So your business is considering to perform an IT review to unfold certain aspects of your IT environment you believe need attention, possibly unearth other areas you don’t necessarily know need attention or to simply find out “where you are at” in terms of your IT infrastructure situation.
Should it be you, someone else in the team, your external IT partner or resource, or should you get another party to perform an external IT review?
Here are some considerations to take into account when answering this question…
1. EXPERTISE, KNOWLEDGE AND TIME
In instances where businesses may simply lack the required expertise to perform the review, the choice in regards to who completes it is obviously straight forward, get an external IT review. This leads onto the important decision as to whether to choose between your current IT provider or an independent provider. We will come back to this point later in the article. Alternatively, your organisation may already have an internal IT resource or an internal IT team which management may want to leverage to perform the IT review.
The issue that arises in this scenario is that the skillset of an internal IT team is normally “well rounded” with a focus on support and maintenance of the existing system. They may not possess the necessary knowledge or experience around evaluation and auditing of very specific parts of your IT environment for inherent risks or functionality gaps, which can normally come with ongoing training and implementation experience. This is in no way a bad reflection on the internal team quality and is simply symptomatic of an internal IT team’s purpose. If these high level skills are not required on a regular basis then it makes perfect sense for your team not to possess them.
Needless to say, your IT team is part of the bigger picture…If your IT team is responsible for your business’ entire IT support and maintenance, they probably won’t have the time to focus 100% on the review and the process will be delayed or they’ll do as much as they can in the scoped timeframe. The results and report are likely to be not as complete and detailed as you would receive from an external IT resource.
2. THE SIMPLE CONCEPT OF “GETTING A NEW SET OF EYES”
As the above title suggests, the simple concept of getting a fresh perspective on your IT environment is a powerful thing. Environments that are managed by the same team, regardless of whether they are internal to the organisation or full outsourced, can become somewhat “settled” in their nature and therefore naturally are not going to all of a sudden be viewed in a different light by the same team that manages it day to day.
The main area where a fresh perspective can be very beneficial is reviewing risk within an IT environment. It is very common that any risk profile in your environment that may be considered to be “under control” is not always re-examined in detail on a regular basis, which can become a pitfall that unfortunately only comes to light when disaster or potential risk occurs.
3. WOULD A “SELF REVIEW” CONFORM WITH REQUIRED COMPLIANCE STANDARDS?
There are differing standards of compliance which vary according to business types, the quality assurance certifications an organisation may hold and any governing or regulatory bodies that may preside over the organisation.
Some of these standards strongly recommend or simply make it compulsory for any kind of IT review to be completed or overseen by an external parties to conform to these compliance standards. Basic examples of industries that have such compliance standards requirements are ASX listed companies, Government bodies and Medical organisations.
A well performed external IT review will assure your business with non-biased, trustworthy and actionable advice from an external resource contracted purely to audit and evaluate your current setup. The main aim is to point out where you are at with your IT, dig deeper on areas of concern and push your IT to evolve according to your business requirements, giving you a clear roadmap to follow.
If you think it’s time for your business to start an IT review process or you would like more information on how an IT review can help your business, please contact one of our consultants on 1300 991 351 or email firstname.lastname@example.org. They will go through your expectations and concerns with you and can help you make the call on the next steps to take regarding your IT. Sometimes all you need is a bit of guidance and that’s what we are here for, so give us call!
Back to articles