Six Difficult Questions to Ask About Data Governance

By Chris Preimesberger  |  Posted 07-03-2007
SAN FRANCISCO—With industry analysts warning that business data continues to fill up storage at an average of 60 percent per year, enterprises of all sizes eventually need to make a strategic decision: Will they take better control over the organization of their data as it comes into the system, or will the data simply keep piling up in servers and storage without a clue about access and security?

Steven Adler, IBM's program director of data governance solutions, suggests that being proactive and assessing the notion of "data governance" as soon as possible is a key move for a business of any size.

"We're really talking about organizing human beings to affect certain outcomes. And that's all about behavior," Adler said. "We're coming to this issue of governance because stovepiped management approaches to data and all of its different dimensions aren't working."

Adler spoke in keynote addresses last week at both the Data Governance Conference at the Mikayo Hotel here and at the Burton Group Catalyst Conference at the Hilton.

Loosely defined, data governance is managing data as an enterprise asset and controlling operational risk. It means safeguarding corporate information, keeping auditors and regulators satisfied, and using improved data quality to retain customers and drive new business opportunities.

CA, one of the top vendors in the data governance sector, believes that data governance is the bridge between the business people and processes and the IT system of a company. No matter how it is defined, data governance involves work to improve the quality of information stored on databases and typically includes the creation of a team of IT professionals whose sole job is to boost the reliability of the data and improve access to the content.

Read here about Symantec's data risk management tools built into its Information Foundation product.

Among the technologies utilized to support such efforts are software tools used for tracking the manner in which employees are looking at files, and how they behave while logged into databases. CA, IBM, Hewlett-Packard, Oracle, Hitachi Data Systems, Symantec and Scentric are among the market leaders in the sector.

"We're beginning to realize that the category of data is much broader than we thought," Adler said. "This is not just about customer data or employee data, structured and unstructured; it's also about video and audio, print, protocols, messages and e-mail—and even software code."

Data is anything that runs on a computer that is created by a person or another computer, Adler said. "All of those different classifications—for different companies and individuals—have value, and also liability," he said. "Management should be concerned with all of it. That's why we need a 'governance' approach."

Organizations, like governments, have interest groups, Adler said.

"Factions are a way of life for any large organization. You have governance to recognize them and to deal with them," he said. "All these different constituents—whether it's security, data quality, data management, data architecture or risk management—all these constituents are key players."

Policy is the articulation of a decision a governing body makes, Adler said. "That could be in the form of a standard, architecture or written policy or rule—or just a memo: 'We're going to use this vendor as opposed to that one.' That's a policy decision," Adler said.

Sometimes those decisions are made by individuals, but "we hope more often they're made by groups," Adler said. "Groups seeking to hear different points of view and reach a consensus. The act of sharing common interests and deciding on a common goal—that is the nature of governance."

Read the full story on eWEEK.com: Six Difficult Questions to Ask About Data Governance