Click here to close now.

Welcome!

@MicroservicesE Blog Authors: Lori MacVittie, Elizabeth White, Liz McMillan, XebiaLabs Blog, Cloud Best Practices Network

Related Topics: Microsoft Cloud, @MicroservicesE Blog, IoT User Interface, Silverlight, Cloud Security

Microsoft Cloud: Article

SharePoint Gone Wild: When Governance Lacks Accountability

Help your organization understand what "could happen"

In a webinar entitled ‘Business Drivers and Checklists for Successful SharePoint Governance', Randy Williams, SharePoint MVP and AvePoint Enterprise Trainer & Evangelist, and I discussed the business drivers that come from individuals outside the IT department for SharePoint as a service within an organization. These drivers often result in policies being defined to set the expectation with the business and to focus alignment with the IT department.

Over a series of posts, I will focus on horror stories, from some of our 8,000+ customers we have here at AvePoint, which provided the genesis for these business drivers. The intention of this series is to proactively help your organization understand what "could happen" and what the business drivers are to help you structure your organization's governance system. I'm fortunate enough to get to meet a lot of our customers in person to discuss their SharePoint pain points, and enjoy referring them to resources all over the Internet to help them to cure these pains. I often feel like a SharePoint therapist of sorts, and selfishly enjoy hearing the pains as it triggers new ideas for products and articles we can share more broadly.

I'm a big fan of mind mapping, and over time, I've collected these pains and sorted them into some distinct business drivers, influenced by the other SharePoint governance experts in the field I discussed in one of my previous posts. Here are the main business drivers (for more explanation of each of these, check out Randy's recent post on the topic here):

To refer back to the policy areas defined in the governance system that the 21 Apps team came up with (IT Governance; Project Governance; Information Governance; Business & IT Alignment; and Continuous Improvement), there is overlap between the drivers and the policies - not a one to one mapping. This would make for a tidier diagram, but you can't have everything I guess!

To start this journey through the business drivers, I will start with one of the pain points that I have heard at every single customer, small or large, this past year - accountability.

The definition of accountability - "the state of being accountable, liable, or answerable" - really does sum it up well with respect to SharePoint content. When I state SharePoint content, I really mean being accountable at a document, library, sub site, site collection, web app or farm level. There are obviously other forms of SharePoint content outside this stack, such as in service applications including the managed metadata term store, user profiles, and business connectivity services external content types.

Typically, in an organization the IT department has the accountability of the farm level from an operational and maintenance level.

From a web application level, these are typically the workloads such as a collaboration system, document management system, intranet, internet, business intelligence system and so on. Within an organization, these cross-business workloads are often owned by either the IT department or a specific business unit such as human resources, communications, information management, or marketing. For business-specific workloads like internet sites and business intelligence systems, they are typically owned by the departments who requested them and are charged for them by the IT department.

Accountability starts to get a little hazy at the site collection level and below. The main reason for this is that content at this level, especially in cross business workloads such as collaboration systems and document management systems, typically start to separate at this level. For instance, in a document management system, each department may have its own site collection or, even further, a project management office may have a site collection per project. There are so many varieties of information architecture at the site collection and sub site level that accountability is not often the business owner of a department. This would also be the case for a project site collection where the accountable person would be the project owner.

The major pain point within organizations I talk to is how to track accountability at each of these levels. At a farm level, this can be done easily with the farm administrators group. At the web application level, this can be done with the web application policy settings. This can be accomplished on site collections with site collection administrator level. At the sub site level, this can be achieved via the owners group level. The biggest problem with assigning users to these settings is that it not only is an easy way to track accountability, but it also gives heightened permission levels to them. The main challenge here is that often these accountable people are not trained in SharePoint and don't require ‘god mode' of the container against which they have been tracked.

The other side of the accountability is not only tracking it on provisioning of these containers, but for the entire lifecycle of the containers. A common issue among customers is that the original people held accountable have transferred roles or left the organization entirely. Typically, containers require archiving for legal reasons and storage constraints. Or, IT just needs to reach out to the accountable person to notify them of a change request. Without having an up to the minute accountable person, these decisions are harder to make and can cause rifts between IT and the business.

More Stories By Jeremy Thake

Jeremy Thake is AvePoint's Chief Architect. Jeremy’s 10-plus years of experience in the software development industry, along with his expertise in Microsoft technologies, earned him the label of “expert” in the global SharePoint community. He was named a Microsoft SharePoint MVP in 2009, and continues to work directly with enterprise customers and AvePoint’s research & development team to develop solutions that will set the standard for the next generation of collaboration platforms, including Microsoft SharePoint 2013.

Jeremy was one of only eight Microsoft MVPs from Australia, where he lived for seven years, who was recognized by the SharePoint Product Team in 2010 for his extensive contributions to the global SharePoint community. He also played an instrumental role in organizing the Perth SharePoint User Group during his time living there.

@MicroservicesExpo Stories
Containers have changed the mind of IT in DevOps. They enable developers to work with dev, test, stage and production environments identically. Containers provide the right abstraction for microservices and many cloud platforms have integrated them into deployment pipelines. DevOps and Containers together help companies to achieve their business goals faster and more effectively. In his session at DevOps Summit, Ruslan Synytsky, CEO and Co-founder of Jelastic, reviewed the current landscape of...
Conferences agendas. Event navigation. Specific tasks, like buying a house or getting a car loan. If you've installed an app for any of these things you've installed what's known as a "disposable mobile app" or DMA. Apps designed for a single use-case and with the expectation they'll be "thrown away" like brochures. Deleted until needed again. These apps are necessarily small, agile and highly volatile. Sometimes existing only for a short time - say to support an event like an election, the Wor...
The cloud has transformed how we think about software quality. Instead of preventing failures, we must focus on automatic recovery from failure. In other words, resilience trumps traditional quality measures. Continuous delivery models further squeeze traditional notions of quality. Remember the venerable project management Iron Triangle? Among time, scope, and cost, you can only fix two or quality will suffer. Only in today's DevOps world, continuous testing, integration, and deployment upend...
Discussions about cloud computing are evolving into discussions about enterprise IT in general. As enterprises increasingly migrate toward their own unique clouds, new issues such as the use of containers and microservices emerge to keep things interesting. In this Power Panel at 16th Cloud Expo, moderated by Conference Chair Roger Strukhoff, panelists addressed the state of cloud computing today, and what enterprise IT professionals need to know about how the latest topics and trends affect t...
Explosive growth in connected devices. Enormous amounts of data for collection and analysis. Critical use of data for split-second decision making and actionable information. All three are factors in making the Internet of Things a reality. Yet, any one factor would have an IT organization pondering its infrastructure strategy. How should your organization enhance its IT framework to enable an Internet of Things implementation? In his session at @ThingsExpo, James Kirkland, Red Hat's Chief Arch...
Summer is finally here and it’s time for a DevOps summer vacation. From San Francisco to New York City, our top summer conferences list is going to continuously deliver you to the summer destinations of your dreams. These DevOps parties are hitting all the hottest summer trends with Microservices, Agile, Continuous Delivery, DevSecOps, and even Continuous Testing. Move over Kanye. These are the top 5 Summer DevOps Conferences of 2015.
Sharding has become a popular means of achieving scalability in application architectures in which read/write data separation is not only possible, but desirable to achieve new heights of concurrency. The premise is that by splitting up read and write duties, it is possible to get better overall performance at the cost of a slight delay in consistency. That is, it takes a bit of time to replicate changes initiated by a "write" to the read-only master database. It's eventually consistent, and it'...
"Plutora provides release and testing environment capabilities to the enterprise," explained Dalibor Siroky, Director and Co-founder of Plutora, in this SYS-CON.tv interview at @DevOpsSummit, held June 9-11, 2015, at the Javits Center in New York City.
Containers are changing the security landscape for software development and deployment. As with any security solutions, security approaches that work for developers, operations personnel and security professionals is a requirement. In his session at DevOps Summit, Kevin Gilpin, CTO and Co-Founder of Conjur, will discuss various security considerations for container-based infrastructure and related DevOps workflows.
Cloud Migration Management (CMM) refers to the best practices for planning and managing migration of IT systems from a legacy platform to a Cloud Provider through a combination professional services consulting and software tools. A Cloud migration project can be a relatively simple exercise, where applications are migrated ‘as is’, to gain benefits such as elastic capacity and utility pricing, but without making any changes to the application architecture, software development methods or busine...
Data center models are changing. A variety of technical trends and business demands are forcing that change, most of them centered on the explosive growth of applications. That means, in turn, that the requirements for application delivery are changing. Certainly application delivery needs to be agile, not waterfall. It needs to deliver services in hours, not weeks or months. It needs to be more cost efficient. And more than anything else, it needs to be really, dc infra axisreally, super focus...
The most often asked question post-DevOps introduction is: “How do I get started?” There’s plenty of information on why DevOps is valid and important, but many managers still struggle with simple basics for how to initiate a DevOps program in their business. They struggle with issues related to current organizational inertia, the lack of experience on Continuous Integration/Delivery, understanding where DevOps will affect revenue and budget, etc. In their session at DevOps Summit, JP Morgenthal...
Overgrown applications have given way to modular applications, driven by the need to break larger problems into smaller problems. Similarly large monolithic development processes have been forced to be broken into smaller agile development cycles. Looking at trends in software development, microservices architectures meet the same demands. Additional benefits of microservices architectures are compartmentalization and a limited impact of service failure versus a complete software malfunction. ...
DevOps tends to focus on the relationship between Dev and Ops, putting an emphasis on the ops and application infrastructure. But that’s changing with microservices architectures. In her session at DevOps Summit, Lori MacVittie, Evangelist for F5 Networks, will focus on how microservices are changing the underlying architectures needed to scale, secure and deliver applications based on highly distributed (micro) services and why that means an expansion into “the network” for DevOps.
Many people recognize DevOps as an enormous benefit – faster application deployment, automated toolchains, support of more granular updates, better cooperation across groups. However, less appreciated is the journey enterprise IT groups need to make to achieve this outcome. The plain fact is that established IT processes reflect a very different set of goals: stability, infrequent change, hands-on administration, and alignment with ITIL. So how does an enterprise IT organization implement change...
While DevOps most critically and famously fosters collaboration, communication, and integration through cultural change, culture is more of an output than an input. In order to actively drive cultural evolution, organizations must make substantial organizational and process changes, and adopt new technologies, to encourage a DevOps culture. Moderated by Andi Mann, panelists discussed how to balance these three pillars of DevOps, where to focus attention (and resources), where organizations migh...
At DevOps Summit NY there’s been a whole lot of talk about not just DevOps, but containers, IoT, and microservices. Sessions focused not just on the cultural shift needed to grow at scale with a DevOps approach, but also made sure to include the network ”plumbing” needed to ensure success as applications decompose into the microservice architectures enabling rapid growth and support for the Internet of (Every)Things.
Mashape is bringing real-time analytics to microservices with the release of Mashape Analytics. First built internally to analyze the performance of more than 13,000 APIs served by the mashape.com marketplace, this new tool provides developers with robust visibility into their APIs and how they function within microservices. A purpose-built, open analytics platform designed specifically for APIs and microservices architectures, Mashape Analytics also lets developers and DevOps teams understand w...
Buzzword alert: Microservices and IoT at a DevOps conference? What could possibly go wrong? In this Power Panel at DevOps Summit, moderated by Jason Bloomberg, the leading expert on architecting agility for the enterprise and president of Intellyx, panelists peeled away the buzz and discuss the important architectural principles behind implementing IoT solutions for the enterprise. As remote IoT devices and sensors become increasingly intelligent, they become part of our distributed cloud envir...
Sumo Logic has announced comprehensive analytics capabilities for organizations embracing DevOps practices, microservices architectures and containers to build applications. As application architectures evolve toward microservices, containers continue to gain traction for providing the ideal environment to build, deploy and operate these applications across distributed systems. The volume and complexity of data generated by these environments make monitoring and troubleshooting an enormous chall...