[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Re: [soa-rm] shared services comments
Ken, all-- A bit more on organization vs enterprise. 1. My impression is that people (Trekkies aside) think of enterprises as bigger than organizations, but of course that's just the connotation I've absorbed based on usage I've seen. And size probably is not a useful basis for distinction in any case. 2. I suggest that whatever the term, the most significant things about an "organization" are that it has resources (as Ken says) but also that it has a boundary. That is, it represents a decision-making unit -- which lets it makes policies effective for the whole entity, make commitments and accept liability (via contract) for the whole entity, and direct resources of the entity. 3. The authority of the entity is always limited the context of the jurisdiction(s) to which it is subject. This context will always include governmental jurisdictions (at multiple levels...); but it also could simply be limitations imposed by higher levels of the organization of which the entity is a part, if it is, for example, a business unit of a large corporation. In any case, within the limitations imposed by its context, the entity can direct and commit (via contract) resources and set its own rules/policies. 4. For our purposes and the discussion of "outsourcing" I think we should recognize that the key issue is control (and its flip side, commitment.) Control is nice because dependencies add various risks (often overstated, IMHO.) But control (like commitment) is not absolute, and does not necessarily correspond to insourcing or outsourcing. My sub-sub-sub organizational unit may feel most comfortable if it runs all the parts of my mission system, but is it "outsourcing" when the next-level up CIO requires us to use their "shared-services" IdAM system for access-control? Or only when one of our engineers wants to leverage a call to an authentication-as-a-service offering on AWS? Again citing my experience working in the US Federal Government, I might have more "control" over the AuthN-aaS via contracted SLA commitments (and the ability to fire them) than I do over my HQ's IdAM service. Talk to you Wednesday. Martin On 8/17/2015 10:10 PM, Ken Laskey
wrote:
My apologies for not getting back to this sooner. I’ve inserted comments to comments made by Michael and Martin in their respective mark-ups. We can discuss these further during Wednesday’s meeting — call-in details to be distributed. |
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]