Bloomberg Anywhere Remote Login Bloomberg Terminal Demo Request


Connecting decision makers to a dynamic network of information, people and ideas, Bloomberg quickly and accurately delivers business and financial information, news and insight around the world.


Financial Products

Enterprise Products


Customer Support

  • Americas

    +1 212 318 2000

  • Europe, Middle East, & Africa

    +44 20 7330 7500

  • Asia Pacific

    +65 6212 1000


Industry Products

Media Services

Follow Us

Bloomberg Customers

Global Economics

IT Risks: The Ill-Prepared Get Eaten

Factor in tech-system vulnerabilities in your business planning to ensure smooth operations at every stage and ward off competition

Businesses must recognize that failing to handle IT risks puts them at a competitive disadvantage, according to analyst house Gartner.

While IT has become increasingly central to business success, many businesses have not adjusted their processes for IT decision making and risk management, Gartner says.

Analyst Richard Hunter said failure to properly take account of—and plan for—IT risks can affect business agility. "Managements that do understand IT risks are pulling ahead, while those that don't are falling behind and getting eaten," said Hunter. "Uncontrolled IT risk dampens an organization's ability to compete."

He said businesses that tailor business processes to take account of IT risks find they are better able to integrate systems, for example, after an acquisition, and are more capable of divesting themselves of companies they wish to sell.

Hunter, who was speaking at Gartner's IT Security Summit in London, said: "IT risk has changed. IT risk incidents harm constituencies within and outside companies. [Incidents] damage corporate reputations and expose weaknesses in companies' management teams."

IT managers must convey the consequences of IT risks to the business, said Hunter. "It's not simply a case of saying 'there's a risk that the server might go down'. You have to look beyond to say what that server supports in the business—that, if it goes down, you'll lose $50m in the first week, and be out of business in three weeks."

According to the analyst, a company must ask itself whether its IT systems and business processes will continue running in the event of technology failure, and whether the systems will recover from interruptions. Companies should also ask whether the right people have access to the data they need to do their jobs, and whether the wrong people are blocked from accessing that data.

Hunter asked: "Can the company's IT systems be relied on to provide correct, timely, and complete information that meets the requirements of management, staff, customers, suppliers and regulators? And do the organization's IT systems possess the capability to change if the company acquires another firm, completes a major business process redesign, or launches a new product or service?"

The analyst said a company needs a solid foundation of IT assets, people, and supporting processes and controls that enable executives to manage the right risks in the right order; a risk governance structure and process that integrates IT risk management into every business decision to identify, prioritise and track risks; and a risk-aware culture, nurtured from the top, that attunes people to the causes and solutions for IT risks and that increases vigilance across the organization.

Provided by—Driving Business Through Technology

blog comments powered by Disqus