SOA Governance: How to Manage Development and Use of Services

By Galen Gruman

Tue, August 15, 2006CIO Mike Bartell, CIO of the Federal Deposit Insurance Corp. (FDIC), knew he was facing a project that could make or break his career. It was a transformation of the way the federal government tracks cash flow among U.S. banks and monitors financial reports and compliance statistics, to ensure the U.S. monetary system remains in good health. The three agencies involved—the FDIC, Federal Reserve Board and Office of the Comptroller of the Currency—had multiple systems to handle the different processes, glued together over the years in what was an increasingly inflexible system.

The challenge: Re-architect those systems into a more flexible whole based on reusable, consistent components in a service-oriented architecture (SOA). The project, which began in 2003 and is continuing, strives for the kind of business value and technical sophistication that wins awards—like the CIO 100.

But with ambition comes risk. SOA’s aspirations of more efficient software development and more agile business execution can’t be fulfilled unless you manage the architecture, the development processes and deployment properly through IT governance practices. "Governance was seen as essential from the beginning," says Bartell. To ensure cooperation and coordination, the three agencies—which operate under a coordinating body called the Federal Financial Institutions Examination Council (FFIEC)—created a written agreement, signed by all the agency heads, which stipulated a single set of governance components. "The governance [document] served us well in helping us all reach common ground on key decisions quickly and keeping the business functions and outcome goals clearly defined throughout," adds Bartell.

The stakes for good SOA governance are much higher than in traditional software development, because SOA links development directly to business operations. Under SOA, software components represent specific business activities ("credit check," for example, or "find customer record") that can be mixed and matched into business processes and workflows. Good SOA governance means thinking through all the implications of such interactivity and creating a process for managing the components. A badly managed software architecture will ultimately translate to a badly managed business in the SOA era. "Governance in SOA is important because we’re codifying business services," notes Judith Hurwitz, president of consultancy Hurwitz & Associates. "It is both a business transformation and an IT transformation." CIOs hoping to succeed with SOA need to put together a plan for governance even before their developers release the first service to the company, because those services will play a crucial role in determining the future course of the most important business processes of the company. Not looking ahead invites a continuation of the complexity and lack of agility that plagues IT-supported business processes today.
Loading...
Applications MarketSpace
Exchange 2007 Risks and Mitigation Strategies
This whitepaper will review the strengths of Exchange 2007 and areas where CIOs should consider third party solutions. Learn more »
Solving On-premise Email Challenges
This white paper presents ten on-premise challenges and their on-demand services solutions. Learn more »
An Open Framework for Business Intelligence
Architecting Business Intelligence Applications for Change Learn more »
Adobe for Business Process Automation
Companies must be able to react to customer demands, competitive threats, and compliance requirements. Learn more »
Increase Customer Satisfaction and Lower TCO
With Adobe® LiveCycle® Enterprise Suite (ES2) software, organizations can easily deploy intuitive user experiences. Learn more »
Practical Approaches for Securing Web Applications
Enterprises understand the importance of securing web applications to protect critical corporate and customer data. What many don't understand, is how to implement a robust process for integrating security and risk management throughout the web application software development lifecycle. Learn more »
Smart techniques for application security: whitebox + blackbox security testing.
An Executive's Guide to Web Application Security
Since so many Web sites contain vulnerabilities, hackers can leverage a relatively simple exploit to gain access to a wealth of sensitive information, such as credit card data, social security numbers and health records. It's more important than ever to examine your Web application security, assess your vulnerability and take action to protect your business. Learn more »
 
SPONSORED LINKS
 

CRM Built for IT: The Executive Guide to Selecting CRM that Meets IT Needs

ROI of Application Delivery Controllers

White Paper: 4 Customer Service Myths

White Paper: Improve Agility with Operational Responsiveness

Removing the Barriers to IT Governance: How On-Demand Software Changes the Game

Cloud Computing--Latest Buzzword or a Glimpse of the Future?

A Balanced Approach to an Application Development Platform

Adobe® LiveCycle®solutions for intuitive user experience

10 Ways Excel Drives More Value from Your SAP Investment

What's New in SOA Suite 11g?

Unleash the Power of Java with Oracle JRockit Real Time

SOA Best Practices and Design Patterns

Application Grid: Ideal Platform for IT Consolidation

Ready to virtualize tier one applications? Check your virtualization maturity.

Learn how to provide complete Business Service Management.

Increase ROI of Your Application Portfolio

Return on Information: Google Enterprise Search pays you back. Get the facts.

VMware. The source for Business Infrastructure Virtualization.

ShoreTel tells businesses to untangle from competitors' complexity and turn to its brilliantly simple UC solution

See how AT&T can help protect your network.

Streamline IT Costs. Boost Performance with WAN Optimization.

Build your 1st app FREE with Force.com

TDWI checklist helps define data readiness for analytics. Download report.

eZine: A Roadmap to Reducing IT Complexity

Reduce risk, gain agility. See how Progress can help your business.

What's Next for Enterprise Resource Planning?

Gartner Magic Quadrant, Application Delivery Controllers 2009

White Paper: Managed Security for a Not-So-Secure World

SharePoint - Unchecked growth of content is unsustainable.

Focus Under Pressure: Why IT Governance Becomes Mission-Critical in a Down Economy

Should Your Email Live In The Cloud? A Comparative Cost Analysis

Adobe® LiveCycle® solutions for business process automation

Architecting Business Intelligence Applications for Change: The Open Solution

Increase UPS efficiency without sacrificing protection.

Unlocking the Mainframe: Modernizing Legacy System to SOA

State of the Data Integration Market

Enhance Customer Loyalty through Higher Responsiveness

Achieving Business Agility with Application Grid

Seven Ways ITIL Can Help You in an Economic Downturn

Four steps to populate your CMDB.

"Enterprise-Proven" is the Prerequisite for Enterprise SaaS Portal Solutions

AT&T Synaptic Storage as a Service. Expand on demand

Trend Micro ranked #1 against real-world malware. Read more.

Webinar: Jump-start your in-house e-discovery with Ringtail QuickCull from FTI Technology

Top Five CIO Challenges

Read the RSA report: Security for Business Innovation

64-page prescriptive guide to security, compliance, and IT operations.

A Clear View Toward Virtualization

Virtualization Technology as a Business Solution

The rules of infrastructure management just changed.

 
 
RESOURCE CENTER
 
buy a link »
Ads by TechWords