In addition, SAM takes time. It takes a lot of time that most organizations don’t have. We’d all like to think SAM would become and remain a top priority at all of our organizations to ensure visibility across the software estate, reduced costs across the various software vendors, and elimination of security risks by knowing what your environment is made of.
However, IT departments are often outsourced or over tasked in-house and the complexity that SAM brings tends to push it to the bottom of the list when we’re all struggling to keep e-mail running and the proverbial lights on. This often means that companies are faced with needing a SAM plan after being confronted with an audit or a security risk. This can leave a company vulnerable and unsure what to do in terms of next steps or longer-term planning. After all SAM is not a set it and forget it situation, it needs to be monitored and checked on a consistent basis.
Whatever the trigger for needing to put SAM in place, and no matter if your environment is made up of a majority on-premises or cloud, or a hybrid of the two, you need to know where to turn next. Once you develop your strategic plan, the next step is to determine what your existing resources are to help you down this path, and what new resources you need to procure in order to be successful, both at the start of the journey and on an on-going basis. Every company needs the right SAM tool to work in conjunction with the people and processes. So, for this article let’s focus on the people.
You can choose to outsource your SAM needs, create an in-house team supported by a tool or use a combination with a managed services approach. This hybrid approach (much like your software estate) is probably the best bet because it allows your IT department to maintain control over the SAM journey while freeing up key resources to work on more strategic initiatives at the company. We heard from a top financial services group in the Midwest that did just that.