Governance for the retail industry
Use the Cloud Adoption Framework methodology to systematically and incrementally improve governance of your cloud portfolio across the five governance disciplines pictured below. This article refines the methodology for governance needs specific to the retail industry.
When developing your cloud governance strategy, start out by following the approach in the standard methodology.
The challenges of good data governance
Retailers are facing challenges tied to how data is stored, analyzed, managed, and governed. Unlocking the necessary business value to differentiate and grow in an increasingly competitive digital ecosystem means that retailers will face challenges. Along with generating insights at scale from disparate datasets—ensuring data storage, data sharing, and data integrity across siloed systems, maintaining a culture built upon the strategic management of business data, and a unified practice of foundational governance, compliance, and security.
To solve these issues, one view of data is necessary in order to democratize and modernize the data that you use to make important decisions regarding healthy business growth. We suggest using a master data management (MDM) approach, coupled with unified operations—consistent controls and processes for data governance, compliance, and security operations management, on an intelligent hybrid and multicloud platform.
The data governance imperative
Lack of data ownership causes data to be curated and assembled on a case-by-case basis, leading to quality issues, or data gaps, when being levered for other use cases. The common lack of governance policies and related policy enforcement leaves organizations open to compliance risk. And, compliance regulations are constantly evolving, leaving organizations to spend a lot of energy and effort to ensure compliance with laws and certification that important data is secured.
Any digitally fueled supply chain will need to rely on sound source data to be efficient and productive. This is why proper data governance across environments is one such challenge, especially with disparate datasets stored in siloed departments across your organization.
It's important to manage the availability, usability, integrity, and security of the data in your organization, based on internal data standards and policies that also control data usage. For good data governance, data must be consistent and trustworthy, without getting misused. This is important data to your company—the data that helps optimize operations and drives business decision-making in a competitive e-commerce global ecosystem, where companies are constantly confronted with new data privacy regulations, and increasingly depend on data analytics to factor changing customer behaviors and future business growth trajectories.
Unified operations and data management
Against the global supply chain disruptions caused by the COVID pandemic, the retail sector faces challenges that are deeply rooted in the traditional brick-and-mortar supply chain model, and its historic ways of operating, managing, and governing consumer data in on-premises datacenters amid a quickly evolving, omnichannel e-commerce landscape.
To address the challenges of maintaining data visibility and data integrity across disparate, siloed departments in your organization, we recommend having one view of data—necessary to democratize your data and modernize the datasets you use to make decisions with, and on which your future business growth depends. We suggest using a master data management (MDM) approach, coupled with unified operations—consistent controls and processes for data governance, compliance and operations management, with a hybrid and multicloud strategy. Cloud assets that are distributed across disparate environments can benefit from a unified operations approach—maintaining one set of tools and processes to consistently manage scattered resources across cloud providers through common governance and operations management practices.
Governance for hybrid and multicloud assets
Aside from online-only retailers, retail organizations operate from several distributed physical locations to deliver brick and mortar retail. Because of latency limitations, those locations can contain technology assets. You need to govern, operate, and secure those assets to help protect your business from risks.
Your governance strategy might require distributed governance, but that might not be a part of your cloud adoption strategy. Does your cloud adoption strategy include digital transformation for supply chain optimization, building management optimization, or in-store experience for your customers?
If you have distributed locations and need to drive a cloud adoption strategy for assets in those locations, consider a unified operations strategy. This strategy can deliver governance and operations across public cloud, private cloud, and edge locations. For more information, see Introduction to unified operations.
Intelligent retail on hybrid and multicloud
Using a unified operations approach, and hybrid and multicloud strategy can guide and unify disparate data governance and data management approaches and deliver higher maximum value for your organization using AI and ML-driven apps and services with SaaS. According to the report, sponsored by Microsoft Corporation, Cloud Drives Digital Transformation In Retail: Excerpts from the 2020 Frost & Sullivan Global Cloud User Survey, "Multicloud adoption has skyrocketed among retailers in the past year, up nearly 50%. Hybrid cloud adoption is up by 19%. An intelligent hybrid cloud platform enables retailers to maximize the value of their data."
Using a unified operations approach, and hybrid and multicloud strategy can guide and unify disparate data governance and data management approaches and deliver higher maximum value for your organization using AI and ML-driven apps and services with SaaS. According to the report, sponsored by Microsoft Corporation, Cloud Drives Digital Transformation In Retail: Excerpts from the 2020 Frost & Sullivan Global Cloud User Survey, "Multicloud adoption has skyrocketed among retailers in the past year, up nearly 50%. Hybrid cloud adoption is up by 19%. An intelligent hybrid cloud platform enables retailers to maximize the value of their data."
Read more about Microsoft's approach to industry priority scenarios, and how to unlock tailored, cross-platform customer experiences and create robust future business growth via customer insights driven by AI and machine learning, to match ephemeral expectations of the e-commerce customer now, and deliver a very personal customer experience on any platform.
To institute consistent governance, compliance, and operational management controls across hybrid and multicloud environments for the retail sector, we recommend that you first review the comprehensive guidance on hybrid and multicloud, and then review the documentation on unified operations.
Compliance with data security standards
Most retail organizations require compliance with Payment Card Industry data security standards (PCI DSS) to process credit cards. For more information, see PCI DSS.
Microsoft Azure maintains PCI DSS validation, which can make it easier to govern PCI DSS compliant deployments in the cloud. For more information, see Azure and PCI DSS. Your organization also shares in responsibilities to fully comply with PCI DSS standards.
If your cloud deployments require PCI DSS compliance, review the control mapping of PCI DSS v3.2.1. You can deploy the blueprint sample and assign it to specific Azure environments. It can automate many of the required PCI controls. For more information, see Deploy the PCI DSS v3.2.1 blueprint sample.
For compliance standards that have been automated in a similar Azure blueprint approach, see Azure blueprint samples. If you prefer to work with built-in Azure Policy initiatives, see Regulatory compliance built-ins in Azure Policy.
Next steps
The following article provides guidance to help you succeed in the cloud adoption scenario:
Feedback
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see: https://aka.ms/ContentUserFeedback.
Submit and view feedback for