Gartner releases 2020 IT Risk Management Magic Quadrant
During the ongoing COVID-19 pandemic, such a focus has only become more crucial as IT departments scramble to enable remote working and file sharing - activities which come with an inherent associated risk.
Gartner’s report highlighted the fact that leaders in the field are seeing increased demand for IT risk management stemming from factors such as cybersecurity initiatives and obligations to comply with regulations.
ServiceNow was one of the companies named as a leader by the report. In , Vasant Balasubramanian, head of risk products at ServiceNow, said; “We believe that Gartner’s recognition of ServiceNow’s GRC platform comes at a critical time during this new normal as companies are doubling down on their strategies for digital risk management. At a time when agility and resilience are imperative to business success, ServiceNow’s modern, cloud-based platform enables our customers to proactively manage risk across enterprise workflows.”
One of the key predictions made by the report was that by 2025, 50% of larger enterprises “will depend on risk management solutions”, a figure up from just 10% in 2018. Those solutions are expected to adapt to new risks brought on by the emergence of technologies such as cloud systems, IoT and social media.
Also appearing was NAVEX Global, whose General Manager, Lockpath business unit, Haywood Marsh, : “Risk management is a priority for companies in virtually all business sectors. Right now, IT risk is particularly high on the list due in part to the ongoing disruption caused by the COVID-19 pandemic. The potential severity of IT risks to business operations means they must be addressed with speed, agility and an integrated approach. We believe Gartner’s latest research confirms our completeness of vision for the Lockpath platform, and we are proud to be included as a Leader in this Magic Quadrant.”
Dark Wolf: accelerating security for USAF
As a small company whose biggest customers are the Department of Defense and the Intelligence Community, Dark Wolf Solutions (Dark Wolf) is a triple-threat, specializing in Cybersecurity, Software and DevOps, and Management Solutions. Dark Wolf secures and tests cloud platforms, develops and deploys applications, and offers consultancy services performing system engineering, system integration, and mission support.
The break for Dark Wolf came when the Department of Defense decided to explore software factories. Rick Tossavainen, Dark Wolf’s CEO, thinks it was an inspired path for the DoD to take. “It was a really great decision,” he says, “Let’s pull our people together as part of this digital transformation and recreate what Silicon Valley startup firms typically have. Let’s get into commercial facilities where we have open windows and big whiteboards and just promote ideation and collaboration. And it creates this collaborative environment where people start creating things much more rapidly than before.”
It has been, Tossavainen says, “amazing to watch” and has energized the Federal Contracting Sector with an influx of new talent and improved working environments that foster creativity and innovative ways of approaching traditional problems.
“We originally started working with the US Air Force about three years ago. The problem was at the time you could develop all the software you wanted but you couldn’t get it into production – you had to go through the traditional assessment and authorization process. I talked to Lauren Knausenberger and she told me about Kessel Run and what eventually came out of this was the DoD’s first continuous ATO [Authority To Operate].”
The secret to Dark Wolf’s success – and its partnerships with USAF and Space Force – lies in a client-first attitude. “We’re not looking to maximise revenue,” Tossavainen explains. “We tell all of our employees, if you’re ever faced with an issue and you don’t know how to resolve it, and one solution is better for the customer and the second is better for Dark Wolf, you always do number one. We’ve just got to take care of our customers, and I look for other partners that want to do that. And let’s work together so that we can bring them the best answer we can.”
Rapid releases and constant evolution of software are common themes among USAF’s partners. Like many firms operating in the commercial and public sector spaces, Dark Wolf leads with a DevSecOps approach.
“Failure is tolerated,” says Tossavainen. “If it’s not going the right way in three months, let’s adjust. Let’s rapidly change course. And you can tell really quickly if something’s going to be successful or not, because they’re doing deployments multiple times a day – to the customer.”