Category: Uncategorized Page 1 of 2

Identity Access Governance Benefits Your Business in 4 Ways

Identity Access Governance

Identity and Access Management, or IAM, is a framework of policies and technologies within an organization that ensures the right people have access the right resources at the right time for the right reasons. IAM plays an important role in any organization’s security program. Today more than ever, organizations need to protect who has access to their applications and data. This can be achieved through identity access governance.

When we refer to identities, we are referring to digital identities. These include employees, contractors, partners, and customers. They could also include applications, devices, software bots and temporary identities that perform work in the cloud.

Without proper identity access governance, it is challenging for organizations to assign and keep track of the applications and resources that identities have access to. Some organizations have hundreds, even thousands of applications.

Here are four important ways that identity access governance benefits your business:

1 – Strengthen security and lower risk – Compromised identities caused by weak, stollen or default user credentials are a threat to organizations. With centralized visibility into access data, you can detect and address inappropriate access, policy violations or weak controls that put your organization at risk.

2 – Improve compliance and audit performance – Identity access governance allows organizations to verify that the right controls are in place to meet the security and privacy requirements of regulations like SOX, HIPPA and GDPR. You can establish more repeatable practices for a more consistent, auditable, reliable, and easier to manage access certification effort.

3 – Deliver fast efficient access to the business – By giving your users timely access to the resources they need to do their job, identity governance enables them to become more productive. It also empowers business users to request access and manage passwords, which reduces the workload on Helpdesk and IT operations teams. With automated policy enforcement, identity access governance allows you to meet service level requirements without compromising security or compliance.

4 – Reduce operational cost – Identity access governance automates labor intensive processes such as certifications and password resets. This can reduce the time IT staff spends on administrative tasks.

There are many identity access governance administration systems on the market to choose from. Gartner recently provided a list of top IAM systems for 2021.

If your organization needs help to select and put in place an identity governance system, MacIsaac Consulting can help. We have helped both large and small organizations succesfully deliver IAM programs. We help companies stay compliant and avoid access deficiencies related to risk and compliance audits.

Reach out to us today for our free consultation and assessment.

About the Author: Mike MacIsaac is a principal IAM consultant for MacIsaac Consulting.

Happy Holidays from MacIsaac Consulting!

Our purpose at MacIsaac Consulting is to create long term relationships built on trust. Although 2020 has been a challenging year, we are grateful for our clients, friends and family.

Looking ahead to 2021 we are optimistic! The right set of circumstances are in place for companies to gain tremendous value through digital projects. Optimizing and securing data should be top priority across industries.

We are ready to help companies along their digital journey and we also hope to provide consulting opportunities for those who were out of work due to the pandemic.

We wish you and your family a safe and healthy holiday season!

Kind regards,

Mike & Tere MacIsaac

MacIsaac Consulting provides IT delivery, cyber security and agile transformation consulting. Connect with us or subscribe to the MacIsaac Consulting blog.

MacIsaac Consulting Is Proud To Be a Women’s Certified Business!

Tere MacIsaac – CEO & President of MacIsaac Consulting

MacIsaac Consulting is now proud to be certified as a Women’s Business Enterprise by the Women’s Business Enterprise National Council (WBENC).

Our consultants show companies how to break down barriers that impede agility. We teach our clients how to deliver value early and often through small cross-functional teams.  We also staff the very best IT talent including Scrum Masters/PMs, BAs, Developers, QA and more.

For more about MacIsaac Consulting and our services, click here.

Now Is The Time To Lead With Empathy and Compassion

We are living through unprecedented times. The Coronavirus pandemic is something we thought we would witness only in movies. Surreal doesn’t even begin to describe how it feels. Markets are crashing, businesses are closing, and supermarket shelves are emptying. The term social distancing is now a regular part of our vocabulary.

In the blink of an eye, corporations have been forced to manage entire workforce’s remotely. This presents management with a tidal wave of new issues to deal with. Networks can’t handle traffic; work prioritization is chaotic, and communications are disrupted.

While we deal with this crisis, here is a message for managers (particularly of large corporations):

Now is the time to lead with empathy and compassion.

The number one priority for people is to take care of themselves and their families, period. Yes, businesses need to continue to operate, but if we don’t take care of our employees, companies will pay the price. This is not the time to grip down and pressure employees. Many people are dealing with the added burden of childcare.

Corporate contingency plans should focus on continuing mission critical operations, while considering what employees are dealing with at home.

Treating the health and safety of employees as the number one priority will benefit businesses the most.

About the Author:Mike MacIsaac is a principal consultant for MacIsaac Consulting. MacIsaac Consulting, based out of Minneapolis MN, provides IT Agile delivery consulting and staffing.

No alt text provided for this image

Follow Mike on Twitter@MikeMacIsaac or subscribe to the MacIsaac Consulting blog.

Agile Mindset – Why ‘Product’ Focus is so important

One of the most challenging aspects of Agile adoption is changing from a project mindset to a ‘product’ mindset. What’s the difference between the two? The below pictures outline the contrast between a project and product focus.

A product focus is about stable cross-functional agile teams. Project work can flow through the teams, but the teams stay intact. These teams deliver value early and often through short iterations. There are great benefits in the product focus model. “Organizations can focus on building IT products that delight and engage users and deliver desired business outcomes rather than bog themselves down in traditional project-oriented success metrics.” (Lebeaux, 2019, WSJ)

For more on the product model, check out Martin Fowler’s article Products over Projects.

Companies with large PMOs struggle to adopt the product model the most. They want to be Agile but won’t let go of Waterfall. They are riddled with layers of bureaucracy, hierarchy, reporting and management. This combined with divided functional areas prevent them from changing.

For these organizations, we advise their leadership to take three basic steps. First, they need to take Agile training. Leadership must understand the difference between a project and a product focus. Many companies make the mistake of sending only team members to Agile training. Leaders need to learn that they can measure success based on the value their products deliver to customers, rather than on project milestones.

Second, leaders needs to decide on whether their organization is ready to move away from a project focus. If the organization is not ready, that’s okay. The problem is when companies try adopting Agile while still using a PMO/project model. Remember, the key to agility is changing the mindset and embracing an adaptive approach. Don’t mistake using tools like VersionOne or putting stickies on a board (although those things are fine) as becoming agile. The real change happens at a mindset and culture level.

If the decision is to move to a product focus, the third step is to take action. This is when it’s time to make organization structure changes. Leadership, along with outside guidance, must decide on what changes to make. It’s also their responsibility to put the right people in the right seats.


If your leadership needs education or guidance, contact us because we can help. It won’t be easy, but many companies are finding that it’s worth it to make the change. By changing from a project management mindset to a product-oriented approach, companies can define success according to the areas that matter to users and design software that delights their customers.

About the Author: Mike MacIsaac is a c0-founder and principal consultant for MacIsaac Consulting. MacIsaac Consulting, based out of Minneapolis MN, provides IT Agile delivery consulting and staffing.

Follow Mike on Twitter@MikeMacIsaac or subscribe to Mike’s blog.


Thanksgiving is here. It is time for gratitude and reflection. A time to take a step back from work and focus on what is important.

Today I am grateful for my family, having food on the table and a roof over our head. I’m also grateful for turkey and football!

Wishing you and your family a Happy Thanksgiving filled with gratitude!

About the Author: Mike MacIsaac is the founder and principal consultant for MacIsaac Consulting. Mike provides leadership as an IT Project and Program Manager as well as an Agile Scrum Master/Coach. Follow Mike on Twitter@MikeMacIsaac or subscribe to Mike’s blog.

Identity and Access Management (IAM) Is More Important Than Ever

It’s a company’s worst nightmare. A data breach or cyber-attack. Cyber-attacks continue to be a growing threat, but not all data breaches are caused by outside hackers. Ask Morgan Stanley. In 2015, the financial services firm revealed that an employee had stolen data from more than 350,000 accounts. Forrester estimates that 80% of data breaches have a connection to compromised privileged credentials, such as passwords, tokens, keys, and certificates.

To avoid a data breach nightmare, company’s must ensure only the right people can access appropriate systems, data, and resources, for the right reasons. This is accomplished through Identity and access management (IAM). IAM is a specialty discipline within cyber-security. It helps companies increase productivity while securely enabling access to applications and systems.

IAM has to be an essential part of your IT toolkit. The typical business user has dozens (even hundreds) of applications they must access to do their jobs. These applications span cloud, mobile and on-premise solutions, and all can hold confidential, sensitive and regulated information.

To address the access management problem, there are many different IAM products on the market. I’m currently finishing a project to put SailPoint IIQ in place for a large financial institution. SailPoint is a Java based web application that integrates with legacy systems and Active Directory (AD) enabled applications. Auto-provisioning, native change detection, reporting and access certifications are some of the features SailPoint IIQ offers. Some of the other popular IAM products include Oracle Identity Management (OIM), Microsoft Identity Manager and Microsoft Azure Active Directory.

Regardless of the product you choose, having the right IAM strategy in place is key. The implementation of IAM can be very challenging. It takes strong collaboration between business, IT and operational teams. It also takes prioritization from leadership. Without executive sponsorship, business system owners and stakeholders may be reluctant to assist.

If you are in early stages of IAM or if you are already into delivery, MacIsaac Consulting can help. We provide services to help you put the right IAM strategy in place and we provide delivery resources.

About the Author: Mike MacIsaac is the founder and principal consultant for MacIsaac Consulting. Mike provides leadership as an IT Project and Program Manager as well as an Agile Scrum Master/Coach. Follow Mike on Twitter@MikeMacIsaac or subscribe to Mike’s blog.

A look into financial ratios

financial ratios

Reviewing and understanding financial statements can be difficult, even for trained financial analysts. Financial documents can be long and confusing. Sometimes they are confusing on purpose because the analysts who created them may want to hide information.

That’s where the power of ratios comes into play. Ratios show the relationship of one number to another. Financial ratios measure a company’s financials to provide clear insight of performance.

I like to relate ratios to pivot tables or graphs used to display clarity for data. If you have a spreadsheet filled with data, it would be difficult to see a clear picture of what the numbers mean. If that same data goes into a pivot table or graph, you will have a much better understanding of what the data is telling you.

Below is some insight into commonly used financial ratios:

Profitability Ratios

Profitability ratios are the most commonly used ratios and they display whether a company can generate profits. This is, how well a company is able to take in more money than it spends. There are a lot of different profitably ratios, below are just a couple:

Gross Profit Margin Percentage – The gross profit margin percentage is the gross profit divided by revenue. The result is then shown as a percentage like below”

Gross Margin = gross profit/Revenue

Return on Assets – ROA will show what was returned to the business as a profit from every dollar invested. The formula is net profit divided by total assets.

ROA = Net Profit/Total Assets

Leverage Ratios

Leverage refers to debt and leverage ratios are used to show if the company is making or losing money used by its debt. Below are two commonly used financial leverage ratios:

Debt-to-Equity – The debt to equity ratio shows how much debt the company has for each dollar of shareholder equity. The formula is total liabilities divided by share holder equity.

Debt to Equity =     Total Liabilities/Share Holder Equity

Interest Covered – This ratio shows how much interest a company has to pay related to how much the company is making. The formula is operating profit divided by annual interest charges.

Interest Covered =   Operating Profit/Annual interest charges

Liquidity Ratios

Liquidity ratios are important, particularly to small businesses. They show whether a company has enough money available to pay for its bills and “keep the lights on”. Below are two commonly used liquidity ratios

Current Ratio – This ratio measures the current assets against the current liabilities. The formula is current assets divided by current liabilities:

Current Ratio =     Current Assets/Current Liabilities

Quick Ratio – The quick ratio shows how fast a company would be able to pay off its short term debt by measuring its current assets, minus inventory, against its current liabilities. The formula is current assets minus current inventory divided by current liabilities.

Quick Ratio =     Current Assets – Current Inventory/Current Liabilities

Efficiency Ratios

Efficiency ratios can show how well a company manages its balance sheet assets and liabilities. The bottom line of these ratios is how long it takes to turn expenses into cash. Below is a couple of the key efficiency ratios used:

Days in inventory (DII) – This ratio measures how many days inventory will stay in a company’s system. The formula is average inventory divided by Cost of goods sold divided by day, see below:

DII =    Average Inventory divided by (COGS/day)

Days Sales Outstanding (DSO) – this ratio shows how fast customers pay their bills or how fast it takes to collect cash for the sales. The formula is accounts receivable (from the end of the pay period) divided by revenue per day:

DSO  =     ending A/R  / (Revenue/day)

For more content like this, subscribe to the MacIsaac Consulting Blog.

Follow Mike on Twitter @MikeMacIsaac

To contact us about our services, click here.

Knowing yourself and finding your sweet spot

sweet spot

Getting to know yourself is a difficult journey. A lot of people go through life, never discovering their true talents and passion. They may experience it from time to time, but they don’t know what their sweet spot is. Living life like this feels like a constant uphill battle.

Your sweet spot is the intersection of your talent and passion. Once you’ve tapped into your sweet spot, the sky is the limit. A good way to identify people who are living in their sweet spot, is their attitude towards life. These people don’t look at their job as something they dread or just as a means for a paycheck. No, these people don’t even consider their jobs work. They love what they do. They get excited each morning to go to the office.

For those of us who feel like we are not living in our sweet spot, there is good news. Tools like StrengthFinders, CPI Assessment, and others can help.  These tools help us to understand where our natural talents lay. We also have the opportunity to continue our education at any point. Granted, we have to be willing to put in work.

Serving others will also help you get to know yourself. As leaders we need to help others develop and succeed, and by doing so, we grow. The feedback we receive from others will give us a better picture of who we are.

In my personal journey, it wasn’t until I went back to school in my 30s that I started to get in touch with my strengths. Bethel University provided me with the tools I needed to hone in on my sweet spot. My mission is to help organizations and people succeed, and provide leadership based on Christian values.

Do you know what your sweet spot is? If not, you should consider putting in the work to find it. As the saying goes, it may not be easy, but it’s worth it.

For more content like this, subscribe to the MacIsaac Consulting Blog.

To contact us about our services, click here.

Quality and the consumer – The 3 corners of quality


Defining what quality means is difficult. On this subject, the great statistician Walter Stewart stated: “The difficulty in defining quality is to translate future needs of the user into measurable characteriscts, so that a product can be designed and turned out to give satisfaction at a price that the suer will pay” (Shewhart, 1931).

In software development, we tend to focus on a series of defined tests. If all our tests pass, we have developed a quality product ready to be shipped. If the product is shipped and the result is a high volume of production defects, the product was not of good quality.

The challenge with the old way of Waterfall software delivery, and only relying on our tests,  is that the consumer of the product is involved too late in the product development process. The consumer is perhaps the most important aspect of developing quality software.

For this reason, we need to involve the consumer all throughout the development process. This way, we build quality up front.

The below figure shows the three corners of quality model put forth by Edwards Deming.


What we have learned with the application of Agile, is the importance of learning from the customer. Deming talked about this back in the 1970s, but it wasn’t until the early 1990s that it was applied for software development.

On learning from the consumer, Deming writes: “The main use of consumer research should be to feed consumer reactions back into the design of the product, so that management can anticipate changing demands and requirements and set economical production levels. Consumer research takes the pulse of the consumer’s reactions and demands, and seeks explanations for the findings” (Deming, 1982).

What Deming describes is exactly what takes place during the Scrum sprint reviews. During the sprint review, we show production ready software to the consumer. The consumer can then give immediate feedback. This allows us to make changes to the design of the product.

The old way of delivering software looked like this:


The new way of delivering software using Agile ensures we build quality into the product up front. We build production ready software in short iterations, then review it with the customer. The new way of delivering software looks like this:


For more content like this, subscribe to the MacIsaac Consulting Blog.

To contact us about our services, click here.






Page 1 of 2

Powered by WordPress & Theme by Anders Norén