn’t hear about the user’s change in status. An account isn’t disabled, access isn’t restricted, and the system is left vulnerable.

Just to pile on, think about what happens when a user is more than just a single system user. It may be manageable when where a single identity and set of credentials governs their access to applications and information. But the proliferation of web-based services and SaaS solutions has made it commonplace for users to have multiple applications and services available to them, each with their own approaches to identity management.

For even a small business IT department, the security of all of these access points and applications must be managed and monitored – no small task when the department may not even be aware that the solution is in use. It is not unusual for file sharing, data sync, or other applications to be implemented in businesses without the knowledge or participation of the IT department. Actually, many services attract users due to their simplicity and ease of use, leveraging the fact that they can be deployed without the “assistance” of IT.

Users are becoming increasingly mobile, accessing information and applications from public and private locations while using any number of possible mobile devices. Vulnerabilities which may exist in public networks and the increased potential for device loss or theft are high on the list of concerns of IT departments managing remote and mobile user access. Mobility is driving many changes in how information technology and access to systems is provided to users, and it is changing user demands for what they should be able to easily accomplish while being mobile.

Businesses need to recognize that their continued existence may rely on keeping their information systems and assets safe and secure. Disaster recovery and business continuity applies not only to loss of physical systems, but also to losses of various forms due to data breach. The disaster recovery and continuity plan (you have one, right?) should not only address situations after they happen; planning by definition is proactive. It is not enough to have a plan to recover from loss or failure; the business must actively engage in activities which will prevent loss and reduce vulnerability.

Part of this plan necessarily centers on managing users and user identities, ensuring that the company knows about all access or user accounts involved and employs strict processes and guidelines for making sure they are constantly up to date and have the authority to do what they’re trying to do. In short, the plan must also be a plan for change, providing change management processes to guide the business as the evolution of information technology and the dynamics of user interaction continue to change.

jmbunnyfeet Make Sense?

January 3, 2014June 13, 2017

Degrees of Success: Improving Productivity and Performance through Process Automation

Few businesses use just one solution to get all their work done. In most cases, the business must at least communicate, produce information and account for financial activities – and each of these functions has a software product or service associated with delivering the required capability. While every business uses technology at some level, some businesses have more success than others in developing streamlined and efficient processes guiding the various tasks and activities performed throughout the day. Sometimes the problem stems from a lack of understanding of the importance of process automation, and sometimes it’s the software.

integrated

The success (or lack thereof) in streamlining a business process is often enabled by the tools supporting it, yet the truth of software and systems is that not everything is easily integrated and not all business workflows actually “flow” smoothly. In many cases it is left to the human user to connect the processes and keep the work flowing, creating the opportunity for missed deadlines, duplicated or erroneous data, and a greater dependency on individual worker knowledge than is good for the business.

The better alternative may be the adoption of workflow and automation tools to assist with bridging and scheduling of repetitive tasks, building the knowledgebase of process and task flow supporting business sustainability efforts and easing the burdens of training new employees. Process automation helps to improve productivity, it’s just that simple.

If the time is taken to really consider the variety and numbers of repetitive tasks employees perform throughout the day, the cost in time, lost productivity and data errors or omissions would likely add up to far more than initially expected. People tend to adapt to using the tools they are provided, and will find ways to get things done (whether it’s the most effective way or not). The end does not always justify the means, and many businesses ultimately find that it is here – where individual worker initiative and unguided action are most prevalent – that the operation fails to accomplish stated goals.

In order to create a sustainable operation with consistently high levels of production and performance, the business must establish a complete framework for process automation and support. Where existing application and software functionality is not able to meet the requirement, the business should implement specialized tools to bridge the gap and embed the process knowledge in the system.

Scheduled reporting, customer and product data synchronization, import/export routines, data maintenance routines – these are among the tasks and processes which represent the regularly-performed work that may be sucking the user productivity and performance out of the business. It’s a matter of degrees of success, and productivity improvements introduced through comprehensive process and task automation can make the difference between a little success and a lot.

Make Sense?

December 24, 2013

Happy Holidays from CooperMann

Ninjabread cookies in the kitchen, an appearance by the Christmas Elk, and Minty Fresh (fresh cat, not canned) looking for Frangos all clearly indicate that the holiday season is here. 2013 has been an eventful year – some would say it was “fraught with peril” while others see opportunity in change. It’s all a matter of perspective – pursuing goals and taking action rather than resting on ones’ laurels and trying to wait it out. This cloud stuff isn’t going away.

With technology and social computing adoption increasing at almost alarming rates, I can’t wait to see how 2014 goes! This certainly isn’t a time for the tech-timid, as it appears as though the nerds and geeks do rule the world (aren’t we all a little nerdly, really?).

I hope you and yours have a wonderful season.

Cheers

Read the Best of CooperMann.com from 2013

December 20, 2013

Accounting, Technology and Small Business – The Best of 2013 from CooperMann

It has been an eventful year, hasn’t it? With the NSA lurking about collecting data, innovative new approaches to information and identity theft emerging almost daily, and complete turmoil in the IT services industry challenging trusted sales and distribution models, most of us have simply become numb to the noise. Information technology is evolving at an increasingly rapid pace and the way people and businesses interact with and use technology is being forced to change along with it. It’s starting to become almost, weirdly, natural.

Much of this change can be attributed to “The Cloud”, which is not a thing or a place. Cloud has become the term which applies to just about anything having anything to do with the Internet. For technology “purists”, cloud means something fairly specific, but for normal people (no offense to the nerds and geeks, but you know what I mean), cloud applies to pretty much anything accessible via the Internet. Photos back up to “the cloud”; music gets stored in “the cloud”, websites are hosted in “the cloud”; businesses run their applications in “the cloud”, and you can do darned near anything you need (or want) to with a phone. The cloud could be some guy’s server in his basement, or it could be a sophisticated network of systems housed in secure facilities around the globe. They both qualify, sort of. The point is that mobility, Internet services, subscription access to technology, and social computing are changing how people view technology – resulting with changes not simply in how IT is purchased, but in how IT is used and applied to daily life.

There are, however, some things that do not change even if the working environment does. The accounting profession, for example, is undergoing a great deal of change, and much of it fueled by the advancements in technology and social computing. But accounting fundamentals – the “truth of debits and credits” and the good old accounting equation – remain. The basics of running a business are also unchanged, even as methods of doing business evolve and globalization of markets continues. Business fundamentals – fiscal responsibility, cash and growth management, and focus on value and sustainability – are as necessary now as every before.

With all this change and IT “advancement”, there have certainly been impacts to how and where we work. But the more things change, the more they remain the same. Good business generates goodwill and more business – that doesn’t change – and bad news still tends to spread faster than good news (much faster, given social platforms that are designed to spread the word far and wide). And when it comes down to the fundamentals – the basic and essential foundations supporting building, operating, and accounting for business – we generally find that they remain constant even as the environment in which they exist experiences change.

Make Sense?

Here are the top 20 ranked posts for 2013 from CooperMann.com

Posts by category – with Accounting Professionals, QuickBooks Hosting, QuickBooks Software, and Small Business being the top categories with ranking articles.

ACCOUNTING PROFESSIONALS

Small Business Owner to Accountant: Make Accounting Valuable to ME

Accounting Professionals, You’re right – your clients don’t care about the numbers.

The Language of Accounting: Disconnect between Accountants and Bookkeepers

Why Accountants and Bookkeepers Use the Cloud

Bookkeeping and Benchmarks – Getting the Numbers Right

In Bookkeeping, Accounting, and Information Technology: The Value of Outsourcing

Re-defining the role of the accountant, or going back to the good old days?

The Collaborative Online Model for Small Business Accounting Professionals

Remote access to client bookkeeping comes in many forms because clients come in many forms

QUICKBOOKS AND BUSINESS APPLICATION HOSTING

What Small Businesses Need To Know about QuickBooks and the Cloud

Intuit Introduces Changes to Authorized Commercial Host for QuickBooks Program, Introduces QuickBooks Enterprise Rental Licensing

Hosting All My Applications in the Cloud

Intuit Hosting Program for QuickBooks Website Goes Live

Cloud Computing for Small Business: It’s All About 3 Apps

QuickBooks Hosting: New Program Tier Announced for QuickBooks Hosting Providers

Managed Applications, Cloudpaging, and a New Flavor of Hosted QuickBooks

QUICKBOOKS SOFTWARE

Changing How We See Software: QuickBooks 2013 interface frustrates power users

SMALL BUSINESS

4 Rules of Thumb for Business Success

4 Rules for Building Service Customer Loyalty

December 12, 2013January 8, 2018

4 Rules of Thumb for Fiscally Fit Business

Most folks who start a new business go in to it with a rather naïve belief that a good idea, product, service and/or group of people can be successful just because their idea, product, service or people are good. Unfortunately, that isn’t’t the reality of starting up and running a business. Regardless of how great and innovative the idea is, the business only works if it is sustainable and profitable. Otherwise, it was just a great idea. For many entrepreneurs, developing an understanding of the financial underpinnings of running a company isn’t the most exciting of ideas. The compulsion is to outsource the responsibility to someone else like an accountant or financial advisor. While I completely and utterly agree that every business owner should work closely with their accounting professional and financial advisor, I also know that those very same business owners will get more value from their advisors if they have a common language to speak (business finance) and are working toward a common goal. The goal is fiscal fitness – the creation of a sustainable and profitable business. Just as physical fitness supports a healthy body, fiscal fitness supports a healthy business.

The successful business operating in this economy adheres closely to 4 main beliefs, rules of thumb perhaps, relating to fiscal management and fitness and which are generally communicated in detail using the language of business finance.

Rule 1. Plan before you start. Then plan some more. Starting a business isn’t like going to college; you’re supposed to know what you’re going to do BEFORE you start up rather than paying to explore the options. It is also very important to recognize that the plan may require some adjustments as you go along (“No plan survives contact with the enemy”), taking care to not equate focus with intractability. This plan should also include the “exit strategy”, which is really a plan for what the owner wants to ultimately get out of the effort. It could be a plan to sell out for gobs of money, to leave a legacy for the children, or maybe just to have an awesome quality of life and do what they love at the same time. Knowing what it will take to get in, get it done, and get out the way you want is all part of the plan.

Rule 2. Keep a close eye on the numbers. No, not all of them, but the really important ones. Some of these numbers have to do with the relationships between price, volume and cost. This is the stuff a business owner needs to know like the back of their hand – hairs and all. Not every business will focus on the same key numbers (mostly, but there are certainly variations), but every business owner should know what to look for. And they should be looking very frequently so things don’t get out of whack before corrections can be made.

Rule 3. Manage the cash, manage the growth, and know how one impacts the other. Cash flow and growth are priorities number 1 and 1 in business but they aren’t the same thing. Consider that reducing prices (and profits) to get more sales may work as long as the volume of sales supports the effort and generates the cash. Without the extra sales revenue to rely on, reducing profits could result in devastation (maybe sticking with the prices the way they are and not pushing for fast growth is a better idea).

Rule 4. If you must borrow, be informed and do it smartly. There are a lot of different options for borrowing money for the business, just as there are a lot of different reasons to do it. There is a great deal of research available which describes the benefits of borrowers being educated in basic financial literacy, with better financial decision-making being among those benefits. Looking for financing is kind of like choosing between the apple and the candy bar: one may promote the fitness you’re looking for while the other does not (but it looks sweet!). It’s nice to have the foundation to support knowing which one you should choose.

Building and maintaining a fit business requires an understanding of how the business works – how and why it makes and spends money, what makes it profitable and what it takes to create and support growth. While outside advisors may be available to help, the best performance is achieved when the business owner masters the essential skills required to run and grow a fiscally fit and sustainable business.

Joanie Mann Bunny Feet

Make Sense?

Measure, Manage and Succeed. It’s all about knowing how to speak the language of finance

December 9, 2013

Servicing Fundamentals: Are Vertical Software Products Becoming Obsolete?

As mobility and the Internet continue to drive changes in how people interact with technology and each other, businesses are finding that the compelling arguments presented by many cloud service providers are tough to ignore. Anytime/anywhere/anymode access to business applications and data, focusing on core business issues and outsourcing non-core processes, streamlining and connecting processes to create efficiency and predictability in operations – these are the benefits which “connected” and cloud technology models are delivering. Cost efficiencies in supporting business operations are also being experienced, as the outsource IT solution often provides fault tolerance, scalability and performance at cost and service levels difficult to achieve with in-house systems and personnel. The scale economies of the cloud cannot be argued with, and it is this cost-efficient and effective provisioning of fundamental business services to users that is increasingly pressuring vertical software makers to either address the market with more fundamentally useful tools incorporated into their products or risk losing users to generalized and commonly used solutions.

Consider that many accounting solutions today have introduced the ability to connect document files to transactions. It makes sense, and provides a basic capability for accounting/bookkeeping which is necessary. On the other hand, what happens to the rest of the documents used in the business – the ones that aren’t associated with a financial transaction? And, if there isn’t mobile access to the accounting system, how are those attached documents made available to remote users and mobile devices? Another thing to think about is the fact that users now have the ability to interact with various files and applications natively on mobile devices, as opposed to having specialized applications to access limited data sets. File sharing applications and productivity tools are widely used by these mobile users, as they provide the flexibility to seamlessly access files regardless of device or location. This fundamental benefit of simple and affordable information access, storage and sharing is proving the value of a generalized approach to enabling users and helps to explain why the operating and file systems were the previous “killer apps” in computing technology. The question for vertical software developers now is whether or not they can effectively incorporate these popular services into their solution, or if the solution must limit its focus on addressing only the truly unique elements of the business rather than the general or fundamental ones.

A great discussion on the subject is an article on PrismLegal.com where author Ron Friedmann describes his similar question in the context of Box.com increasing use in law office environments and how this impacts the legal software market.

More generally, it should cause us to question the future of legal market specific software. I understand the need for customized software; for example, I am currently involved with developing and deploying legal project management software (Cael LPM™ by Elevate Services). But the market – both customers and vendors – must balance the need to meet legal specific requirements with economics and scale.

Box and other cloud providers can potentially sell millions of seats to thousands of organizations. Contrast that enormous reach, which spreads development cost over so many users, with legal market scale. The large law firm market has no more than 400 organizations and 500,000 seats. The development and service cost per user is much higher. Nonetheless, many companies have prospered creating highly customized software for the legal market. In the age of cloud and economies of scale, however, will those economics still be so favorable?

There will always be a place for vertical and industry-specific solutions of certain types, but there is an increasingly large population of businesses which have adopted generalized solutions to address fundamental business requirements, and users (and solution providers) are recognizing that these essential solutions are meeting the majority of the business requirement without specialization (and additional cost) required.

jmbunnyfeet Make Sense?