Doing Digital Right (A Book Review)

Records management is a rapidly evolving field with the influx of digital content that records managers must steward.  The challenge isn’t just managing electronic records, but non-records, content and other data as all information needs to be governed because all information provides risk because of many factors such as e-discovery, data breaches and so much more.  For this reason, I decided to review “Doing Digital Right: How Companies Can Thrive In The Next Digital Era,” by Louis Lamoureux.   It is important for records managers to understand how companies are implementing digital solutions to prepare for the upcoming challenges.

This book is primarily about digital disruption and how to be prepared for it.  Lamoureux sets the stage by talking about how computers and the internet changed how businesses function in the first digital next.  Next, he looks at key digital technologies in the second digital age, those technologies include social, mobile, analytics, cloud (SMAC stack) and big data.  He also discusses how the second digital age is evolving into the third digital age with technologies such as machine learning, internet of things, robotics, artificial language, natural language processing, machine learning and computer vision.  With this foundation set he goes on to describe how the technologies in third digital age can improve products, processes and the customer journey.

The bulk of the book deals with technology in the third digital age so many of the pertinent works that Lamourex references are not books, but web pages and journal articles from 2016 and onwards.  Some of the web pages and journal that Lamourex references is Forbes, Harvard Business Review, ZD Net, Wall Street Journal and CSO Online to name a few.  Lamourex also extensively cites his own research for the book.  His research includes examining five years of annual reports (2011 through 2015) of over 400 companies to analyze any correlations between digital initiatives and business performance.  The companies included in his research primarily came from Standard and Poor’s 500 index and to ensure Canadian representation he also included 20 of the largest companies on the Toronto Stock Exchange.  He describes his methodology this way:

To identify the extent to which each company was undertaking digital initiatives, we examined annual reports for mentions of words associated with such initiatives and activities.  This research was conducted in a manner akin to sentiment analysis, which corporations undertake to learn what customers are saying about that. We took the number of mentions as an indication of the company’s digital activity (Lamourex, 2017, Location No. 318).

Whether in first digital, second digital or third digital, the one constant with companies that successfully use digital technology is to have a vision which involves using technology to make better products, achieve process improvement and make things easier for the customer.  Doing digital right means having a vision of positive business outcomes which is achieved through having business uses that incorporate digital technologies to improve products, processes and the customer journey.

In setting a vision for doing digital in an organization Lamourex believes it’s important for an organization to identify if they offer a differentiated product or a commodity product.  A differentiated product is some type of tool or something tangible that a consumer would buy.  With differentiated products disruption is likely to occur when building a better product using digital tools.  In regard to internal processes and the customer journey disruption is possible, but doesn’t have as high of a return on investment.  An example that Lamourex gives for disruption with a differentiated product is with luggage that can be locked and unlocked with a mobile device or your fingerprint, luggage that is self-propelling and will stay within six inches of its owner and luggage that can check itself in at the airport.  Lamourex lists two types of commodity products in which disruption is likely, the first involves lowering cost through improving internal processes and the second is creating a smoother customer journey for the consumer.  An example of lowering cost through improving internal products is in financial services where artificial intelligence reduce manual effort in areas such as financial advice and basic legal services.  An example of making the customer journey easier is in meal delivery by using robotics, predictive ordering, autonomous delivery and en-route preparation so that customers can receive prepared food quicker and easier.

One of the things that I found helpful about the book is how it laid out digital vision questions.  If you want to use digital technologies to maximize the value of a differentiated product you should ask yourself, “What digital technology or information is valuable to customers and should be embedded into our products or provided as a service?”  If you want to use digital technologies to improve processes by minimizing the cost and effort you should ask yourself, “How do we minimize movement and automate processes and make them faster, more reliable and lower cost?”  If you want to use digital technology to enhance the customer journey you should ask yourself, “How can digital make the customer processes such as ordering, receiving, getting service, and using the products easier?”

Working in records manager for a registered investment advisor this quote particularly hit close to home as it showed how technology is changing the industry:

In the area of compliance, banks are using Natual Language Processing and machine learning to automate compliance to deal with increasing regulatory requirements. These types of artificial intelligence are helping track money laundering, sanction list monitoring, and billing fraud.  Companies are moving toward automated and continuous monitoring and the ability to report compliance at any moment. Dashboards include real-time analytics on enterprise risk and compliance. Regulatory and legal requirements are on the increase. Having more digital assets means more tracking of those assets. Records management requirements include digital as well as physical assets. The SMAC technologies, the rapid pace of innovation, and the increased collaboration with external parties have all complicated risk and compliance management (Lamourex, 2017, Location No. 1,589).

I believe this book can be particularly helpful for records managers as Lamourex talks a lot about internal process improvement.  With records management involving more workflow and business process management it is important to understand how digital tools can be leveraged to get critical information to the right places and faster as well ensuring it is authentic, auditable and preservable.

My one complaint about the book is that the author didn’t spend more time talking about governance.  He closes the book saying, “The execution plan must include necessary governance,” but he doesn’t go into any specifics.  The most successful digital initiative will lose the majority of its return on investment if no one is held accountable the data or if the data isn’t managed properly so it doesn’t start to lost money over time from becoming redundant, obsolete and trivial.  Overall, I enjoyed “Doing Digital Right” and believe it is a valuable read for anyone in information governance who wants to know what is on the horizon and will give them talking points about the third digital age and how to prepare for it from an information governance standpoint.


We Will Always Need Governance (a response to Goodbye Governance…”

CMSWire recently hosted a piece with the provocative title, “Goodbye Governance, We Don’t Need You Any More.”

We are at a critical turning point with the consumerisation of IT.  The digital workplace isn’t just about the technology that is available, but also the skills that the people have to leverage the technology that is available.  The sky’s the limit, but if everyone attempts to fly to the sun without governance there are bound to be more Icarus’ than Wright Brothers.

As I read the article on CMSWire it made me think of frontier time and all the potential that someone could gain by moving out to the west with hopes of finding “gold in them thar hills.”  With the digital tools at our disposal there is definitely good available, but there is also danger with cybercriminals who want to steal pii, corporate information or infect your system with malware.  Governance provides a safety net to keep data safe and organizations in compliance.  Without governance we are headed to the Wild Wild West

Staying with the frontier times analogy, governance allows for a unified digital front as transformation happens.  Information is a company’s most critical asset and if departments within an organization hoard information they can impede the progress of other departments.  Governance facilitates different groups to best leverage tools for information to be used uniformally across the board instead of clogging up bandwidth or not making the most current and accurate versions of information available.  In frontier times a family was weakened when someone left the family to go out west to look for gold and with digital transformation an organization can be weakened when innovations is attempted without the oversight of governance.

Governance is not the enemy of innovation.  A key part of digital transformation is digital disruption.  Not everyone survives the disruption to reap the benefits of transformation which is why governance is needed in the digital transformation process.

 Martyn Perks  (author of the article) makes the point that governance is too much about the restraints that have been placed on the digital workplace.  Restraints are not a bad thing.  If there was no speed limit there would be more accidents on the highway.  If there was no governance there would be more mishandling of data and misfiled records (the statistics on the time spent wasted looking for information that wasn’t categorized properly is staggering).  It is in boundaries that we often find true freedom.

An excellent point that I think that Perks make is that with all the talk of the need of governance needing C-suite support it can often fail to account for how people work.

unlike a governance team with a clearly laid out agenda, this approach is all about balancing out business strategy with what’s happening ‘on the ground.’

The people you choose as managers must be prepared to walk-the-talk and engage with staff (wherever they may be), rather than hiding away in the safety of your HQ tower behind a desk full of policies that start with the words “Thou shall not ….”

If governance is all about “Thou shall not” and not empowering people to become more efficient with information and work more productively and use tools that are available to connect with others than we are need to reconsider how are doing governance.  The misconception about governance is that it’s records management 2.0, but governance is more than that and if it’s all about compliance, security or records management and not getting a competitive advantage from information, processes and how people use technology to leverage the two then we have governance all wrong.

Why Digital Transformation Is So Hard

Organizations aren’t falling behind well-established standards so much as “struggling to keep up with accelerating standards,” the PwC report said. It’s clear “most are not ready for what comes next – as technologies continue to combine and advance and new ways of doing business go from inception to disruption seemingly overnight,” it added.

Another way of saying that is that the technical skills in hand in the IT organization may be the same or greater than before, but executives’ conception of what will be needed in the near future is outstripping those skills. Welcome to the age of digital transformation…

Most companies have not kept up with the need to transform digitally “as powerful new tools crowd into the marketplace,” the report warned. The scale against which the executives are measuring their digital preparedness is not a static one but the fast-moving environment in which they now find themselves. The companies may actually be smarter about technologies they’re using “but the questions keep getting harder,” the report noted.

The above is taken from, “The Need to Go Digital Is Clear; Not Everyone Can Get There” in InformationWeek

InfoGov Links Of The Week 03-31-2017

AIIM 2017 State of Information Management

For purposes of context for our survey, we positioned digital transformation as the concept of being paperless, using multi-channel inbound capture, and the impact digital transformation will have on individuals, business organizations, and operational processes. What we found is that there is progressive movement, albeit not the hockey stick inclination everyone hopes for, but movement nonetheless.

Digital transformation drives interest in governance, predictive analytics

Three trends that will grow due to digital transformation in the workplace are:

  1. Shifting From a Legacy Culture to the Cloud
  2. A New Approach Due To Data Governance Due to IoT
  3. Using Predictive Analytics to Make Better Decisions

GDPR Is Looming: How ECM Can Help Businesses Meet the Challenge

Metadata can play an important role in helping companies comply with the various GDPR requirements. When leveraged within an ECM system, metadata helps companies correctly categorize and manage PII according to GDPR requirements.

Are We Really Having the ‘ECM is Dead’ Conversation Again?

ECM describes the overarching strategy or concept of operations for managing unstructured information. Technology is of course important, but is just one third of our traditional view of implementing technology into an organization: People, Process and Technology.

The Right Way to Make Your Data Deliver

When data is only used for things like risk management, fraud prevention and compliance-related activities, its awesome potential is never realized and money is left on the proverbial table.

But business intelligence can also successfully tie profits and losses back to everything from promotional campaigns to the weather patterns affecting individual store sales.

Twitter stops counting usernames in replies toward the 140-character limit

Twitter’s 140-character limit is essential to its existence, but the company realizes how annoying it can be to trim your thoughts when composing a reply because the person you’re chatting with has a long username. Twitter has decided to no longer count a username toward your 140 characters, a change now rolling out to its iOS and Android apps as well as

Millions of Stolen US University Email Credentials for Sale on the Dark Web

Stolen email addresses and passwords from the largest US universities are offered for sale on the Dark Web at anywhere from $3.50 to $10 apiece…

With the help of research firm ID Agent, they found 13,930,176 credentials from those big schools, with the University of Michigan (122,556), Penn State (119,350), University of Minnesota (117,604), Michigan State (115,973), and Ohio State (114,032), with the most credentials for sale, and MIT with the biggest ratio of stolen and spoofed email addresses to number of enrolled and staff, 2.81:1, followed by Carnegie Mellon University, 2.4:1, Cornell University, 2.39:1, and others.

“I’ve been scraping the Dark Web since 2009. There were 2.2 million .edu [emails] there back in 2015, 2.8 million in 2016, and now almost 14 million a year later. That’s a significant spike,” says Brian Dunn, managing partner at ID Agent.


InfoGov Links Of The Week 03-17-2017

Forces of Change In Content Management – Keynote from John Mancini at AIIM17

Slide 11 has several questions on these forces of change, the most pertinent one being, “What Does The Business Want? Enhanced Customer Experience.”  This makes me ask the question of how am I empowering employees to have access and insight information to enhance the customer experience so we can get the highest ROI from records and information and not waste time wading through junk looking for the right information.

AI Automation Starts To Transform The Legal Profession

While AI and big data make processes such as document review more efficient, it is at its most effective when combined with human expertise. “The system may identify and classify a clause that pertains to transfer rights, but the model will be unable to confidently assess whether the particular clause actually prohibits or permits the transfer of rights and obligations between parties,” says Orlando Conetta. “A lawyer would need to read the clause and make that determination, while AI ensures that the lawyer can find the clause quickly and only needs to assess the provision once, across all the documents it may be found in.”…

Richard Susskind co-developed the world’s first commercially available legal AI system in the 1980s and has recently co-written The Future of the Professions about the impact of technology on professional jobs. “In the 2020s, legal professionals will have a stark choice – compete with machines or build the machines,” he says. “By competing with machines, I have in mind that human lawyers will be doing things that machines cannot.

“By building the machines, I have in mind recognising that there will be AI solutions in the future for many of the problems that bring clients to their lawyers today; and so the way to meet clients’ needs will be to be involved in building these AI systems.”

Susskind says AI is likely to carry out work including due diligence reviews in transaction work, predictions of court decisions and online dispute resolution. “All of this means that legal professionals will not just be legal advisers, they will also be legal knowledge engineers, legal data scientists, legal technologists and legal process analysts.”

Information Management Fuels Your Digital Transformation Experience

Digital transformation ultimately means digitizing processes for improved process transparency and accuracy, ease and speed of transaction, customization and satisfaction from the customer experience.

What Trump’s Skinny Budget Says About Cybersecurity

President Donald Trump’s 2018 budget blueprint, released Thursday, touts major investments in cybersecurity, including a $61 million hike to help the FBI and the Justice Department combat criminals and terrorists’ use of encrypted communication tools.

The document is light on specifics, however, and does not include a top line figure for cyber investments.

Trump’s Homeland Security Adviser Tom Bossert pledged a broad plan to improve federal cybersecurity during his first formal address Wednesday, including by investing in modernized government technology and sharing cybersecurity services between agencies but stopped short of suggesting dollar figures. Trump plans to “put his money where his mouth is” on improving cybersecurity, Bossert said.

Ensuring The Next Data Breach Isn’t Yours

As the use of the cloud grows the severity of data breaches rises. This year’s breaches have proven that organizations should never think they are exempt from a breach. Rather, they should accept a “when,” not “if,” mentality, and have policies in place to detect and prevent sensitive data from falling into the wrong hands.

How To Compete In The Age of Analytics

If your organization has not started on the path toward building out a big data environment, you are behind the curve. Big data is here to stay and providing several benefits and new capabilities. One of the primary drivers behind the first wave of implementations is to lower the cost structure of storing the ocean of data that organizations are swimming in. Traditional data platforms are costly and do not provide an economical solution for storing massive amounts of information. By leveraging low-cost, commodity hardware, companies can store petabytes of information at very reasonable cost.

AI Is The Most Important Development in Tech, and the Deadline for Adapting was Yesterday

After speaking with about 10 people from across the AI/Big Data spectrum — from investors and startups to corporates and techies with opinions — there seems to be a sense of inevitability about the fact that AI will play a significant role in the day-to-day lives of the average person.

Which means the next 5-10 years are to be defined by our ability to adapt to AI technology and its disruptive impact. Unlike the Internet in 1990, a lot of ‘old school’ people (like governments, traditional SMEs and large corporations) seem to recognise AI as a potentially disruptive technology.

How did Yahoo get breached? Employee got spear phished, FBI suggests

The indictment unsealed Wednesday by US authorities against two agents of the Russian Federal Security Service, or FSB, (Dmitry Dokuchaev and Igor Sushchin) and two hackers (Alexsey Belan and Karim Baratov) provides some details of how Yahoo was pillaged of user data and its own technology over a period of over two years. But at a follow-up briefing at the FBI office here today, officials gave fresh insight into how they think the hack began—with a “spear phishing” e-mail to a Yahoo employee early in 2014.

Malcolm Palmore, the FBI special agent in charge of the bureau’s Silicon Valley office, told Ars in an interview that the initial breach that led to the exposure of half a billion Yahoo accounts likely started with the targeting of a “semi-privileged” Yahoo employee and not top executives. He said social engineering or spear phishing “was the likely avenue of infiltration” used to gain the credentials of an “unsuspecting employee” at Yahoo.



InfoGov Links of The Week 03-10-2017

Blockchain & ECM

Blockchain in some ways defeats the point of centralized records management but the likelihood is that more specialized applications will be adding this kind of functionality to their systems.  Potentially disrupting the traditional approach to RIM.

The More Things Change – ECM Isn’t Really Dead

ECM is not a technology, methodology, or process. Rather, it is a mindset or framework designed to get the right information to the right audience, in the right context, at the right time. ECM is enabled by tools and processes that help capture, manage, store, preserve, and deliver information…relabelling ECM is rather pointless. I’m fairly certain the buyers don’t care, and the vendors are going to have to use terminology that resonates with the buyers. “Wanna buy ECM? or “Wanna buy Content Services?” are likely to get the same none too friendly response. Content Services is not a market. Content services are what content management tools provide and it’s been that way ever since someone coined the term “Enterprise Content Management”.

Why It’s Time to Think Differently About Information Management

Do the processes we ask end users to go through align with the way they work? Or are they at odds with modern working life?1

It’s essential to build easy-to-use information management practices for how users work today — not how things worked 20 or 30 years ago.

How to Make Your Information Management Program Successful

You’d think that if the program’s stakeholders get it right by understanding their current environment (e.g., being attuned to the needs of the business and planning the major organizational elements of their program, systems, and organization of content, etc.), that they would be primed for success. Well, they are, but ultimately, enterprise programs aren’t successful because the board approves the project. They are successful because they are executed well. In too many cases, leaders, who have exceptional strategic skills, lack the day-in/day-out, persistent approach needed to deliver on a three-year vision.

5 Trends Shaping Information Management

  1. Data Teams Bridge the Gap Between IT and Business
  2. The tools of the Clouds Era Emerge
  3. Security Gets Worse Before It Gets Better
  4. IoT Transforms Physical Environments and Social Conventions
  5. Opportunity Spikes in Cloud Management Arena




InfoGov Links Of The Week 03-03-2017

AWS, Microsoft and Google take different paths to the cloud

An outage at Amazon Web Services Tuesday rekindled the debate about whether it is wise to rely too heavily on one cloud service provider. Such snafus are rare for AWS so CIOs worry more about the potential for vendors to turn off their service without notice.

But CIOs who bet on multiple providers often invite challenges, including committing resources to work with each vendor…
Understanding the keys to enterprise information management success
all information, whether structured or unstructured, electronic or printed, or raw or derived, can benefit from the same kind of asset management discipline and EIM program. I’d like to see the day in which all forms of data/information/content/records are managed under some unified approach.

6 Personal Observations about “ECM” and “Content Services”

  1. In the end analysis, “Content Services” is just another label.
  2. The term “ECM” DOES need retirement and/or modification.
  3. “Content Services” means applications and processes are center stage.
  4. “Content Services” DOES need a definition.
  5. The change represented by “Content Services” is a fundamental one for solution providers.
  6. “Content Services” ultimately is a story of disruption.

Technology Standards and the New EDRM

Standardization of technology has the promise to cut business and legal risks through the identification of challenges and development of mechanisms to prevent actual and potential issues and downtime. Standardization also many times is the precursor to the rapid uptake of new and beneficial approaches to solving problems with technology. If the EDRM, under its new leadership, can contribute to industry standardization by helping create technology standards besides task and process frameworks, the development of data and legal discovery technologies may see a new level of acceleration that should positively impact all members of the eDiscovery ecosystem.

How to Avoid Big Data Mistakes

Looking for a way to keep your customers happy and feeling safe, your bosses relaxed and confident, and the rest of your company’s teams protected from major mistakes? Just as a solid accounting system ensures and demonstrates that a business is being well managed, a data governance program is a necessary element of any business today that deals with data. And that’s basically all businesses.

Best Practices For Lowering Ransomware Risk

While ransomware actors in many cases return the data as promised, they may leave backdoors to return for more money, time and time again, or may not return data at all.

How I Pulled Myself Out Of The Waterfall

I was an IT executive several years ago at a large biotech company that was drowning in the waterfall method and our team knew it had to stop. We instituted an early experiment in DevOps, an organizational construct that calls for software developers and operations teams to exit their silos and collaborate closely to accelerate the frequency of code releases into production.

Top Cybersecurity Posture Also Aids Organizations With Innovation

cybersecurity is no longer just a means to avoiding a PR disaster, but rather it’s become a necessity for engendering digital innovations, goodwill, and user loyalty, as well as driving revenue growth. Those companies that refuse to invest in it are doomed to be left behind.