1 Overall Assessment 3

1 Overall Assessment 3

Dummy Ltd
Information Maturity Assessment
January 2012

Contents

1 Overall Assessment 3

2 People/Organisation 3

3 Policy 3

4 Technology 3

5 Compliance 3

6 Measurement 3

7 Process/Practice 3

Overall Assessment

1 Overall Assessment

This report was generated from the MIKE2.0 Information Maturity Assessment (QuickScan) (www.openmethodology.org). The assessment is broken into six categories: People/Organisation, Policy, Technology, Compliance, Measurement and Process/Practice.

People/Organisation considers the human side of Information Management, looking at how people are measured, motivated and supported in related activities. Those organisations that motivate staff to think about information as a strategic asset tend to extract more value from their systems and overcome shortcomings in other categories.

Policy considers the message to staff from leadership. The assessment considers whether staff are required to administer and maintain information assets appropriately and whether there consequences for inappropriate behaviours. Without good policies and executive support it is difficult to promote good practices even with the right supporting tools.

Technology covers the tools that are provided to staff to properly meet their Information Management duties. While technology on its own cannot fill gaps in the information resources, a lack of technological support makes it impractical to establish good practices.

Compliance surveys the external Information Management obligations of the organisation. A low compliance score indicates that the organisation is relying on luck rather than good practice to avoid regulatory and legal issues.

Measurement looks at how the organisation identifies information issues and analyses its data. Without measurement, it is impossible to sustainably manage the other aspects of the framework.

Process/Practice considers whether the organisation has adopted standardised approaches to Information Management. Even with the right tools, measurement approaches and policies, information assets cannot be sustained unless processes are consistently implemented. Poor processes result in inconsistent data and a lack of trust by stakeholders.

The weighted summary of this assessment (out of 5), is 0.0:

Source: MIKE2 (www.openmethodology.org)

MIKE2.0: Information Maturity Assessment

11

People/Organisation

2 People/Organisation

People/Organisation considers the human side of Information Management, looking at how people are measured, motivated and supported in related activities. Those organisations that motivate staff to think about information as a strategic asset tend to extract more value from their systems and overcome shortcomings in other categories.

Topic / Description /
Audits / Extent to which formal reviews are undertaken through audit activities
Benchmarking / Comparison of activity with external measures
Common Data Services / Organisations often implement common data standards, but their success is usually most dependent on whether people are assigned to maintain them
Communication Plan / Considers whether expectations are clearly communicated
Dashboard / People are most passionate about data if they can see the results, ideally through measures that are summarised
Data Analysis / People develop trust in data through ongoing and detailed use
Data Capture / The extent to which people are motivated to ensure good data capture
Data Ownership / Assignment of ownership of data contained in systems and a common understanding of wider accountabilities for the stewardship of data
Data Quality Metrics / Quantitative measurement of the quality of data in systems
Data Quality Strategy / Extent to which there is an understanding of the organisation’s approach to data quality
Data Standardisation / Do people understand the importance of recording the same data in the same way with the same definitions
Data Validation / Extent to which critical data is confirmed by qualified people
Executive Sponsorship / Do people believe that their managers care about Information Management
Master Data Management / Increasingly, organisations are seeking to ensure core data concepts such as customer, product, staff or location are consistently recorded across the enterprise
Privacy / Extent to which staff are aware of their privacy obligations
Security / Extent to which staff are aware of their security obligations

MIKE2.0: Information Maturity Assessment

11

Policy

3 Policy

Policy considers the message to staff from leadership. The assessment considers whether staff are required to administer and maintain information assets appropriately and whether there consequences for inappropriate behaviours. Without good policies and executive support it is difficult to promote good practices even with the right supporting tools.

Topic / Description /
Common Data Model / Considers whether common data structures are maintained as a matter of policy
Communication Plan / The best Information Management policies are irrelevant without appropriate communication
Data Integration / Are staff required to “move” data using consistent handling and processes?
Data Ownership / Is data governance required as a matter of policy?
Data Quality Metrics / Extent to which measures are required as a matter of policy (rather than simply practice)
Data Quality Strategy / Considers whether a strategy is required for all data
Data Standardisation / Are inconsistencies within datasets allowed?
Executive Sponsorship / Are policies issued with appropriate executive or board support?
Issue Identification / Extent to which information-related issues and risks are required to be actively managed
Master Data Management / Measures the policy oversight of master data (related to the common data model, but specific to master data)
Platform Standardisation / Is the organisation moving, as a matter of policy, to a reduced set of technologies?
Privacy / Considers whether an appropriate privacy policy framework is in place
Profiling/Measurement / Is data profiling included in data management processes and standards?
Root cause analysis / Ability to trace issues back to cause
Security / Strength of the security policy framework

MIKE2.0: Information Maturity Assessment

11

Technology

4 Technology

Technology covers the tools that are provided to staff to properly meet their Information Management duties. While technology on its own cannot fill gaps in the information resources, a lack of technological support makes it impractical to establish good practices.

Topic / Description /
B2B Data Integration / Is data received from, or sent to, other organisations consistently handled?
Cleansing / Are data cleansing tools appropriately deployed
Common Data Model / Considers the use of consistent data models and standards
Common Data Services / Use of middleware and standard messages to interface data between systems
Data Analysis / Extent to which data analysis technologies are appropriately deployed
Data Capture / Considers the use of consistent design approaches to collecting data from end-users or customers
Data Integration / Are automated data integration tools used (as opposed to inconsistent manual coding)
Data Quality Metrics / Considers the inclusion of automated data quality metrics
Data Standardisation / Extent to which data integration is combined with technology to standardise data (such as capitalising names, splitting fields etc.)
Data Stewardship / Provision of monitoring technology for data quality and other management metrics
Data Validation / Consistent use of rules to validate data entered or supplied
Master Data Management / Use of common platforms to manage master data across the organisation
Metadata Management / Appropriate technology to manage and disseminate metadata
Platform Standardisation / Extent to which data management forms part of the technology platform strategy
Profiling/Measurement / Is a data profiling technology consistently used?
Security / Technology management of data aspects of security

MIKE2.0: Information Maturity Assessment

11

Compliance

5 Compliance

Compliance surveys the external Information Management obligations of the organisation. A low compliance score indicates that the organisation is relying on luck rather than good practice to avoid regulatory and legal issues.

Topic / Description /
Audits / Measures compliance of data management activities with auditing requirements
Metadata Management / Comparison of data definitions and rules with external and regulatory assumptions
Data Quality Metrics / Standardised use of data quality metrics in reporting to external stakeholders
Data Analysis / Accessibility of regulatory information (assumes that greater accessibility generally equates to greater quality)
Security / Are appropriate protections in place for the most sensitive datasets in the organisation?
Issue Identification / Analysis of problems which could exist in data provided to regulators
Service Level Agreements / Do internal SLAs align to external obligations?
Data Subject Area Coverage / Coverage of governance regimes over the data required to meet external obligations

MIKE2.0: Information Maturity Assessment

11

Measurement

6 Measurement

Measurement looks at how the organisation identifies information issues and analyses its data. Without measurement, it is impossible to sustainably manage the other aspects of the framework.

Topic / Description /
Benchmarking / Comparison of the organisation’s Information Management capabilities to external benchmarks
Data Quality Metrics / Are data quality metrics consistently reported?
Dashboard / Executive focus on appropriate organisational business measures and KPIs
Data Analysis / Organisational capability to analyse itself and its performance
Profiling/Measurement / Ongoing sampling of data to ensure that the content is consistent with the definitions provided
Metadata Management / Appropriate management and dissemination of metadata
Cleansing / Ongoing monitoring of data cleansing and changes to data across the enterprise
B2B Data Integration / Monitoring of external interfaces

MIKE2.0: Information Maturity Assessment

11

Process/Practice

7 Process/Practice

Process/Practice considers whether the organisation has adopted standardised approaches to Information Management. Even with the right tools, measurement approaches and policies, information assets cannot be sustained unless processes are consistently implemented. Poor processes result in inconsistent data and a lack of trust by stakeholders.

Topic / Description /
Audits / Are data validation and audits completed for critical datasets?
Benchmarking / Is a formal methodology utilised to assess how well data is managed within the organisation?
Cleansing / Are processes and methods embedded in the organisation?
Common Data Model / Extent to which common data models are consistently governed and managed across the organisation
Communication Plan / Use of common approaches to communicate issues, processes and updates regarding data and its governance
Dashboard / Are dashboard or other common publication channels utilised to distribute data analysis and metrics throughout the organisation?
Data Analysis / Use of formal processes and methods for analysing data
Data Capture / To what extent does the organisation use formal processes to manage data capture and management?
Data Integration / Are standard methods, processes or procedures used to develop data interfaces (both ETL and EAI)?
Data Ownership / Considers whether processes and practices are deployed to define executive accountability for data
Data Quality Metrics / Are Data Quality measures consistently recorded and compared?
Data Standardisation / Extent of data standardisation practices in the organisation
Data Stewardship / Use of standard approaches to data stewardship
Executive Sponsorship / Considers whether senior management regard data management as a core responsibility or something to delegate to lower levels
Issue Identification / Consistent identification and management of data issues
Master Data Management / Use of Master Data Management business processes
Metadata Management / Appropriate processes for the collection, management, update and dissemination of metadata
Privacy / Considers whether privacy practices are consistently adopted
Profiling/Measurement / Extent to which data profiling processes are followed when undertaking data-related activities (extracting or publishing)

MIKE2.0: Information Maturity Assessment

11