CIO ran an article today Digital Transformation: "It Isn't a Technology Thing". They asked the IDG Influencer Network "what are the most important skills and strategies that IT leaders need to tackle digital transformation?"
There's a lot of answers, of course - but where do you see the role of a CISSP in the process of digital transformation? What about a CCSP? How do you think the approach would differ?
Digital transformation is more than a buzzword. It typically entails significant changes in many business processes as well as information technology. These changes will most likely involve a hybrid IT platform. Traditional on-premise infrastructure (the historic CISSP focus) will need to be integrated with cloud computing services (the primary CCSP focus). The task of conducting, presenting and explaining cost benefit trades and recommendations will be daunting.
From my perspective it is a journey, brought about by a number of Millennium driven initiatives (17-35 year old) - greater demands driven by technology capabilities coming to maturity. Internet of Things (IoT) and connected systems. The promise that clients/customers can immediately affect organisations by walking with their feet, so quickly, transitioning from one provider to another. So demands on the providers of services increase, which has a knock on effect on organisations. If organisations want to survive, they must embrace change, whether it through the use of "Agile", they have to constantly innovative, and actively listening to their clients and proving they are can change according to their recommendations. Remaining resilient and adaptable, whilst protecting the organisations capability to adapt to their clients requirements is challenging. Those organisations, who embrace those changes will indeed survive, and may be all the better for the changes around them, if they apply the CISSP and CCSP principles and invest in their people. Those organisations who do not will drop off the side. I agree with Kevin's perspective the ability to explain intangible benefits against increasing demands for justification will mean wider thinking and risk management being taken. Those who are prepared to take the risks and learn from them, will be the ultimate winners.
Interesting piece from ZDnet on digital transformation and cyber security: