Cherwell Software Software Audit Industry Report



Similar documents
TOP QUESTIONS ABOUT MICROSOFT AUDITS

Effective and Efficient SAM execution to manage software Spend and Compliance

THE PRESCRIPTION FOR A PAINLESS AUDIT

Explore the Possibilities

MEASURING SMB CUSTOMER OUTCOMES: THE DELL MANAGED SERVICES ADVANTAGE

Software License Management: 2012 Software License Management Benchmark Survey SOLUTION WHITE PAPER

Key Trends in Software Pricing & Licensing Survey Software License Audits: Costs & Risks to Enterprises

The State of Big Data Infrastructure: Benchmarking global Big Data users to drive future performance

MULTICHANNEL MARKETING

A discussion on Does cloud computing payback? Another in Inecom s series of Insight white papers to help improve your business process

Transforming Business Processes with Agile Integrated Platforms

WHITE PAPER. Moving up the Software License Optimization Maturity Curve to Drive Business Value

How To Get A License From A Business To A Computer (For A Business)

Making the Business Case for IT Asset Management

Software Audits Three Ways to Cut the Cost and Pain of a Software Audit

VMware Cloud Adoption Study

Cloud Computing. Exclusive Research from

SOFTWARE ASSET MANAGEMENT

BUSINESS INTELLIGENCE: IT'S TIME TO TAKE PRIVATE EQUITY TO THE NEXT LEVEL. by John Stiffler

GET CLOUD EMPOWERED. SEE HOW THE CLOUD CAN TRANSFORM YOUR BUSINESS.

IBM Maximo Asset Management for IT

W H I T E P A P E R C l i m a t e C h a n g e : C l o u d ' s I m p a c t o n I T O r g a n i z a t i o n s a n d S t a f f i n g

Software Asset Management on System z

Endpoint Management and Mobility Solutions from Symantec. Adapting traditional IT operations for new end-user environments

The Future of Cloud Computing:

2015 ERP REPORT. A Panorama Consulting Solutions Research Report

A Buyer s Guide to Enterprise Performance Management Suites

An in-depth look into how today s cloud solution providers create and sustain successful partnerships while empowering customers to move to the cloud.

Software asset management White paper. Improving IT service delivery through an integrated approach to software asset management.

Quantifying ROI: Building the Business Case for IT and Software Asset Management

The Power to Take Control of Software Assets

Services for the CFO Financial Management Consulting

GOVERNANCE AND MANAGEMENT OF CITY COMPUTER SOFTWARE NEEDS IMPROVEMENT. January 7, 2011

Software Asset Management Toolkit

The Business-Centric CIO

IBM Tivoli Asset Management for IT

8 Minute Overview. The Premier Agentless License Management Solution. Modern IT & The Importance of Software Asset Management

I D C A N A L Y S T C O N N E C T I O N

GET CLOUD EMPOWERED. SEE HOW THE CLOUD CAN TRANSFORM YOUR BUSINESS.

Business Analysis Capability Assessment

Accelerate server virtualization to lay the foundation for cloud

Multi-factor Authentication

The State Of Public Cloud Security Part One Of A Three-Part Series On Public Cloud Security

Mobile Device Inventory the first step in enterprise mobile management

!!!!! White Paper. Understanding The Role of Data Governance To Support A Self-Service Environment. Sponsored by

Citrix announces 50% YoY revenue growth from cloud partners, Workspace Services

SNOW SOFTWARE. Fredrik Spolén Country Manager Sales Director. Norway Denmark Finland

Trends in Enterprise Virtualization Technologies. A Research Study by F5 Networks

Mobile E-Commerce: Friend or Foe? A Cyber Security Study

The Business Value of IT Certification

A REPORT BY HARVARD BUSINESS REVIEW ANALYTIC SERVICES The Age of Modern HR. Sponsored by

Survey Findings. HR Outsourcing Trends and Insights 2009

IDC MarketScape: Worldwide Digital Enterprise Strategy Consulting Services 2015 Vendor Assessment

Maximizing enterprise resource planning ROI: A guide for midsize companies

How to Achieve a Cloud-Connected Experience Using On-Premise Applications

Why Join BSA? A Vital Resource for Software Companies. The many reasons why software companies join BSA OUR VALUE PROPOSITION

Symantec Workspace Streaming: Enabling the Dynamic Management of Software Licenses

Cloud Computing. Key Initiative Overview

Public, Private and Hybrid Clouds

Is Cloud ERP Really Cheaper?

What s new in AM 9.30 Accelerating business outcomes

Cost-Effective Alternatives to Software Asset Management. kpmg.com

Seven Steps to Getting a Handle on Software Licensing

How Executives Stay Informed

RESEARCH NOTE TECHNOLOGY VALUE MATRIX: ANALYTICS

Outsourcing Corporate Tax Services

9 Trends that will Transform Purchase-to-Pay in 2015 An IOFM White Paper

BACKUP ESSENTIALS FOR PROTECTING YOUR DATA AND YOUR BUSINESS. Disasters happen. Don t wait until it s too late.

Why Counting Software Installations is a Waste of Time

Avanade Whitepaper. Rethink application possibilities and align to desired business outcomes

Transcription:

Cherwell Software Software Audit Industry Report Cherwell Software has released the findings of its 2013 industry report that benchmarks software audit activity, trends, experiences, and perceptions among North American businesses. For the study, Cherwell Software surveyed 178 information technology (IT) professionals employed at a wide range of organizations across North America, providing insight into the occurrence and impacts of software publisher and industry trade group audits across the marketplace. The State of Existing Research In recent years, a rise in the rate of software license audits has been widely reported by the trade media, industry analysts, and software asset management (SAM) tool and service providers. Anecdotal evidence provided by enterprise software users suggests that software audits are generally very costly and disruptive to the organizations that are targeted. However, there has been a notable absence of unbiased, independent research conducted across a statistically significant cross-section of the marketplace from which truly meaningful conclusions can be drawn. Research Methodology Given this lack of unbiased research, Cherwell Software conducted a study to gauge software audit trends, impacts, and outcomes. The first of these studies was executed at the end of November 2013, and involved 178 respondents that were recruited via email invitation to a randomized list of IT/IS professionals with manager- or director-level positions. This represents a 95% confidence sample of 10,000 organizations. The criteria for participation included organizational www.cherwell.com info@cherwell.com +1 719.386.7000 (US) +44 (0) 1793 544888 (EMEA) Copyright 2015 Cherwell Software. All Rights Reserved. All other product or company names used for identification purposes only and may be trademarks of their respective owners.

size (must work at an organization of at least 500 employees), geographic location (must reside in the United States or Canada), and job function (must be responsible for managing software licenses and/or compliance, to ensure sufficient knowledge related to survey topics). The survey included respondents working at organizations of the following sizes: 500-999 employees: 12% 1,000-4,999 employees: 33% 5,000-9,999 employees: 21% 10,000-25,000 employees: 22% >25,000 employees: 16% The survey divided respondents into two primary groups depending on whether or not they had worked for an organization that had been audited in the past two years: 1. Respondents that had been audited within the past two years were asked about their audit experiences, observations, and outcomes. 2. Respondents that had not been audited within two years were asked about their perceptions relating to their own risks of being audited, as well as their license management practices. General Findings The following section provides detail on key findings of the survey that relate to audit trends over the past two years, as well as some general observations and perceptions of respondents. Figure 1: Software Audit Rates Within the past two years, has an organization you ve worked for been audited by a software vendor (such as Microsoft or Adobe) or an industry trade group (such as the BSA or the SIIA)? Yes 53% 47+53+LNo 47% When did your organization s most recent audit take place? 6-12 months 38% 28+34+38+L < 6 months 34% 1-2 years 28% 53% of respondents report that their organizations have been audited within the past two years. Of those, 72% (or 38% of overall respondents) had been audited within the last 12 months (some of whom were also likely audited in the year prior).

Figure 2: Most Actively Audting Vendors Which software vendor(s) have audited your organization within the last two years? (Pick all that apply) Symantec VMWare Attachmate McAfee IBM SAP Oracle AutoDesk Adobe Microsoft 0% 10% 20% 30% 40% 50% 60% 70% 80% 90% 100% The five independent software vendors (ISVs) most likely to have audited organizations within the last two years are: Microsoft, Adobe, Autodesk, Oracle, and SAP, respectively. (Among organizations with 10,000 or more employees, IBM shows up at position #4, bumping Oracle to #5 and SAP off the top five list.) Figure 3: Software Audit Rates by Organization Size When did your organization s most recent audit take place? 25,000+ 10,000-25,000 5000-9999 1000-4999 500-999 0% 10% 20% 30% 40% 50% 60% 70% Audited within last year Audited within last 2 years Organizations with 5,000 or more employees report being audited at a higher rate over the past two years than those with fewer than 5,000 employees; however, it appears that organizations with between 500 and 4,999 employees and more than 25,000 employees were targeted more heavily in 2013 than they were in 2012. This may suggest that ISVs are increasing their focus on organizations of these sizes.

Figure 4: Software Audit Rate Among Organizations With and Without ITAM Tools (Over Last two Years) 100% 90% 80% 70% 60% 50% 40% 30% 20% 10% 0% Has ITAM Tool Has No ITAM Tool Respondents whose organizations have implemented IT asset management (ITAM) tools report a 32% lower audit rate within the last two years than organizations with no such tools. (This is based on an audit rate of 68% reported among organizations without ITAM tools, and an audit rate of 46% reported among organizations with ITAM tools.) This correlation may exist due to information ISVs and their partners glean over time as to which customers demonstrate a solid understanding of and/or have control over their license positions (via ITAM best practices and tool deployment). If certain customers are deemed unlikely to have significant license shortfalls, and the upside in terms of revenue generation is perceived to be limited, those customers may be less likely to be targeted by their ISVs. It s also possible that in some cases customers are staving off full-blown audits by presenting compliance reports upon receipt of the initial audit request/letter. This correlation deserves a closer look and will be explored in greater depth in future iterations of this survey.

Figure 5: Organizational Challenges Related to License Compliance Which of the following are the most significant challenges for your organization from the standpoint of staying compliant? (Pick all that apply) Other Inadequate visibility into what s installed/used Managing compliance isn t big priority Users frequently install unauthorized software No good way to track/manage software purchases Can t easily reconcile what s installed with what s used Complex IT environment License agreements/entitlements difficult to understand/interpret 0% 10% 20% 30% 40% 50% 60% 70% All Participants Not Audited Participants Audited Participants The top three organizational challenges with respect to staying compliant are: 1) license agreements/entitlements are difficult to understand/interpret 2) complexity of IT environments 3) inability to easily reconcile what software is installed with what software is being used.

Figure 6: Organizational Challenges Related to License Compliance What attributes of your organization s IT environment make license compliance especially challenging? (Pick all that apply) Company-issued mobile devices Datacenter complexity Cloud-based software Employee-owned mobile devices Delivery of apps via Citrix or WTS Mixed desktop environment Desktop virtualization Server virtualization Organization size Diversity of software portfolio 0% 10% 20% 30% 40% 50% 60% 70% All Participants Not Audited Participants Audited Participants The top three attributes of respondents IT environments that make license compliance most challenging are: 1) diversity of the software portfolio 2) organization size 3) server virtualization. A higher percentage of respondents who have not undergone software audits viewed the existence of mobile devices (both employee-owned and company issued) and mixed desktop environments (PC and Mac) as major challenges with respect to license compliance than those who have undergone software audits. This may indicate that vendors conducting audits generally aren t (yet) taking these factors into account.

Figure 7: Perceptions Surrounding Licensing Expertise How wold you describe your personal understanding of what s permitted under the terms of your software license agreements? Very Poor 0% Decent 67% 29+67+4+L Poor 4% Very Strong 29% An overwhelming number of respondents rate their own understanding of their organizations license agreements as decent or very strong. Findings among Organizations Audited within the Past Two Years The following section of the study shows key findings among respondents who report having been audited within the past two years. It s important to note that Microsoft, Adobe, and Autodesk represent a disproportionate number of audits that have taken place among respondents, so the reported experiences are heavily skewed toward these vendors (particularly Microsoft). Figure 8: Software Audit Preparation Time and Duration How much time were you given by the vendor to prepare for the audit? 1-2 months 24% 31+25+24+16+4+L 1-2 weeks 16% < 1 week 4% > 3 months 25% 3-4 weeks 31% How long did the entire audit process take, from the initial audit request to final determination/ acknowledgment of compliance status? < 2 weeks 8% 6-12 months 16% 2-4 weeks 20% 29+27+20+10+8+6+L > 1 year 6% 3-5 months 29% 1-2 months 27% Nearly half of organizations were given a month or more to prepare for the audit; 45% of the audits lasted three months or longer (from initial audit request to resolution).

Figure 9: Relationship Between Auditing Vendor and End-User Organization During the audit, how would you best describe the relationship between the software vendor and your organization? Contentious 20% Decent collaborative 67% 57% 57+23+20+LConsultative/ 57% of respondents characterize their organizations relationships with the ISV during the audit process as consultative/ collaborative, while 20% describe it as contentious. Among organizations with 10,000 employees or more, however, the percentage of those who describe the relationship as contentious doubles to 40%. This may be because so much more money is on the line with larger organizations, increasing the anxiety and stress levels of those involved. Figure 10: Most Challenging Aspects of Software Audits What did you find to be the most challenging aspects of the audit? (Pick all that apply) The amount of time consumed Dealing with anxiety of others Damage to my (or my team s credibility) Locating licensing information Understanding licensing requirements Worrying about losing my job Educating vendors 0% 10% 20% 30% 40% 50% 60% 70% 80% Respondents overwhelmingly report the greatest challenge related to audits is the sheer amount of time consumed by the audits.

Figure 11: Prevalence and Effectiveness of ITAM Tools Prior to the audit, did your organization have an IT asset management tool to help monitor your license compliance status? Yes How effective was your IT asset management tool in producing the information needed for the audit? 50+46+4+L 47% 53+47+LNo 53% Very effective 46% Completely ineffective 4% Somewhat effective 50% Just over half of organizations had a software asset management tool in place prior to their audits. Of those with tools, a vast majority of respondents were more pleased than not with their tools effectiveness in providing the information needed for the audit. Figure 12: Financial Outcomes of Software Audits After the audit was complete, approximately how much money (in total) was your organization required to pay? (In true-up costs, settlements, and/or other penalties) $250-$499K 9% $1-$49K 15% 43+24+15+9+7+2+L $1-5million 7% $500-$999K 2% $50-$249K 24% None 43% 43% of participants report owing no money to their software vendor at the conclusion of the audit. Of those organizations that did owe money, the largest subset owed between $50,000 and $250,000. (Among organizations with 10,000 or more employees, the percentage of those who owed no money drops to 31%.)

Figure 13: Changes Brought About by Software Audits How has your organization s approach to software asset management changed since the audit took place? (Pick all that apply) No changes Conduct internal software audits more frequently Created additional headcount / hired consultants for license management Implemented new license management technology Changed licensing/purchasing practices 0% 10% 20% 30% 40% 50% Around two-thirds of respondents say their organizations have modified their approaches to IT asset management since being audited. Respondents cite changes to licensing/purchasing practices, more frequent internal software audits, and implementation of new technology to assist with license management. Detailed Findings: Trends among Organizations NOT Audited within the Past Two Years The second half of this study gauges the perception of organizations that have NOT undergone software audits within the past two years, and, where possible, compares them to the actual experiences of those organizations that have been audited. In most cases, with just a few notable exceptions, the perceptions of those responsible for license compliance very closely mirrored reality, suggesting that most organizations have a fairly well-developed understanding of license compliance risk and best practices for maintaining favorable license positions. Figure 14: Estimated Probability of Being Audited 100% What do you estimate is the likelihood that your organization will be audited in the next 12 months? 80% 60% 40% 20% 0% Perceived Risk Actual Risk The perceived risk of being audited in the next 12 months (42%) is slightly higher than the actual frequency of audits ( actual risk ) that took place over the last 12 months (38%).

Figure 15: Reasons Respondents Believe Their Organizations Won t Be Audited Why do you believe your organization is NOT likely to get audited? (Pick all that apply) We recently renewed our contracts Audit risk is overblown Many/most of our apps are delivered via the cloud We are a non/profit or educational institution Organization is not big enough Vendors know we make a good-faith effort to be compliant 0% 20% 40% 60% 80% 100% Among respondents who feel they have a 20% or less probability of being audited, most believe they will not be targeted because their vendors know they make a good-faith effort to be compliant. Figure 16: Reasons Participants Believe Their Organizations Will Be Audited * If your organization were to be audited, for what reasons do you believe you would be targeted? (Pick all you believe may apply) Employee filed piracy report Previously audited, found non-compliant License contracts are outdated Organization has grown without corresponding growth in licensing Organizational changes, such as merger or acquisition Technology platforms have evolved It is just a matter of time 0% 20% 40% 60% 80% 100% Not Audited Participants Audited Participants * Among organizations that have undergone audits, the question was phrased as follows: Why do you believe your organization was targeted for an audit? Of those who estimate the likelihood of being audited is 30% or higher, most believe it is just a matter of time before they get audited (versus any identifiable reason for being targeted).

Figure 17: Vendors Believed to be Most Likely to Audit * Which vendor(s) do you believe would be most likely to audit your organization? (Pick all that apply) Symantec VMWare Attachmate McAfee IBM SAP Oracle AutoDesk Adobe Microsoft 0% 10% 20% 30% 40% 50% 60% 70% Not Audited Participants Audited Participants * Among organizations that have undergone audits, the question was phrased as follows to gauge actual experince: Which software vendor(s) have audited your organization within the last two years? (Pick all that apply) Generally speaking, respondents have a fairly accurate assessment of which vendors are auditing most frequently. However, participants significantly underestimate the probability of being audited by Autodesk and Attachmate, and overestimate the likelihood of a VMware audit.

Figure 18: Perceived Outcome in the Event of an Audit If your organization were to be audited, how favorable / unfavorable do you believe the outcome would be in terms of your organization s compliance status? Strongly favorable Generally favorable Generally unfavorable Highly unfavorable 0% 10% 20% 30% 40% 50% 60% Most respondents believe they would fare well or reasonably well in the event of an audit. While it s difficult to compare how respondents characterize their likely outcomes with actual financial outcomes, this belief seems well aligned with results regarding the actual financial outcomes of audits, as shown in Figure 13. Figure 19: Perceptions of ITAM Tool Effectiveness * How effective do you believe your IT asset management tool would be in providing the information needed if a vendor were to audit your organization? Very effective Somewhat effective Not very effective Completely ineffective 0% 10% 20% 30% 40% 50% 60% Not Audited Participants Audited Participants * Among organizations that have undergone audits, the question was phrased as follows to gauge actual experience: How effective was your IT asset management tool in producing the information needed for the audit? Almost three-quarters of respondents whose organizations haven t been audited within the past two years have a software asset management tool in place (compared to just under half of organizations that have been audited with such a tool). Of these, an overwhelming percentage believe their tools would be more effective than not at providing the information needed in the event of an audit. When compared to the perceptions of tool effectiveness among organizations that have undergone an audit within the last two years, it appears respondents assessments of their tools abilities are well-aligned with reality.

Conclusion Cherwell s Software Audit Industry Report for 2013 substantiates a broadly held perception among IT professionals, namely that complexity remains a major barrier to licensing compliance. Complex license agreements, complex IT environments and difficulties in differentiating between what s installed and what s actually being used make identifying and monitoring IT assets a significant, ongoing challenge for organizations, regardless of size. While the outcome of audits generally appear to be in line with respondent expectations, many organizations endure long, time-consuming audits that can drag on for several months or more. The survey indicates these asset management challenges are especially acute for very large organizations, but small companies face similar challenges and appear to be under increasing scrutiny by ISVs. The good news is that organizations are learning from their own experiences and the experiences of others. For one thing, the findings suggests that perceptions about license compliance risk and effective strategies for dealing with them are largely aligned with reality. It s also clear from the data that IT asset management tools are very helpful to organizations of all sizes, both in mitigating the risk of audits and, overwhelmingly, in dealing with the audit process itself. Finally, while just over a third of respondents report having being audited in the last year, the software audit risk touted by analysts such as Gartner and widely publicized in the media appears to be overstated. Organizations that have undergone audits appear to have leveraged their experience to further refine their approach to compliance, including changing internal practices, investing in licensing expertise, and increasing the frequency of internal audits. In the complex world of software licensing, momentum appears to be building in IT departments toward higher levels of understanding, more systematic best practices approaches to achieving compliance, and the use of technology to streamline the process and mitigate risk. www.cherwell.com info@cherwell.com +1 719.386.7000 (US) +44 (0) 1793 544888 (EMEA) Copyright 2015 Cherwell Software. All Rights Reserved. All other product or company names used for identification purposes only and may be trademarks of their respective owners.

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information