Enterprise IT Roles

Understanding what drives those we sell to

Enterprise IT & their challenges

Related Reading:

Who cares about what? What pains do they have?

  1. CxO

    Key initiatives focused on (1) Digital Transformation (2) Moving to the cloud (cloud native) (3) Speed time to market without impacting risk

    Defining key trends and terms:

  2. VP Level

    VP Apps/Development/Engineering - Helping to meet business demand for innovation, updates, and capability. This role is typically bonused/compensated on velocity, time to market and alignment with the business.

    1. Value Prop
      • GitLab’s single application that supports the entire DevOps lifecycle is of significant importance. The DevOps tool chain crisis is real and there is a lot of ‘bubble gum and duct tape’ going on in and around integrating all these point DevOps tools in order to convey the full story of what’s really happening.
      • Finding new areas across the SDLC to automate is top of mind to this role. GitLab’s Auto DevOps will be a competitive differentiator
    2. Resources:

    VP Ops - Keeping the business running efficiently. Uptime, recovery are important. The role is typically bonused/compensated on uptime and SLAs back to the business.

    1. Value Prop:
      • GitLab’s single application that supports the entire DevOps lifecycle is going to be important for this role. Shifting left monitoring, testing and security earlier in the SDLC is valuable to the VP Ops to reduce the risk of downtime in production. Auto Devops will be of interest here as well.
    2. Resources:

    VP/Dir DevOps or Enterprise Architect - VP/Director of DevOps is a fairly new role. Enterprise Architect role is expanding with more and more control. Leading the execution of the transformation. Ensures the business and technology are in alignment. Focuses on best practices and processes as well as assists with documentation. Evangelist of DevOps best practices.

    1. GitLab persona reference: Director DevOps video, Director DevOps slide deck
    2. Value Prop:
      • GitLab’s single application enables more rapid development (see GitLab stats as an example) to meet time-to-market business challenges.
      • Unite workflows around a common tool to reduce friction and cost of IT.
      • Reduce or eliminate your costly DevOps tool chain (or avoid this investment in one).
    3. Resources:

    VP Security - Large enterprises will have this but others go straight to Manager of Security.

    1. Value Prop and Resources = see CISO

    VP Shared Svcs - Common services for IT (Project Mgt, Portfolio Mgt, Resource Mgt, perhaps QA, etc) - for enterprises with microservices model

    1. Value Prop - Project & Portfolio Mgmt, Testing (QA)
    2. Resources - future vision

    VP PMO / EPMO - Gathering and managing business projects/demand, execution, on-time, on budget

    1. Value Prop - Issues, issue boards, etc but of interest to his/her Directors
    2. Resources - future vision
  3. Directors
    1. Service Mgt - Service Desk, Incident mgt, responding to outages, recovery
    2. Release Mgt - managing change and configuration of the IT systems
    3. DevOps? - transformational role or maybe re-branded from 'release mgt'
    4. "Business XYZ" - they own the applications for a specific business unit. Typically they own the outcome / business results of the investment. Manage demand, dev, delivery
    5. Portfolio Mgr/Director - manages a business unit's portfolio of projects/initiatives. On-time, on budget
    6. Testing / QA - Quality and Testing - plan testing, provide resources, execute tests, track quality
    7. Security - establish policies, procedures, and processes to secure IT.
      • Application Security - a specialty within Security that focuses on finding and removing vulnerabilities in software.
      • Security Operations - may manage a Security Operations Center (SOC) or Security Information and Event Management (SIEM) system or service to identify and correlate security events in order to prioritize threat risk. Seldom do they focus on application security.
    8. Risk and Compliance - usually reports separately from the IT org that may be creating the risks. May even report to CEO.
  4. Managers
    1. Dev Team Manager - leads development team for a specific business function/system
    2. QA Manager - Test Leads, Automated Testing, Performance Testing, Test Environments, Test Data. Traditionally the QA manager does not engage in application security testing.
    3. Project Manager - plan, organize, and execute projects so they deliver on time, on budget
    4. DevOps - Probably 'release manager'
    5. Release - Running day to day release management, documenting changes, ensuring approvals, etc
    6. Incident / Service Desk - Responding to problems/incidents from end users, restoring service
    7. Configuration - ensuring the configuration of environments is documented, controlled and managed
    8. Application Security - a specialty within Security that focuses on finding and removing vulnerabilities in software. They establish policies, procedures, and processes to test application software for security vulnerabilities.
  1. For prospects not yet using GitLab, focus on:
    * CxO or VP - single app story. efficiency, time to market. Ask: Are you challenged by Digital Transformation? (e.g. moving to the cloud, DevOps, etc.)
    * Director or Manager - repository and CI/CD are best-in-class. Benefits of single application, less friction. Ask: are you trying to increase the velocity of your SDLC? Do you struggle with Security gates - balance between security and speed?

  2. For prospects using GitLab, upsell to Ultimate by focusing on: * Cxo (including CISO) or VP - test more of your apps to manage more risk without hiring additional /scarce security pros. Ask: Are you running security scans on your applications today? Do you wish you could find vulnerabilities earlier without adding security staff and costly security tools?
    * Director or Manager - test more apps without increasing cost of tools or security staff. Ask: Are you testing all of your applications today? Do you wish you could find vulnerabilities earlier without adding security staff and costly security tools?