Vivek Kundra: The Alpha CTO

Every CTO I know has heard of Vivek Kundra, CTO of
the District of Columbia.  We have all been following his accomplishments
in transforming the technology program in DC and have watched in excitement as
more and more capabilities have been rolled out to serve the city and its
citizens. We have followed reports of bold moves he put in place to ensure
technology programs deliver.  We have read about his new approaches to
technology portfolio management and watched as he discussed the leap ahead he
delivered to his enterprise by his audacious, courageous use of Google Apps and
other cloud-based solutions.

If you are not one of those familiar with Vivek, here
is a short bio: Vivek Kundra is the CTO for the
District of Columbia where he leads an organization of over 600 staff that
provides technology services and leadership for 86 agencies, 38,000 employees,
residents, businesses, and 14 million annual visitors. He brings to the role of
CTO a diverse record that combines technology and public policy experience in
government, private industry, and academia. Previously, Vivek
served as Assistant Secretary of Commerce and Technology for the Commonwealth
of Virginia, the first dual cabinet role in the state’s history.  In the
private sector, Vivek led technology companies
serving national and international customers. Earlier he served as Director of
Infrastructure Technology for Arlington, Virginia. He also taught classes on
emerging and disruptive technologies at the University of Maryland. Since Vivek became District CTO, he has been honored with major
IT awards. In 2008, the MIT Sloan CIO Symposium recognized him among
outstanding IT innovators. In addition, InfoWorld Magazine named Vivek among
its “CTO 25″.

I recently saw Vivek at a meeting of the Washington Area CTO Roundtable,
an informal collective of area CTOs led by Yuvi Kochar, CTO of the Washington
Post Company. Before the meeting we chatted about mashup technologies (including his Apps for Democracy  contest and also JackBe).  During the meeting Vivek discussed several
aspects of his innovative efforts to transform the District’s information technology
infrastructure.   A point that struck me was his leadership through
principles.  Three key ones he articulated were: 1) Leveraging commercial
technology, 2) Driving transparency, and 3) Rethinking notions of IT
governance. 

Vivek and I just finished a phone call where we discussed these and other items
in more detail.  Here is a bit more on his approach. 

1) Leveraging commercial technology: Commercial radios and cell phones
allowed a rapid enhancement of the tactical communications infrastructure of
the DC workforce, including the police workforce.  Police squad cars are
also now equipped with commercial, but toughened, laptops.  Commercial web
technology has been leveraged in ways that leaped ahead of old clunky office
automation and also enable rapid development and mashups. 

2) Driving transparency and engaging citizens:  Technology
impediments to information access and information sharing were eliminated in
ways that enable citizens to see how government decisions are being made. 
Data was also exposed in ways that enabled mashups and agile
programing/development.  Examples include DCs digital public square and
Apps for Democracy efforts.

3) Rethinking notions of IT governance: Totally new, innovative ways to
manage IT portfolios were created and used to ensure all stakeholders could
evaluate the technology program and better make informed decisions on when to
terminate programs and where to invest more money.  Chief among these
innovations was an approach to portfolio management that replicates a stock
market trading floor.  More important, however is the relentless focus on
performance and innovation to support performance.  Beside rethinking
these notions of governance Vivek also took measures to smartly
watch/reduce/reprioritize IT costs.

I asked Vivek for thoughts that might be relevant to technologists who have set
their sites on careers where they can deliver results.  Many of us would
like to follow in his footsteps.  I wondered, if there is a particular
computer programing language we should all be learning now?  Should we be
diving into Python?  That’s hot now.  And what about databases? MySQL
and Hadoop are all the rage.  The thoughts I got back from Vivek were
incredibly insightful and far more relevant than the simplistic question I
asked. 

V:  Technology is important, and we do need to know technology.  But in these very exciting times where
Moore’s law pushes us all forward it is actually more important to be able to quickly learn new technology rather than focus on one and only one.  This is the beauty of the new world of
technology. There is always something to learn.  We should also always remember that the reason to learn is the mission.  To an enterprise CTO, technology by itself is worthless.  Technology
only has value if it addresses business problems and drives business success.
Therefore technologists must have an ability to translate between the worlds of
mission needs and technology and need an ability to rapidly learn and deeply
understand both.

I asked Vivek for his intention for sharing his models and methods, since they
have clearly delivered success in DC.  He is doing quite a bit there so
all of us who would like more info have plenty of ways to learn more:

V: The DC CTO site at http://octo.dc.gov
provides links to many of the ongoing activities of the office and for those
who would like more on the models that produce the results we link to policies,
guidelines and procedures.  We also provide information on how our
governance process works.   But additionally we host visits to our
office by interested parties and have begun blogging about them.  In
another effort we hope will help move the models forward we are pressing ahead
with plans to turn our stock market approach to portfolio management into an
open model and will open source the code that makes it work, which should help
drive more innovation there.

Speaking of innovation, Vivek seems to have found a way to accelerate
innovation, which is something all CTOs are interested in doing.  I asked
him for his thoughts on where to look for innovation.  Another interesting
reply:

V:  You can look for innovation many places, but remembering that
necessity is the mother of invention you should keep an eye open for places
that innovate because they really need to.  I always keep an eye on the
developing world and am so incredibly amazed at the tech innovation
there.  Enterprise IT does not mean that every program and project must be
delivered with huge budgets and huge staffs and the incredible innovations
coming out of the developing world prove that time and time again.  I’m
excited and enthused about developments like cell phone voting in Estonia,
electronic census that works in Chili, fishing villages around the world using
instant direct data to plan movement.  Innovation occurs many places, but
some of the greatest lessons for innovation are coming from the developing
world.

I asked Vivek about how to find balance between setting standards and enabling
innovation:

V:  Standards are important, but if a standard gets in the way of
innovation kill it.   Use standards that enable innovation. 
This is the role of the CTO.

Vivek also offered thoughts on social networks.

V:  In seeking ways to make your cycles of innovation move faster, never
underestimate the power of social networking tools and the networks you can
build with them.  Facebook is the example most talked about but there are
many others including networks built around ecommerce like eBay and
Amazon.  I believe we should not only embrace them to enable the power of
social networking but to help us leverage, in a large way, the IT
infrastructure of these platforms.   The new generations today are making
maximum use of these platforms and I view this as a very optimistic point.

As for me, I view the results of Vivek Kundra and his models as optimistic
points.  The great thing about being a CTO is the learning never stops in
this field and Vivek is a great teacher we should all be learning from.

For more on Vivek and the way hew views technology, including some of his inputs to the Obama adminstration, see: http://www.ctovision.com/2009/01/federal-government-technology-directions-and-the-fed-cto.html

Threats In the Age of Obama

The world does not change in discrete, binary steps.  There is a great deal of continuity from the past to the present and on to the future.  But many of us sense things are different in the world today.   Technology is changing every life and every business, economic megatrends are producing changes, war and conflict and terrorism inject uncertainty, and the entire dynamic of human events is moving faster and faster.

On top of that, a new U.S. administration led by a new President has just assumed executive power in the U.S.  This is clearly a time for us all to take stock.

I was privileged to have been asked by Michael Tanji to contribute to a book he edited on topics relevant to this new dynamic called “Threats In The Age of Obama.”  This compilation consists of a survey of the new national security threat landscape by Tanji and then examinations of a wide swath of threats captured by national security experts.

Topics and Contributors include:

• The Threat Landscape, Michael Tanji
• The Tangled Relationship Between Organized Crime,
  Terrorism and Proliferation, Christopher A. Corpora, Ph.D
• The Terrorism Meme–Looking Beyond the Current Threat,
  Matthew G. Devost
• Crazy as a Fox, Adrian Martin
• Infectious Diseases, Foreign Militaries, and US National
  Security, Christopher Albon
• Pakistan as a Nuclear Risk, Steve Schippert
• Nuclear Nonproliferation in the 21st Century, Cheryl Rofer and Molly Cernicek
• Into the Complex Terrain, Tim Stevens
• Simulated “Black Swans”: National Security, Perception
  Operations, and the Expansion of the Infosphere,
  Adam Elkus
• An Outbreak of Peace and Democracy, Daniel H. Abbott
• Ideas and Strategies for a More Secure Future, Michael Tanji
• Preparing One’s Mind to See, Art Hutchinson
• The Issues of Non-State Actors and the Nation State, Samuel P. Liles
• The Future of Missile Defense Policy, Tom Karako
• Toward a Contemporary Deterrence Strategy, Carolyn Leddy
• An Information Age Strategy for Government Information Technology, Mathew Burton
• The Future of Cyberspace Security: The Law of the Rodeo,
  Bob Gourley
• Security Evolution, Gunnar Peterson
• Arming for the Second War of Ideas, Matt Armstrong
• Blurring the Lines Between War and Peace, Shane Deichman
• Reconfiguring the National Security Architecture, Shlok Vaidya
• A Grand Strategy for a Networked Civilization, Mark Safranski

Most of these authors are wired web2.0 experts who are well published in new media and reachable by any who seek to interact on these very important topics (see contact info below).   My recommendation: Read the book and scrutinize it.  If you find any aspect you take issue with, seek out the section’s author and engage them in the intellectual interaction required to drive a greater understanding of these many issues. We also plan several events where the contributors will sit on panels and take questions and interact. 

Whatever your method, please find ways to contribute to the dialog. Your contributions can significantly enhance our nation’s ability to succeed in our responses to the many threats of this age.

Please check out the book here: “Threats In The Age of Obama.”

Contributing authors include, in alphabetical order, Dan tdaxp, Christopher Albon, Matt Armstrong, Matthew Burton, Molly Cernicek, Christopher Corpora, Shane Deichman, Adam Elkus, Matt Devost, Bob Gourley, Art Hutchinson, Tom Karako, Carolyn Leddy, Samuel Liles, Adrian Martin, Gunnar Peterson, Cheryl Rofer, Mark Safranski, Steve Schippert, Tim Stevens, and Shlok Vaidya. And of course, editor and contributor, Michael Tanji.

Social Media and the National Security Professional

This is an update of an article I published last August in Social Computing Magazine (a great enterprise Web2.0 site edited by Dion Hinchcliffe).   A key goal of this piece has been to encourage more in the national security world to use capabilities like Facebook, LinkedIn, Blogs, and of course Twitter.  If you know someone you would like to encourage to use these sites please feel free to lift from this.  If you know of other sites or capabilities that deserve this sort of tutorial please let me know.

Another key goal of this paper is to enhance the security of our nation, and my thesis is that by getting more senior thought leaders into these web2.0 capabilities we can do just that. 

Social Media and National Security Professionals

24 January 2009

Bob Gourley

Social
Media is a term used to encompass a wide range of technologies used to
enhance shared meaning among participants.  When properly used, Social
Media capabilities also address the information explosion we are all
experiencing.   Social Media includes weblogs, wikis, email, instant
messaging, tagging and broadcast text. Popular social media services
include such familiar names as AIM, TypePad, Facebook, LinkedIn,
Twitter and Plaxo.

This note captures some tips and techniques for the use of social media focused on national security professionals.

First,
for context and background, let me start with the analogy of
traditional media and it’s still significant contribution to dialog in
the national security space.  Great thinkers with something to say
frequently author an editorial submission to news outlets.  Examples
abound, but as a reference let me point out the thought provoking piece
by Mark Lowenthal in the 25 May 2008 Washington Post titled “The Real Intelligence Failure? Spineless Spies.” 
Here one of the more elegant writers in the intelligence community laid
out his personal views and made a contribution to the dialog on the
intelligence community.   This type of article is of value in helping
us collectively think through some key issues.  The article also
underscores that the explosion of social media does not eliminate the
need and value for authoritative voices.

Now let’s discuss how new media helps the dialog.

With
new media, you do not have to be one of the leaders of the national
security domain to publish your thoughts.  You can establish your own
blog.  There are many services that do this. The most popular ones are Moveable Type and TypePad.  I like them both and have used both.  If you are just starting out I recommend you sign up with TypePad.  You can have a blog up in minutes, and with a little more time
you can have your own domain and a blog configured with your own
design.  Having a blog does not mean you are automatically an expert,
but when you have something to say you will have a path to say it.

Part
of the power of new media is that capabilities like blogs give more
people an ability to inject ideas into the dialog, and in many national
security issues more brains with more ideas can be a significant
enhancement to the dialog.  But new media gives even more benefits. 
New media gives others an ability to discover and comment on your
thoughts.  For example, blogs all come with rich commenting and
moderating features so others can share thoughts and endorse, critique,
or add to your original post.  This provides a way to highlight good
ideas from social media.

New media is also known for speed.  The
instant your thought is published you can have it provided to others
via RSS feeds, by e-mail push, and by alerts to Twitter, a micro
blogging site which is also being used by a growing number of national
security professionals.

To see how Twitter works, visit my site at http://www.twitter.com/bobgourley
.  You will see a series of small posts made by me.  Some were
automatically created when I posted to my blog.  Others were either
sent in from my cell phone while I’m on the road or from my computer at
home.    If you desire to “follow” me on twitter all you have to do is
sign up for a Twitter account and click the “follow” button.  Then you
can read those micro posts whenever they are made.  You can also find
other national security professionals to follow on Twitter, and they
will be able to find you as well. For example, from my page, look for
the graphic that shows Lewis Shepherd and click on his head.  You will
see his Twitter site. Or if you don’t remember what Lewis looks like
can click on the list of people I follow and find him there.  
Following feeds like this will keep you informed of key meetings,
conferences and events and of course blog posts.   Producing your own
Twitter feed will provide you with a way to contribute to the dialog.

Another tool of increasing use by people in this discipline is LinkedIn.  This is a site that lets users add a bio or resume and then helps
them manage their social network.  LinkedIn lets you connect to others
on the site who you know.  You can help out people you know who might
need to meet someone you know and vice versa. This site is very helpful
in learning a bit more about people before you meet with them and in
staying in touch with people when they change positions. LinkedIn also provides simple ways to communicate with others, either all at once or direct person to person and I frequently hear from other CTOs via this path.  How do you
get started with LinkedIn?  Sign up for an account, fill in as much of
your bio as you are comfortable sharing, and follow the instructions to
find people you already know and connect with them. 

A site with a different but somewhat related functionality is Plaxo
and I also recommend you create an account there.  Plaxo specializes in
contact management.  You can keep your entire address book there. 
You can also synchronize Plaxo and LinkedIn so if one of your contacts
changes their information in LinkedIn it will update Plaxo.
Additionally, you can have your blog and your Twitter feed
automatically update Plaxo (many readers in the national security space
prefer to read blogs via Plaxo).   The way to get started here is to
log into Plaxo, create an account and upload your address book to it by
following your instructions.  Is that safe?  It is at least as safe as
having your address book on your own computer.  I’ve never had any
problems doing that.

Another key social media site is Facebook. 
A growing number of national security experts are using Facebook to
stay in touch with friends and associates.   It is also a good method
for communicating. You can send private messages to Facebook users and
can also send open messages to them by writing on their “wall”.  You
can configure Facebook to display your latest blog posts and twitter
feeds.   You can join up with Facebook from their site, and then
Facebook’s “friend finder” will help you find the right people to
connect to.

Now let’s continue our discussion on the article Mark
Lowenthal published.  In this case, if you had an opinion on his
content you could post a note at the Washington Post website, and I
noticed many did.  Because the Post is an old media powerhouse they
seem to publish most comments, which has the benefit of letting you see
a spectrum of thoughts.   You can also post comments in your own
blog.   I published my thoughts on Mark’s piece here. 
My blog automatically sent word to Twitter, Facebook and Plaxo when I
did.  It also automatically pinged some key blog search engines so they
could access my content.  Another friend of mine in the community
posted his views on his blog.  Other friends on Twitter began dialog
with me via that channel.  And other associates began an e-mail dialog
with me on the issues raised by Mark.   So within a matter of minutes
wide swaths of people were engaged in collaboration and discussion on
the topics Mark noted.

Perhaps the greatest power of new media,
however, is when it is used to accelerate new ideas that were not
identified by one of the greats like Mark.  For example, I recently
read a Twitter post from a thought leader in this new space named
Jeffrey Carr (see his Twitter Feed at http://www.twitter.com/jeffreycarr)   
He posted a short comment about a blog entry he wrote and said it
included “3D imaging and Virtual Earth – mind blowing video http://bit.ly/3SxtdA
”   His Twitter post alerted me and I checked out his blog and yes, he
was right.  I saw a YouTube video that was absolutely mind blowing and
of direct relevance to others in the national security space.  And the
video, frankly, could change things more dramatically and in a more
positive way that Mark Lowenthal’s well thought out piece ever could
(Jeffrey you rock!). So I’ll be blogging about Jeffrey and will be
talking about the capability he highlighted when I attend a major
intelligence conference next month.  Jeffrey’s other readers in the
national security space will also be considering the significance of
his posting and the result will likely be an acceleration of a
capability into the fabric of the national security apparatus, thanks
to social media.

Another example of the power of social media for
national security professionals is in coordinating action and
participation prior to conferences.  How do you decide which
conferences to attend?  I try to pulse experts to see who else is
going.  Once I make up my mind I let everyone I network with know I’ll
be there so they can advise me of their intentions and so we can
arrange side bar meetings as required. This is all so simple in the
world of social media like Twitter, Plaxo and Blogs.

So a key
benefit of Social Media for national security planners is to accelerate
good ideas, whether they be good ideas for policy or good ideas for
technology.  Social Media can also be leveraged to address the
information explosion by enabling people to enlist the capability of
others to seek out and bring the right information to your attention. 
These others can be crowds, random individuals, fields of experts or
trusted friends.  Which of these you leverage can vary from subject to
subject or task to task.

Is there a dark side for national
security?  What are the risks of social media?  Perhaps the greatest
risks are that we not fully engage in the power of these tools,
especially when adversaries are not constraining themselves.   But
there are risks to mitigate in our use of new media.  These include
risks to the confidentiality of ongoing operations and in some cases
risks to personal security.  By identifying these risks and taking
steps to address them now we can accelerate the use of new media faster
through the community.

I have personally encountered several
other examples, but it seems we have just scratched the surface on the
benefit of these capabilities to our nation’s security.  New thinkers
are pioneering paths that are already helping the nation come to grips
with some significant issues. With more participation by thinkers like
you the contributions of social media will likely grow in importance.  
So please, if you have not started engaging in social media sites yet,
jump in now.

Bob Gourley
http://ctovision.com

The Future of Cyber Security and Cyber Conflict

As I write this there is evidence that the Russian’s are once again
attacking another country through massive denial of service attacks. 
For a recap with analysis you will not see elsewhere see The Kyrgyzstan Cyber Attack That No One Is Talking About . 
This is not the first time that a major nation state has been accused
of launching attacks like this.  Russia has been implicated as responsible for two other large scale attacks (Estonia and Georgia).   In other
investigations China has been implicated of sponsoring/supporting
attacks designed to extract information.  These are very serious high
end attacks that are hard to mitigate, but organized crime is also
becoming increasingly capable, investing large amounts in R&D to
allow their continued ability to sap resources through cyber theft.  
In a recent example a payment processing company called Heartland
Security Systems admitted its security system had been breached and
millions of credit and debit card numbers were extracted.

I’ve previously written about the government’s response and many of us
have been strongly supportive of the efforts and activities of Melissa
Hathaway and the team of coordinators she assembled in government.  
Her approach has been viewed as very positive by all credible
observers and it is good to know she will be continuing to work to make
our nation safe in this area. 

It was also good to see the approach of the Obama team posted on the
Whitehouse.gov site.  In a homeland security policy statement six key
goals were articulated.  They are copied below:
   

Protect Our Information Networks

Barack Obama and Joe
Biden — working with private industry, the research community and our
citizens — will lead an effort to build a trustworthy and accountable
cyber infrastructure that is resilient, protects America’s competitive
advantage, and advances our national and homeland security. They will:

• Strengthen Federal Leadership on Cyber Security:
  Declare the cyber infrastructure a strategic asset and establish the
  position of national cyber advisor who will report directly to the
  president and will be responsible for coordinating federal agency
  efforts and development of national cyber policy.

• Initiate a Safe Computing R&D Effort and Harden our Nation’s Cyber Infrastructure:
  Support an initiative to develop next-generation secure computers and
  networking for national security applications. Work with industry and
  academia to develop and deploy a new generation of secure hardware and
  software for our critical cyber infrastructure.

• Protect the IT Infrastructure That Keeps America’s Economy Safe: Work with the private sector to establish tough new standards for cyber security and physical resilience.

• Prevent Corporate Cyber-Espionage:
  Work with industry to develop the systems necessary to protect our
  nation’s trade secrets and our research and development. Innovations in
  software, engineering, pharmaceuticals and other fields are being
  stolen online from U.S. businesses at an alarming rate.

• Develop a Cyber Crime Strategy to Minimize the Opportunities for Criminal Profit:
  Shut down the mechanisms used to transmit criminal profits by shutting
  down untraceable Internet payment schemes. Initiate a grant and
  training program to provide federal, state, and local law enforcement
  agencies the tools they need to detect and prosecute cyber crime.

• Mandate Standards for Securing Personal Data and Require Companies to Disclose Personal Information Data Breaches:
  Partner with industry and our citizens to secure personal data stored
  on government and private systems. Institute a common standard for
  securing such data across industries and protect the rights of
  individuals in the information age.

Another goal was in the Defense portion  of the Whitehouse.gov site which called for DoD to lead in operational defense.  It reads:

• Protect the U.S in Cyberspace: The Obama-Biden
  Administration cooperate with our allies and the private sector to
  identify and protect against emerging cyber-threats.

My assessment of these seven goals:  This is too important for us to kibitz on at all.  Now is the time for us to all form up on these goals and execute.  Collectively we have to move faster in all these areas if we are to lesson the impact of the thinking/changing/technologically advanced adversaries that face us.  I only add that we should keep bold visions in mind.  I really believe that security and functionality of IT are totally connected and should always be considered in the same breath.  And both can be dramatically improved, this is not a zero sum game where functionality is compromised by security.  I believe our goal should be, as I’ve stated before, that the security and functionality of the federal enterprise will be improved by two orders of magnitude over the next 24 months.  And I believe the cyber and CTO team of the new administration can deliver on that.

I also believe that DoD will continue to have a key leadership roll in cyber, since increasingly that domain is being used by military adversaries and our own military must be able to operate with knowledge that their IT systems are safe from adversary attack.    

More later.

Government 2.0 Camp 27-28 March 2009 in DC

Have you ever heard of an Unconference?

Have you ever heard of a BarCamp?

If these are new terms please read on, there are some important aspects of these concepts that CTOs should be familiar with.   And there is a specific BarCamp Unconference coming up 27-28 March in the DC area focused on Gov2.0 that I’ll mention below.

But first, back to those two terms.

An Unconference is a participant driven conference, normally facilitated, but never dictated.  Unconferences are centered around a theme or a purpose.  For more on Unconferences see: http://en.wikipedia.org/wiki/Unconference

You can think of a BarCamp as a type of unconference.  BarCamps are a network of user generated conference that are open, participatory events based on workshops.  They have been commonplace in the open source community, but have also been applied in other areas, even political organizing.  For more history see http://en.wikipedia.org/wiki/Barcamp   But if you really want to know what a BarCamp is, go to one and contribute and see how you can change the world.

A great opportunity to contribute is coming on 27 and 28 March.  The Government 2.0 Camp, organized by three widely followed experts in social media and collective action (Maxine Teller, Peter Corbett, Mark Drapeau) is a 100% participant planned, not-for-profit event that will bring together leading thinkers from government, academia and industry to share government 2.0 initiatives that are already in process and to collaborate about leveraging social media tools and Web2.0 technology to create a more efficient and effective government– Government 2.0.

Maxine Teller writes that:  “The
unconference format embodies these same collaborative principles as our
nation’s democracy–of the people, by the people, for the people–and
thus, is the ideal structure for the topic of Government 2.0.  This
event is a tremendous opportunity to practice what we preach and create
something better collectively than we could individually.“

This event will be happening at a great time.  The Obama administration will have been on scene long enough to have mapped out not only their strategy for the future but strengths, weaknesses and gaps in pursuit of their strategy.  With input from feds in the know, the attendees at this event may be able to help address gaps and contribute to the technology path of the nation in ways that are hard to predict, but likely very positive.     

To learn more about the event and to sign up for it (and to help plan for and sponsor it), see the event wiki at: http://barcamp.org/Government20Camp

To register for the event visit the site at: http://gov20camp.eventbrite.com

I hope to see you there. 

Tips for the new CTO: How to engineer a miracle

I ran into so many friends at the AFCEA solutions conference this week.  One guy I have not seen in person for years is  Mike “Ziggy” Steinmetz.  Ziggy is a great leader and thinker at Northrop Grumman.  He is also a tremendous collector of wisdom and a teacher who helped prepare me for my position as CTO of DIA.  Seeing him made me think I should share some of these lessons with you.

The lessons come from the true story of the 1980 US Olympic Hockey team. The guys that did the impossible by defeating the Soviets.  We all know the story.  And there is a GREAT movie titled “Miracle” that captures it very very well.  From the Amazon description of the movie: "Kurt Russell gives a brilliant performance as the dynamic and
determined coach Herb Brooks, who had an impossible dream — beat the
seemingly unbeatable Soviets at their own game. Starting with a
handpicked group of 26 undisciplined kids, Brooks coached them to play
like they never played before, and turned 20 of them into a team that
believed they could achieve the unachievable — and in the process,
united a nation with a new feeling of hope."

Think of the coach of that team, Herb Brooks, and his strategy for winning.  He took players who once played for competing teams with long standing rivalries and forged a new team unlike any team that had ever played before.  The way he did it has direct lessons for many areas of leadership, especially technology leadership. 

Watch the movie and look for these lessons/thoughts:

• Coach Herb Brooks convinced everyone that something different had to occur than had been occurring in the past.   ”Only way to succeed is to change the way we play the game. “  Then he engineered a strategy.
• Herb picked his team, not based on who the best technicians were, but who the best team players were:  "Not looking for the best players I am looking for the right players."   How does this translate to technologists?  CTOs want skilled technical experts, but just as important is getting skilled technical experts who can work as part of a team.
• Cheap shots however self justified, hurt the team "This is not about old rivalries."   As enterprises transition from the old way of doing things to the new way of doing things they must forget about our own old rivalries.
• Orientation early is by region:  "I'm Ralph Cox and I'm from where ever won't get me hit.”   Herb worked them till they realized—they are on a new team now.   Frequently technologists must have the same light bulb go off.   Enterprise technologists sometimes need to be reminded they play for a bigger team than they used to.  
• This is the same point Herb drives home when he says “ The name on the front is a hell of a lot more important than the name on the back”
• The team’s identity crisis had to be fixed as it was the source of a lot of the early problems. "Think you can win on talent alone…you don't have enough talent to win on talent alone!"  "Name on the front is a hell of a lot more important than the name on the back”  “Win loose tie…you are going to play like champions" "If you want to make this team you had better start playing at a level that forces me to keep you here".   Herb understood the consequences of the identity crisis the team faced he also understood he could not tell the team what their identity was; they had to figure that out for themselves.
• Herb's unexpected personal comments of concern towards Jimmy Craig…"I've got to know why you are here and where you are coming from"  "I'm here aren't I?"  "Don't forget to bring your game".
• NHL all stars lost because they played as individual all stars and not as a team.
• "All Stars won't change their game” No one has ever worked hard enough to skate with the Soviets for an entire game…. we will!
• Dedication to improvement and personal improvement were key.
• The Carter "Crisis in Confidence speech" is a metaphor for many old, legacy enterprise technology environments.  "More believe they will be less better off in the next 5 years".  “Stop crying start sweating, stop talking start walking".
• 1st face-off in Madison Sq garden.  Mark Johnson looks at the Soviet Captain and it is still evident he is thinking in terms of individual vs. team effort.  "Jimmy Craig's comment "you gotta listen to me" is a metaphor for the communications breakdown that led to the performance on the ice"
• O'Callaghan injury and the decision to keep him.  Herb knew that once the team was set it was less disruptive to go down a man than to introduce a new member of a successful team.
• "Pulling the goalie"  "Jimmy I Know there is more"  "Coach It's my net.” “Jimmy, They just scored 10 goals…right now its anybodies net"
• ”Lets not turn this game into something it is not.”  “I’m not sure we have any control over that”.
• ”You earn opportunity” Through hard work you make it “your time”.
• Face-off to the 3rd period.  Compare Mark Johnson’s face to that 1st face-off in Madison Sq garden.  Finally they meet as mental and physical equals.  The difference…attitude and a string of “small successes.”   I have seen technology teams like this.  I've seen engineering teams who have decided to be world class best and so they are.  I've seen technologists set goals for themselves that have them walking among the giants of computer science and enterprise operations. 

A CTO needs to do more than watch a movie to be a great CTO.  But this movie sure gives you things to think about.  So, a big thumbs up from the CTOvision movie review team.

CTOs, Global Cyberwar and Our Collective Future

If you are a technologist, please take a moment to download the PDF of the report by the U.S. Commission on Cybersecurity.  This report, titled Securing Cyberspace for the 44th Presidency, is the best proclamation of the challenges of cyber I have read.  It is also a roadmap that will help any trying to navigate these very tough issues.

I've been involved in things cyber for a long time.  My deepest
involvement began in December 1998, almost 10 years ago to the day.  
In all that time I've seen lots of studies and lots of papers and many
treatments of the issues.  But I've never seen one that captures the
complexities and the need for specific actions as well as this one. 

I'd really recommend you read every word, if you want to be considered literate in this field.   But if it will be a little while till you get to it, here are some key points:

The three major findings are:  1) Cybersecurity is now a major national security problem for the U.S., 2) Decisions and actins must respect privacy and civil liberties, and 3) only a comprehensive national security strategy that embraces both the domestic and international  aspects of cybersecurity will make us more secure.

The report makes a few points about the Bush Administration's Comprehensive National Cybersecurity Initiative (CNCI).  In general the give credit to that initiative, and call it good.  I agree, it is a great activity I've previously written about that is led by one of the most effective people in government today and has done great work.  But as the comission points out, the work of the CNCI is good but not sufficient. 

The biggest shock for me in this study:  The amount of funding on R&D for cyber security.  I have been looking into the many activities underway, and maybe that look made me deceive myself into thinking it was a well funded effort.  According to the comission, however, they estimate that the total R&D funding in the federal government for cybersecurity is about $300million.  Less than two-tenths of one percent of the total federal R&D.

The report has a great section on identity manangement. 

I am convinced the organizational approaches outlined in the study are the right ones as well.  There is only one place in our government where we can lead solutions to this challenge.  Where is that?  Hey read the report!

What else do I recommend CTOs do besides read the report?  I think one way we can all help the cybersecurity effort is to think through which standards bodies are the most important to engage with regarding security.   A few are here:
http://www.ctovision.com/2008/05/standards-organizations-ctos-should-track.html

A Great CTO and Pot Shots from the Peanut Gallery

My last blog post was on a guy a regard as one of the greatest CTOs: Vivek Kundra, CTO of the District of Columbia.  

Please see that post for a short summary of some of the great things he has been doing:

Vivek Kundra: Democratizing Data and Putting it in the Public Domain

There have been dozens of other reports on Vivek lately, all very much positive.  A recent one on the WTOPnews site at (District's top techie advises Obama transition) is one of many.  A comment from WTOP:

Kundra is credited with coining the phrase "The
Digital Public Square." A place he describes as, "one in which
technological advances now allow people from around the world
unfettered access to their government. Through these advances,
constituents can hold their government accountable from the privacy of
their own homes."

But the point of this follow-on post is to talk about an article that runs Vivek Kundra down.  It was in the Washington Post.  I don't know why this guy wrote the piece slamming Vivek.  It was totally undeserved, in my opinion.   Maybe the author of the piece thinks it is cool to run people down for no reason?  I just don't have a clue.   I almost hate to draw your attention to what he said.  It is so childish and so stupid.  But I guess you should take a look.  In fact, I would encourage you to read it and comment on the site and let folks know what you think.   Check it out here:

Where's Firing Fenty When You Need Him?

Can you believe Marc Fisher actually suggests that mayor Fenty should fire Vivek?  He seems to want him fired for exercising world class best management techniques in a highly efficient, cost-effective way.   I think Fisher should issue an apology.   If you think so too, please comment on Fisher's drivel.

The Technology Implications of the Obama Win

There are several megatrends sweeping the technology industry today.  Some of them are about to be accelerated.  

I like to use five key topic areas to track megatrends in IT: 

- Convergence and trend towards unified communications and user empowerment
- Globalization and increasing internationalization of IT and demographic shifts
- Increasing open development of software and hardware
- Power, Cooling and Space (PCS) impacting data centers and every place computing is done
- Increasing pace of technology development and probability of disruption

Over the past two months two major events have occurred which are impacting these trends.  

The
first was the collapse of Lehman Brothers and the resulting cascading
effects on the financial industry.  The impact on IT spending and the
movement of more enterprises to grid/cloud computing because of that
are still being assessed, but for some thoughts see: Wall Street Crisis

The second was the Presidential election of Barack Obama.   

Read the rest of this entry »