Outsourcing And IT

First, sorry for the tardiness of my posts. Between the holidays, coming back from the holidays, a cold, and a secret project (for now), I haven't had time to blog.. until now. My current focus has been a Facebook game application. Well it's still in the alpha phase, but I wanted to get the architecture up and running. There's nothing worse for an application development person than to finish your application, then find out you need to rewrite it (or worse) because of the architecture doesn't support it. Even without Zembly, setting up a Facebook application is pretty easy. Since I had most of the defaults already in, the only thing I need to do is to tell Facebook where my application resides. Since I don't have Zembly anymore, I have to put on my application development and network administrator hats on set up an application server.
My first test was to deploy the application into my local Tomcat. NetBeans does a great job of having the files available to you, but the thing you learn quickly is that there isn't a simple deployment piece. Tomcat needs a WAR file, so I tried to use the JAR command to WAR up the files in the dist folder. No dice. The war file needs a proper web.xml file to work properly. Rather than use workarounds on workarounds, I created a web application project in NetBeans, linked the jar file from my JavaFX project, and copied the JNLP and HTML files to my new project. I now have a WAR to deploy. Tomcat loves this file. I run and... “FILE NOT FOUND?” was heard all throughout Cincinnati. Your JNLP file that was created points to a servlet called internally by NetBeans. Make sure change the following lines:

<?xml version="1.0" encoding="UTF-8"?>
<jnlp spec="1.0+" codebase="http://your server.com/app path/" href="SBWarsTest_browser.jnlp">
<information>
<title>SBWarsTest</title>
<vendor>STAR BASE </vendor>
<homepage href="http://your server.com/app path/"/>

Once I made the change to localhost, everything was fine. Now I wanted a real application server, so I downloaded and installed Glassfish V.2.1 on one of our servers, changed the JNLP file and we are in business. I tried to hit it from my machine, and no dice. After some extensive research, I found out the the Java 7 EA JRE does not play well with JavaFX. I uninstalled it (which reverted to JRE 1.6.18), and it works. In Facebook, you need to set the canvas callback URL to your host application path. The result is the pretty picture you see at the top of my post.

According to ComputerWorld, web application development remains top dog by far in the top IT skills to have in 2010.  Specifically, companies will look for developers with knowledge of .Net, Java, Web development, open source and portal technologies.  The article goes on to suggest that combining web application development skills with business analysis or project management skills is a big plus.  ComputerWorld lists the remaining skills to have for 2010 in its top six as:  Help Desk/Technical Support, Networking, Project Management, Security and Business Intelligence.

I feel ComputerWorld did not put enough emphasis on Security; this without doubt will be the biggest challenge for IT executives in the coming years.  Open-source software may be an innovative money saver, but IT professionals still have concerns that networks could be vulnerable to viruses, cyberattacks and other intrusions.

According to InfoWorld, a new survey from Forrester Research found that 58 percent of large companies have security concerns about open source. In addition, 57 percent of small and mid-sized businesses expressed concern that open-source software would be "complex and hard to adopt".

With the advent and increasing usage of open-source in the business world, expect to see demand for IT security related skills to grow.  According to the FLOSS 2020 roadmap presented at the Open World Forum in Paris, 40 percent of jobs will be related in some way to open source by 2020.  You can expect application development and security to comprise a great majority of these jobs.
 

I was reading this article and as a Cincinnati based IT consulting firm owner, found it interesting.  Social networks are influencing our everyday lives more and more each day.  This research was conducted by Don Bulmer from SAP and Vanessa DiMauro  According to them, there were six key findings:

1. Professional decision-making is becoming more social - enter the era of Social Media Peer Groups (SMPG).
Professionals want to be collaborative in the decision-cycle but not be marketed or sold to online; however online marketing is a preferred activity by companies.
2. The big three have emerged as leading professional networks: LinkedIn, Facebook & Twitter.
The convergence of Internet, mobile, and social media has taken significant shape as professionals rely on anywhere access to information, relationships and networks.
3. Professional networks are emerging as decision-support tools.
Decision-makers are broadening reach to gather information especially among active users.
4. Professionals trust online information almost as much as information gotten from in-person.
Information obtained from offline networks still have highest levels of trust with slight advantage over online (offline: 92% - combined strongly/somewhat trust; online: 83% combined strongly/somewhat trust).
5. Reliance on web-based professional networks and online communities has increased significantly over the past 3 years.
Three quarters of respondents rely on professional networks to support business decisions
6. Social Media use patterns are not pre-determined by age or organizational affiliation.
Younger (20-35) and older professionals (55+) are more active users of social tools than middle aged professionals.
There are more people collaborating outside their company wall than within their organizational intranet.

After reading this, a Bad Company tune came to mind, “Run with the Pack”.  There is certainly safety in numbers.  My question is this:  If everyone is doing the same thing, are they giving up any competitive advantages?

 

“IT executives increasingly implement marketing initiatives to improve the communications with their business customers. But these efforts often focus solely on the brand aspects of the services under the IT’s control without understanding the business’ perception of IT. To maximize the success, IT must add business satisfaction assessments to its tool kit. Understanding business satisfaction requires qualitative and quantitative data that capture customer expectations and perceptions through different types of interactions such as interviews, panels, focus groups, complaint systems, and surveys. This report provides best-practice recommendations, survey templates, and questions to guide IT executives through the deployment of a business satisfaction assessment. It applies Forrester’s deep expertise in external customer satisfaction to the interface between business customers and their internal IT suppliers.” says a new Forrester report.

I have served on countless business application development teams within several organizations in the Southwest Ohio and Cincinnati Information Technology community, one thing I can say is that most IT organizations do not gauge business satisfaction with IT business solutions.  I have served in only a couple of organizations where the business serves on the IT governance committee.  An organization does not have to be “big” to have an IT governance committee.  No matter what the size of the organization decisions are made as to priorities in IT work.  IT governance does not have to be a long drawn out process or take great time commitment from the business or IT executives, but business involvement in IT governance goes a long way in gaining business buy-in as you roll out the IT business solutions to the business.

Involvement in IT governance is just one way that many organizations in the Greater Cincinnati area can improve the IT-business relationship.  The Forrester report goes into ways to solicit and gauge business satisfaction with IT business solutions.  Doing so should affect decisions concerning not only IT business solution delivery but also IT Infrastructure and IT outsourcing initiatives.

 

I am part of the LinkedIn community and a member of several groups in LinkedIn.  One of the groups I am a member of is the IBM i Professionals group.  I get a weekly summary of activity and sometimes there are comments on the posts that people have made.  Usually there are no more than 3-5 comments.  What caught my attention is a LinkedIn post that had 23 comments.   The original post referenced this blog post:  http://blog.angustheitchap.com/?p=159  In this post, the author talks about the iSeries application development community needing to pull together to DO something about the lack of support for the platform.  He asks the question: What have YOU done for the IBM i platform this week?

As a former iSeries application developer, I thought it was a good question, perhaps about 10 years too late, but a good question none the less.  Let me state for the record that the iSeries is a great platform and it is without a doubt the best box for business that IBM has. 

The problem is that it is a victim of its own success.  There is no other platform where an application written in the 1980’s could still run un-touched even though the underlying hardware has changed numerous times.  To me the core issue is this: IBM is no longer in the hardware business; meaning they don’t derive that much revenue from hardware anymore.  The majority of IBM’s revenue comes from services.  The iSeries does not need or generate the services revenue that other platforms do.  So in my opinion, it’s an economic issue and no amount of doing or community is going to change that.

I recently read an article about the state of the IBM “i” and the amount of complaining by IBM application development and business partner folk. I know several RPG application development folk, and it sounds familiar. That made me think about my Java Application development and career. Are there things to complain about, and uncertainty about the future? Yes, but there are 2 reasons why the Java community is in a better place; the business model and the community. Before the IBMers call for a holy war, I said COMMUNITY! I am not talking about the strengths or weaknesses of the hardware or software. The business model for IBM is that they make the hardware and software, and partner for the sales and service. I think that is a viable model until IBM competes in the sales and services with their partners. If a lead is brought in by a small partner, they are awarded by giving the business to someone bigger. This sets up a confrontational relationship between IBM, the big partners, and the little partners. IBM can also decide whether or not you are worthy to be a partner. Why does this affect the software application development team? Because most consulting firm are selling SERVICES not HARDWARE. If they are not seeing business because of political fighting, they don't have to sell it. There are viable options on other platforms, where interference does not happen. IBM never fostered a community, they created a hierarchy with themselves as the head.

Certainly Sun has done some things that made myself and others unhappy. Besides, complaining, we actively pushed to remove barriers in our path. We do have an open source Java. Is there a IBM community that can work with RPG to make it work for them? I also think its about scale and timing. It's not like IBM software developers have their own AS/400 at their home. It's easy for me to create and use nearly any kind of application at my home in Cincinnati, and pretty cheaply. It makes it fun to tell non-technical people about my application development. Nobody but accountants want to hear about accounting programs. Java, and newer languages have grown up with the Internet. I have friends from all over the globe that have similar interests. If I have a problem, I can go online to a forum, friend, or web page to find what I need. I can read and write blogs to voice my opinion (like now). These things are not ingrained in the Legacy community, and in fact, have been actively campaigned against. It is my belief that any software, hardware, or service will die when there is no vocal community to support it.

Seems like it has been a while since I have had a chance to do a post.  For the last 3 weeks things have been absolutely crazy in our IT consulting world, but in a good way.  We had a chance to go to the Techserve Alliance national conference in Las Vegas.  I have heard all the jokes, including the one about it staying in Vegas.   We did learn that just because you are pre-checked with the airline, does not mean that your bags are.   We got our bags checked with literally a minute to spare and fortunately all made it back to Cincinnati.

Upon return, we signed a support contract for a new customer.  They trust us enough to outsource their entire IT applications support to us.  We have a real life example of an IT Strategy that was discussed at the conference (See #3).  Not only was IT strategy discussed but business strategy as well.  Here are some highlights:

1. Market Differentiation - customers have lots of choices, how will you stand out?

2. Improve Systems and methodology for delivering service- excellence, efficiency, depth of service.

3. Outsource what you can-eliminate the busy work that does not add strategic value.

4. Deal with the economy being slow to recover till 2012, spend your money wisely, hire wisely, fire quickly, and refine what is working, stop what is not.           

5. Build Alliances with like minded providers in different industries and sell collaboratively to serve the customers' need.

My favorite of these five is number four.  Said another way, its takin’ the basset hound to the farm.  I’ll expand more on that in my next post.

I attended the first meeting of the season for the Cincinnati IIBA^® Chapter. They are doing a series entitled CIO Speaker Series, where they have the CIO from prominent companies in the Cincinnati area who have demonstrated a solid commitment to promoting the effective practice of Business Analysis in their organizations come and speak on how that commitment is put into practice within their organization.

Now I really thought this was going to be boring but the speaker; Jeff Wolverton, Senior VP and CIO of Great American Financial Resources, Inc. (GAFRI), captured my attention when he spoke about how he used the area of Business Analysis to turn his IT organization around and assist them in providing better IT business solutions.

Jeff has been with GAFRI for 11 years and has held the position of CIO for the past 8 years, but they have really put an emphasis on the area of Business Analysis and have begun to reap the benefits thereof here in the last year and a half.

He demonstrated how putting Business Analysis first changed the reputation of his IT staff within the organization from an IT production support group that is slow in delivering business applications that are often bug ridden, to an IT staff that develops great business application solutions that work for the business. GAFRI IT staff went from delivering solutions and telling the business to report any bugs found and they will fix them to delivering business solutions where they had found 85% of all bugs prior to user acceptance testing.

Jeff also spoke about how in last year’s economy where IT budgets in most organizations were being slashed, he received a double-digit increase; the largest increase in his 8 years as CIO. So how do you get that kind of budget increase and turn around the reputation of your IT staff and the business application solutions that they deliver? GAFRI did it by getting to the business requirements behind the business requests and implementing a systematic, repeatable project delivery process.

Jeff and his team put into place a new IT business solutions delivery process from the requirements gathering phase to project delivery (implementation). This new process was going to take much longer than the old process. What use to take a week will now take two to four weeks.  How do you get business buy-in to wait for their business applications? When you deliver a business application solution in which the business usually reports several bugs during testing to delivering a solution in which the business reports almost no bugs, they see value in the new process.

GAFRI’s new IT business solution delivery process put emphasis on two areas: requirements gathering and application testing. They created new roles within their IT staff and put people in place with very specific duties to gain measurable increased value in these areas. They not only put IT staff through training, but they put the business through training on the new delivery process and the business role on working with the IT staff to drive better IT business solutions.

The first new IT role is the Requirements Analyst. This person works with the business in the beginning of the project to elicit and form clear and concise business requirements for the IT business solution. So many times when IT delivers a project they get the punch line to that Dr. Seuss rhyme about the Super Programmer, where the requester says ‘You gave me just what I asked for but not what I need!’. The Requirements Analyst works throughout the project, in a diminishing role, to ensure that the IT solution will meet the needs of the business.

The second new IT role created is the Test Analyst. Typically, testing is thought of after development is complete or nearing completion. In GAFRI’s model test plans are created before or as development starts and are based on the business requirements of the project. The Test Analyst either performs or supports IT Quality Assurance testing and supports User Acceptance Testing.

GAFRI is a shining example of how commitment to the area of Business Analysis can reap many benefits for the organization, both for IT and the business. The end result is better IT business solutions.

• Network security specialist: A person familiar with intrusion detection systems.
• Penetration testers: Someone who can assess a system's potential vulnerabilities.
• Incident handlers: People who understand attack methodology and can apply critical thinking skills to respond to incidents.
• Forensics Analyst: The person who looks for evidence after an attack.
• Research Analyst: The person to keep abreast technological advances in incident response activities.
• Team Leader: Leads the team through crises and communicates to the business incident activities and cost to the business.

• Preparation and Training: for both prevention and incident response.
• Identification: fast identification of an occurring attack and its impact on the IT infrastructure can help in minimizing the duration and cost of clean-up.
• Containment: Once an attack has been identified, steps must be taken to minimize the effects of the attack.
• Recovery and Analysis: The recovery period allows analysis and lessons learned of What happened? Why did it happened? Was the response effective?

Web application development is a must for Cincinnati and Dayton companies.  We at STAR BASE, Inc. have written much lately about open source IT solutions.  Since we have been on a roll with that, why stop now? 

Another open source IT solution we have worked with is Sugar CRM.  Sugar CRM falls in to a relatively new software category that I’m going to call Commercial Open Source or COS for short.  (Remember you saw the TLA (three letter acronym) COS here first!)  COS applications have a free version that you can download and implement and they also have a commercial version that can be licensed and supported like any other software application.

What we have found to be very effective; is to use the open source version and customize and tailor it to meet specific business needs.   No need to re-invent the wheel.  Swweeet!

 

Just when I thought the browser wars were pretty much a thing of the past, they are heating up again.  Web application development is difficult enough without having to worry about what version of what browser a client may be using.  

We just upgraded a couple of machines to IE 8 and guess what?  IE 8 is not compatable with our web based CRM!  IE 7 and FireFox 3 work fine, but in IE 8 the search fields are not input capable.  IE 8 provides for a “compatablity mode”, but hey that doesn’t work either.  I was wondering if Google Chrome would work, but in Chrome, the search fields don’t show up at all; the field labels are repeated. 

I was thinking about trying Opera, but stopped because how many web browsers do I really need on my machine any way?

In order for web applications to continue to flourish and expand, there has got to be adherence to standards by both application developers and software companies.  There are so many other applications that could be developed and expanded.  But what do we do with IT solutions?  Both vendors and developers shoot themselves in the foot by delivering applications and software that “stops working”. 

What's the business impact?
- Increased support costs.
- Increased applications development and testing time
- Less confidence by the user community of “IT not  being able to do anything right”.
- Less time and money to develop new applications.

As a reformed, application developer, maybe I should retitle this post “The Return of the Angry White Guy.”  I think instead, I’m going outside and shouting, “I’m mad as hell and I’m not going to take it anymore”. 

The Cincinnati market is known for being conservative when it comes to using software. Most application development people I know would say that big software, from the big firms, either three lettered companies, or their name ending in “soft”, are the only code found in shops. There is the occasional open source item here and there, but usually in smaller shops. Why is that? Well, some firms don’t create their custom application development, they just enhance out of the box software. They need a vendor to yell at and fix things when it breaks, because their staff can’t fix the code, or don’t have access to it. For many firms, it is better to pay a vendor for support than to maintain it themselves. As long as you can point to somebody, it’s ok. Some firms actively fear that open source means that everyone will have their intellectual property somehow. They fail to realize that it is the same proprietary code that everyone uses too. Since, you have the source code, you can see if there is a backdoor coded in the application, something you can’t do with proprietary code.

With these fears aside, many firms, even in Cincinnati, are looking to use open source solutions for their issues. Certainly many are using the free (as in beer) code to save costs. I hope though that some firms will see how this free (as in liberty) also helps their business. It’s a tough call whether to purchase a pre-made business process package (I am looking at you SAP), or to roll your own. I think the best of both worlds would be to use an open source application, and to enhance it. It is a popular misconception that you MUST contribute code, or that you can’t change the code. You can create your own code for use; you can’t sell the application with YOUR enhancements as YOUR NEW application. There is some legal wrangling, yes, but the bottom line is that you have application development teams, so use them. Your best business plan is to use your process as a competitive advantage, not to shoehorn your process into software that all of your competitors use. I think the goal is to beat them, not join them.
The best thing to do is to give your application development team a couple of old boxes to play with, and let them do some research on applications that can save your money, and are flexible enough to work with your processes. You may end up with an inexpensive system, and get that application that outperforms your competitors.