While many approach information management from a technology nuts-and-bolts standpoint, what is not often addressed is the top-down, strategic management of information. I like to explain it this way: Youve seen the trees, now lets view the forest.
Step back for a second and consider the adaption of information management within an enterprise. When your organization first implemented information management, I bet it was all about "finding and filing". You had paper files, electronic documents, etc. and you had to put them somewhere where you could easily find them. Essentially, you were setting up a central point of information control.
Youve approached information management from an enterprise technology perspective and you are rightfully proud of the way you provide services to your users. Then it happens (insert ominous music here), an e-discovery request is made, a new compliance initiative rears its ugly head, or you get notification of an audit ... So now what?
Its time for top-down. Its time to plan an information governance strategy.
Every organization or enterprise has an overarching goal. To reach this goal it is necessary to coordinate activities and make a plan. In todays economic climate, that goal may be simply to survive. In order to increase its chances for survival, an organization must be agile. In order to be agile, an organization needs its information lifeblood to be available, consistent and reliable.
This information is an asset to the organization because it allows better decision making. But at the same time information needs to have some controls around it. Simply put, in order to be more agile, organizations must better manage their information by putting a governance strategy into place.
Governance implementation is often thought of as a journey. Much like you wont reach your organizations goals in a few days you wont solidify your governance plan in a couple of meetings. Ive read a lot of material that suggests that one should create a road map for governance. While this is useful, I like to think of governance as a framework. A framework is an incomplete, though concrete, solution to a recurring problem. A framework has physical components upon which the user may build elements. Frameworks allow policies to be created, conflicts to be resolved and are flexible enough to foster the provision of services to business units. Simply put, information frameworks allow us to put structure around how we align control and agility.
The information governance framework has four parts: people, policies, technology and risk management. People and policies are the organizational enablers, supported by the discipline of risk management, which is shored up by technology. This allows resources and risk to be managed while fostering the creation of information value. Much like blood pumping thru the body, this information gives the business units power and agility. Ultimately, the goal of the governance framework is two-fold: compliance and value creation. A controlled yet flexible governance framework fosters agility in business processes and service delivery.
The four areas of governance are important enough to discuss in more detail. Every successful information management endeavor that weve seen has been organized in this manner. Implementing a governance structure allows your organization to be proactive rather than reactive.
People - Its so important to start with the human element. The success of any organizational endeavor is directly linked to the engagement of the members of the organization. If the needs of management and staff arent considered, you might as well shut off the lights and go home. Information management is truly a collaborative process. Make sure you have executive sponsorship, but dont forget to engage your consumer in the strategy.
Be reflective of the needs of your clients rather than definitive. Use IT as the enabler, but its not always necessary that they take the lead. The most successful strategic implementations form a stakeholder committee that includes department heads, consumers, legal, technologists and records managers. But, before you put together a large group, let me caution you: Although all organizations want governance decisions to represent the interests of all stakeholders, the best committees assign clear responsibilities for each decision to individuals who can accept accountability for outcomes.
A good governance structure allows staff to work in the most efficient and effective way possible by giving them access to information assets. And dont forget about usability. If implementations of information management controls are cumbersome, they will fail. Its amazing how easily staff will get around your controls or refuse to use your system if it isnt useful. The reason most information governance efforts falter is they didnt take the business units methods of working in mind.
Policy - Theres no one-size-fits-all suggestion I can make in terms of governance policies, but I have a few suggestions. Instead of focusing on limits, focus on outcomes. When you approach policy-making in this manner, your business units are much more likely to cooperate as they will see value.
Rather than have staff members wait in line at a records counter for information, consider implementing a controlled system that allows instant, individualized information access. This way its less about lock-down and more about empowerment.
Approach your information like an asset, from a portfolio perspective. You dont look at your bank account in terms of individual one dollar bills; dont view your information that way.
Finally, consider standardization. Metadata or data about data is your information DNA. Consistency here will pay dividends and make compliance and auditing less painful. Standardization is an enabler of agility. By standardizing foundational components, you become more agile.