“While I understand the process and how it should work, there is a chance that someone could go in and make changes [to servers]. We have to think like a Risk Manager and the possibilities that could happen.”
– Steve Moore, Director, IT Operations, Santander Consumer USA (2017)
Just recently, we had several conversations where system engineers lamented on the amount of work risk mitigation has created. While this often is viewed through various colors of lenses and often tempered with bias, the point was not to just express exasperation about the volume of reactive work.
The point was to proactively think like a risk manager and head things off so it’s built into the DNA of the technology. Are we really thinking this way? Are we creatively thinking about risk as we architect solutions.
Let’s prevent the backlog versus react to it.