x
BETA

The EDM Council is pleased to add search capabilities to our website. This is currently in beta (testing) mode.

We appreciate any feedback regarding the new search functionality or on any aspect of your website experience.

Contact Us
Sign in Join now

Cloud Framework Will Benefit All Industries

In this Interview series, Tim Brooks, Worldwide Technology, talks with Mike Meriton, Co-Founder of the EDM Council, and John Bottega, President of the EDM Council, about Cloud Data Management and its challenges.

Bottega shares that data management has evolved over the past decade, and companies have come up the curve on their capability to professionally manage information assets. However, we also live in a world of 40-year-old infrastructure legacy environments. So, it’s fair to say that all companies have built environments that may not be the most efficient, and somewhat duplicative are the challenges that exist. As you move to the cloud, the last thing you want to do is just “lift and drop”. You want to make sure that this new environment, Greenfield if you will, is built with all of those best-practice capabilities at the onset. Because the challenges a firm faces may not be consistent, how do we get out of that type of inconsistency?

According to Bottega, the first step is to do it the right way, as you do cloud. Look at the data, the content, and bring it into the cloud appropriately. Then, finally, as you move this data, you need to ensure that you’re protecting it from a sensitive perspective. Privacy, etc., should be adhered to, and that’s what EDMC is about.

He explains this process through a simple example: There’s a toll gate before you’re allowed into a community, and you have to be a well-dressed and well-groomed kind of person to get in. That’s what EDM Council will provide firms as they move their information to the cloud. EDM Council encourages companies to do everything efficiently and in a way that adheres to best industry practices.

Explaining it further, Bottega says that these challenges are primarily across all industries, but there are nuances from industry to industry. So, for example, retail may be worried about customer data, and pharmaceuticals about medical data. But it’s all still data. So, how do you ensure the data is moved, curated, and protected properly? The nuances will play themselves out with the SMEs in those spaces, but EDMC seeks to be a level above, saying they manage the data.

The initial work at EDMC was done primarily with financial institutions, with the technology companies, and the cloud providers, but they also had Snowflake and Informatica. Fantastic consultancies like KPMG, EY, PWC, etc., were also involved.

It was always the intention that the EDMC framework would be ubiquitous to the industry. At the onset, it was more of financial companies, a regulated industry. They have the SMEs to participate, but the change genesis is the same.

According to Bottega, when they built the EDMC framework, they included Chief Privacy Officers and people with legal backgrounds that can interpret GDPR, the general data protection regulation in Europe, and CCPA in California. Sensitive data, such as bank account transactions, personal health information, must be protected no matter what industry it is from. In fact, now that most countries and jurisdictions are building and putting out more robust data protection regulations, these requirements and these controls are operable in all forms of sensitive data hands.

The Importance of Collaborating with Regulators on Cloud Best Practices

Mike Meriton, Co-founder and COO, and John Bottega, President of the EDM Council, round out their discussion with Tim Brooks, Worldwide Technology, about EDM Council’s Cloud Data Management Capabilities (CDMC) framework that is available for all industries, and what it has been like to involve the regulators in these processes.

Meriton further shares that they conducted their first open training course in early November 2021. They trained the first 55 people virtually, and they all received digital certification.

Meriton shares that the EDM Council is having a serious discussion on appropriately involving regulators throughout the process. He says that there are a few challenges, and it’s difficult for companies to sit in the same room with regulators to build things because it requires phenomenal internal approvals from compliance. The EDM Council figured out how to move quickly with the cloud providers, the financial institutions, tech providers, and the consultancy firms to construct the framework. The forum includes regulators like the Federal Reserve, the FCC, and the bank of England.

At the same time, the EDM Council is doing briefing sessions, getting feedback from the regulators, and factoring that back as input into the framework. One of the documents they published first was “The 14 Key Controls for Protecting Sensitive Data”. Meriton explains that they had 12 controls for sensitive data and not 14. While controls look like they’ll protect the cross-border movement of data, Meriton maintains it would be better if there was a dedicated control that managed and audited sensitive data and provided transparency. That’s what the regulators need to see, and that applies across all jurisdictions with individual regulators, he notes.

Bottega shares that he had the privilege of holding the chief data officer position for the New York Federal Reserve, so he had the opportunity to see both the public and the private sectors. He was highly impressed with the people dedicated to doing the right thing in their work. Global regulators, anxious to seek solutions, are now welcoming solutions from the private sector. Hence, the opportunity here is not that they’re going to just blanketly adopt any standard. But when they see that the private sector is getting together and proposing manageable solutions, they want to hear about them.

According to Meriton, so many companies participated in the forum that the framework was downloaded thousands of times within just a few days. Obviously, they wanted to see the final product for themselves, and were glad to see that the major cloud companies not only stood behind but participated in the joint panels.

Microsoft, Google, Amazon, and IBM were in moderated discussions with Meriton and Bottega, talking about how they worked together to build this framework, pointing out that that’s “unheralded” — competitors with billions of dollars in revenue at stake, working together.

Privitar’s In:Confidence Podcast: EDM Council Advocates for the Value of Data Management

Formed in 2005, the idea behind the EDM Council was to create a trade association that would cater to the emerging role of the chief data officer. Today, the organization supports data professionals by providing best practices for responsibly and ethically managing information—including, most recently, a framework on how to manage data in the cloud. In this episode, John Bottega, President at EDM Council, explains how the association came to be and the important work that they do.

Topics discussed:

  • What the EDM Council does for data practitioners
  • The origin of the Cloud Data Management Capability (CDMC) Framework
  • Providing guidance around “data for good”
  • Data management myths and what’s on the horizon

Data Insiders Podcast: How to create a successful data strategy?

How can Chief Data Officers meet new data management requirements? Stay in the know with Data Insiders and grab your pods to get insights from EDM Council.

Get tips and tools to run data strategy and data management strategies. Data Management Capability Assessment Model (DCAM) is an established best practice assessment and certification tool that was developed for EDM Council members and was first used by finance organizations.

Stay in the know with Data Insiders, the number one Nordic data podcast www.tietoevry.com/datainsiders