highlights
Pioneering IT Asset Management and GDPR Compliance at P&G
As the leader of the Change Management stream for P&G's global BYOD program, I spearheaded the establishment of a Global IT Asset Management capability to address critical barriers to adoption and ensure GDPR compliance.
Identifying Barriers
While leading Change Management for our global BYOD program, I encountered three significant barriers to adoption:
High Incentive Costs
Inadequate Network Infrastructure
Outdated Application Landscape
Uncovering Deeper Issues
As I delved deeper into addressing the outdated application landscape, I discovered a more critical challenge:
Lack of comprehensive visibility into our full application landscape and overall enterprise assets
This realization came at a pivotal moment, as the EU General Data Protection Regulation (GDPR) was nearing final ratification, posing substantial compliance challenges and potential financial penalties.
Strategic Response
Understanding the urgent need to address these challenges and recognizing the broader business implications, I strategically proposed establishing a Global IT Asset Management capability. This initiative aimed to:
Provide Necessary Transparency
Enhance Security
Ensure Compliance
Collaborating with the Chief Privacy Officer, we developed a comprehensive strategy focusing on data protection, privacy, and systemic capabilities. My key contributions included
Inventorying 2,500 applications for GDPR relevance.
Implementing Network Access Control and master data management policies.
Centralizing data management in a CMDB and Enterprise Architecture tool.
Automating data governance and reporting.
Enhancing network security through discovery tools and segmentation.
Establishing a software asset management capability.
900,000
Devices identified and moved under control across the global network.
2,000
+
Suspicious devices removed and/or segmented off
corporate network
%
99
Reduced software publisher audit failures and identification of non-compliance license utilization
$
5M
Eliminated annual spending on non-compliance penalties via software asset management
1.5
B
By establishing a robust, holistic IT Asset Management capability, P&G was able to confidently know, track, and manage all of their assets and avoid the potential fine for lack of visibility to the consumer and employee data as it relates to GDPR.