Project Management

Please login or join to subscribe to this thread

Project Management in IT Security

linkedin twitter facebook   Information Technology  
avatar
arlene trimble Assistant IT Director| Local Government Alamo, Ca, United States
Any good approaches on managing projects that are focused on IT Security?

What are the important elements that you need to consider?

Sort By:
avatar
Kevin Coleman Subject Matter Expert, Author, Speaker and Strategic Advisor| - Insights Pa, United States
YES The politics on security measures are often severe and there are many players. In addition, user push back is usually very high. These are often the biggest challenge.
avatar
Christina de Vries Consultant & Coach| itacs GmbH Berlin, Germany
Hi Arlene

As stated before, IT security projects get quite emotional quite soon. They often mean restrictions - taking away permissions from users and administrators, establishing monitoring tools to log acitivities. In the best case, this is to secure systems and data and help administrators do their work. But sometimes people perceive these initiatives as a way to control and as a sign for the company's distrust.

Therefore it is very important to communicate steadily to help create a common understanding of the project's trigger(s) and the pursued solution with its advantages. It is very important to stay objectively and to act sensitively while still raising all issues to the surface.
avatar
arlene trimble Assistant IT Director| Local Government Alamo, Ca, United States
Thank you Christina and Kevin for the thoughtful response. I agree. Communication is key for a smooth implementation.
avatar
Stéphane Parent Self Employed / Semi-retired| Leader Maker Prince Edward Island, Canada
Think of IT security projects like ERP implementations: you need C-suite support, they have huge impacts on business processes, and they take time to be implemented.
avatar
Steven Zachary Director| Alberta Health Services Calgary, Alberta, Canada
Security is a very technical field. It's also evolving faster than they can write about it. As a project manager, I would weigh in the side of building a strong technical team. You'll want a strong BA as well who can translate for you so you can properly estimate costs and schedule.
avatar
Markus Kopko AI Enabler for Project & Program Mgmt | Founder PMotion.ai / The PM AI Coach| PMotion.ai Hamburg, Hamburg, Germany
My experince here is:
Don't strive to become "best in class" cause that would be very expensive and almost impossible since the development in that field is that fast.
Just do a mareket research and look what others do. Who is best in the middle? This should be the role model.
And look for a standard (like the "BSI standard" in germany); the often describe the framework what is possible and still usefull and certainly secure enough (what depends heavy on the industrie).
And you just have to decide the solutions to implement for.

Just my 2 cents ...
...
1 reply by Steven Zachary
Jan 02, 2016 10:56 AM
Steven Zachary
...
Great advice Markus. I agree with the cost of becoming best in class. The problem with that approach is, it's very possible to become best in one class. But you pigeon hole yourself in terms of marketability.
avatar
Steven Zachary Director| Alberta Health Services Calgary, Alberta, Canada
Jan 02, 2016 8:15 AM
Replying to Markus Kopko
...
My experince here is:
Don't strive to become "best in class" cause that would be very expensive and almost impossible since the development in that field is that fast.
Just do a mareket research and look what others do. Who is best in the middle? This should be the role model.
And look for a standard (like the "BSI standard" in germany); the often describe the framework what is possible and still usefull and certainly secure enough (what depends heavy on the industrie).
And you just have to decide the solutions to implement for.

Just my 2 cents ...
Great advice Markus. I agree with the cost of becoming best in class. The problem with that approach is, it's very possible to become best in one class. But you pigeon hole yourself in terms of marketability.
avatar
Nidhi Arora Catalyst and Founder| Esha - People for the Blind Gurgaon, Haryana, India
1. Do the tech evaluation as technical evaluation - not functional evaluation. Business and IT team will evaluate IT security solutions very differently. But this is one area where IT really knows best.
2. Run a parallel change management program with at least 30% of the implementation budget dedicated to this change management program.
3. IT security will have multiple sub modules. Ensure that within the design, you have iterations and upgrades built in. This is a very dynamic area and its possible that you may have to scrap pieces, constantly retrain, reimplement even. The support team needs to be nimble, expert and the C Suite sponsorship needs to be sustained.

just my 2penny.

Please login or join to reply

Content ID:
ADVERTISEMENTS

"If only God would give me some clear sign! Like making a large deposit in my name at a Swiss bank."

- Woody Allen

ADVERTISEMENT

Sponsors







Vendor Events

See all Vendor Events

Newsletters

Jun 3: The Career Problem Facing New PMs
May 20: Your PM Career as a Project Life Cycle
May 13: The Big Lie After Layoffs

See all newsletters