Wow, this really resonated with me (and I don’t do much work with public sector organisations - most of my time is spent with large private sector organisations). In some places the author does go a bit clickbaity and bend the truth, but for the most part it’s pretty much on the mark. From “agile” to “COTS” to “enterprise architecture” to “Portals” to “the DevOps team” - I’ve seen it all. shudder
I despair at the state of so much of enterprise IT. How in this day and age are products like Sharepoint still being implemented and large, overpriced outsourcing contracts being signed, ones that are costlier than using in-house personnel!
In some places the author does go a bit clickbaity and bend the truth
Not really. From my point of view it’s all — sadly — spot on.
Also, now that the topic has been so nicely opened by the OP, I highly recommend getting into public sector IT, my dear Crustaceans. It’s so much fun! You cannot imagine the look on people’s faces when you make something accidentally 10x cheaper. Everyone is so hopelessly behind it feels like 90s again!
I didn’t express my self too clearly there - the clickbaity bit I was thinking of when I wrote that was this (there are a few others):
Lots of problems in software engineering have already been solved, packaged up and put on Github for everyone to steal.
But yes, I agree that it’s pretty much all spot on, and not just in the public sector. And I’ve even seen things like “DevOps Team” in global media organisations that are supposedly cutting edge (admittedly, they’ve also agiled themselves into being perennially standing up and having more Scrum Masters than the All Black front row, but that’s another story…).
“You don’t need your own private cloud”
Like outsourcing, that is highly dependent on the department/business line. Medical records, taxation, voting and defence related data and systems should not be sent off shore, ideally outsourcing within the same country is also kept to a minimum. Even reputable companies like IBM say (?) should not be trusted storing sensitive data. “But it will be secure, it’s in the contract!”. Negligent employees, blackmailed employees, hackers do not care what the contract says.
Sorry, pet peeve of mine.
It’s all a question of what’s likely, isn’t it? Do I trust IBM absolutely? Of course not. Do I think my medical records are more or less likely to end up in the hands of criminals in a system outsourced to IBM vs one built by my local government? That’s a much tougher question, and I tend towards IBM or Amazon being the safer option.
Indeed. Data localization and control matter, insider threats are real, and mistakes will always happen. Security-conscious defense-in-depth design is a must for a number of contexts.
This is scarily on point with what happened at my last job when new IT management rolled in.