Risk
10/28/2009
07:52 PM
Bob Evans
Bob Evans
Commentary
50%
50%

Global CIO: Hewlett-Packard's Hurd Says Bad IT Means A Bad CEO

Hurd offers a startling observation about how the roots of bad IT almost always reside in the corner office, and he explains how HP attempts to address the needs of both the CEO and the CIO.

"Oh I certainly think—and particularly with our acquisition and move into the services space—we want to play a role of helping IT—I wanna make sure I'm clear—our role isn't—and it's a very fine line you touch here, David—uh, we wanna be viewed as somebody who helps IT accomplish their objectives. To the degree we assist with trying to align the business with IT, that is an asset I think we can bring.

"One of the things we actually did here, David, was we followed our own process and basically scripted not only what we did, but also the mistakes we made. We actually made a few as we went through the process. So we think we can bring a lot of value to that alignment discussion between business and IT."

And Hurd then went back yet again to reassure the CIOs in the audience that he and HP are not trying to cut them out of the discussions—for myself, I don't think he needed to repeat that point for a third time, but Hurd knows his audience quite well and so he continued:

"At the same time, I wanna make sure I'm clear to the audience: it's not like us to show up to the CEO and say, 'I got a really big idea: why don't you just give me all the IT and I'll do it for ya.' We'd be more likely to come to the CIO and the IT organization and say, 'How can we help you craft a transformation plan that will be an asset to the company?" Then he went into his discussion of bad IT having its roots in the CEO's office.

So, of all that, you need to remember Hurd's Corolloary: Bad IT = Bad CEO. And if you feel your company's IT is bad or even just sub-par, then the next time you have a performance discussion with your CEO, have a copy of Hurd's remarks handy. It probably won't help much, but it might make your CEO rethink things a little bit. And that's a lot better than nothing.

Recommended Reading:

Hewlett-Packard CEO Hurd's Strategy: The Infrastructure Company

Global CIO: Why Hewlett-Packard Must Articulate Its Enterprise Strategy

Global CIO: An Open Letter To Hewlett-Packard CEO Mark Hurd

Global CIO: IBM's Game-Changing Plunge Into Predictive Analytics

Global CIO: Oracle Nailed By EU Protectionism As HP And IBM Raid Sun

Oracle Dumps HP After Co-Creating 'Most Successful Introduction Ever'

Global CIO: HP And IBM To Add 4,000 U.S. Jobs In Three Small Towns

GlobalCIO Bob Evans is senior VP and director of InformationWeek's Global CIO unit.

To find out more about Bob Evans, please visit his page.

For more Global CIO perspectives, check out Global CIO,
or write to Bob at bevans@techweb.com.

Previous
2 of 2
Next
Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Dark Reading Tech Digest, Dec. 19, 2014
Software-defined networking can be a net plus for security. The key: Work with the network team to implement gradually, test as you go, and take the opportunity to overhaul your security strategy.
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-8142
Published: 2014-12-20
Use-after-free vulnerability in the process_nested_data function in ext/standard/var_unserializer.re in PHP before 5.4.36, 5.5.x before 5.5.20, and 5.6.x before 5.6.4 allows remote attackers to execute arbitrary code via a crafted unserialize call that leverages improper handling of duplicate keys w...

CVE-2013-4440
Published: 2014-12-19
Password Generator (aka Pwgen) before 2.07 generates weak non-tty passwords, which makes it easier for context-dependent attackers to guess the password via a brute-force attack.

CVE-2013-4442
Published: 2014-12-19
Password Generator (aka Pwgen) before 2.07 uses weak pseudo generated numbers when /dev/urandom is unavailable, which makes it easier for context-dependent attackers to guess the numbers.

CVE-2013-7401
Published: 2014-12-19
The parse_request function in request.c in c-icap 0.2.x allows remote attackers to cause a denial of service (crash) via a URI without a " " or "?" character in an ICAP request, as demonstrated by use of the OPTIONS method.

CVE-2014-2026
Published: 2014-12-19
Cross-site scripting (XSS) vulnerability in the search functionality in United Planet Intrexx Professional before 5.2 Online Update 0905 and 6.x before 6.0 Online Update 10 allows remote attackers to inject arbitrary web script or HTML via the request parameter.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Join us Wednesday, Dec. 17 at 1 p.m. Eastern Time to hear what employers are really looking for in a chief information security officer -- it may not be what you think.