Hats off to Rufus Roberts of Praesidium, for authoring a new paper that succinctly but comprehensively explains the risk dynamics of the cloud. It is beautifully and pithily written, and covers all the key points intelligently. I agree with every word too – so the benefit for me is that somebody has written what needed to be written, but more elegantly than I can ;) Rufus addressed the vital topics like: the economics that drive increased use of the cloud; the barriers to using the cloud for business assurance, revenue assurance and fraud management; and the legal and regulatory environment. The paper admits the seriousness of the problem of restricting personal data to only those who should have access to it. And, reflecting the fact that not taking a risk is often the best form of risk mitigation, they spare themselves the need to protect personal data by letting you download the paper without needing to register first. What a refreshing change! You can download the paper from here; I recommend you do.

I admit it. I let Subex down. You see, I saw the press release saying…

Analysys Mason ranks Subex Global Market Leader in Business Optimization for fourth year in a row

Belated congratulations to Subex. I saw the story, and avoided writing about it. The problem is, I have a memory. Also, I can check my memory using the internet. I procrastinated because I cannot tell how much to congratulate Subex, in comparison to the congratulations deserved by their rivals. It appears that Subex’s main rivals are also market leaders. On cVidya’s website it says a…

Leading Industry Analyst Firm Ranks cVidya as the Global Market Leader for Revenue Assurance and Fraud Management Solutions

whilst over at WeDo I read that the…

New Stratecast Report Positions WeDo Technologies as Global Market Leader in Fast Growing Telecoms Revenue Assurance Market

Now, let us not quibble about the differences between the scope of each report. “Business optimization” sounds like similar territory to “revenue assurance” which certainly has some overlap with “revenue assurance and fraud management”. We all know that Subex, WeDo and cVidya are pretty much direct competitors with each other, with a similar suite of offerings. This truth was reinforced when Subex finally gave up on its ex-Syndesis business, and refocused on its core strengths. The problem is not with the vendors, though collectively it looks a bit silly that they are all market leaders. Somebody has to be in third place, though I suppose it suits the company coming third to maximize the confusion over who is first and second. But there is no point blaming the vendors, as they are just getting the maximum leverage out of the PR opportunity. Instead, it is time to point fingers at the research firms who write these reports. Stratecast, Gartner and Analysys Mason may well have differing opinions on who is the market leader. But, for pity’s sake, they should at least try to agree what the ‘market’ is. I prefer to call it RA+. Some like to talk about business assurance. Subex prefers the name ‘business optimization’. But whatever people call it, comparing like with like is more useful than fiddling with the margins of how the market is defined.

When everybody is a market leader, the safest option is just to look at sales announcements. Vendors like to announce as many sales as they can. So rather than relying on three contrasting conclusions from three research firms, just look to which firm sold what to which telco. In a field where the goal is good data about revenues, sales announcements are the best source of data we have on which vendors are defeating their rivals when competing for business.

In a recent post at Connected Planet, Alex Leslie points out how smartphone owners are at risk from a variant of the classic PC ‘rogue dialer’ fraud; see here. Put simply, users download an app which then unexpectedly sends a lot of texts to a PRS number. Meanwhile regulators are becoming aware of the need to close the loopholes. For example, the UK PRS regulator, PhonepayPlus, has instigated a public consultation on how users should be informed about app-based mobile payments; you can find the consultation here. As Alex points out, part of the solution may depend on the users themselves, by ensuring their intelligence about new exploits is recycled into a rapid response that deals with the criminals. Crowdsourcing knowledge about mobile malware could follow a similar template to how Facebook pays bug bounties. However, in the case of mobile malware, there will also be value in operators sharing information in order to limit the damage done by the PRS crooks. It is better for the operators to attack the source of the problem – the criminals – than let customers rack up huge bills and then try to deal with their complaints.

Subex, the Indian RA giant, have announced solid results for Q2 FY2012. Now that they have sold off the failing activation wing of their business, the focus should rightly be on its continuing business lines. These looked in strong health, with both revenues and earnings up year-on-year. The figures presented by Subex for order intake and pipeline suggested that Subex’s fundamentals will keep improving in future.

The key message emphasized by Subex was how current performance supported optimism for the future, as summed up with the idea of ‘non-linearity’. Put simply, if you sell the same software to lots of different customers, then the drivers for your costs should get divorced from the drivers of your revenues. The key to success in this market has always been to accumulate a large enough share of the market that the revenues support strong recurring investment in maintaining and developing products (to keep a lead on competitors) even though costs start falling as a percentage of revenues. Subex are hinting they have reached that point. If that is true, then unless the market sees significant disruption or dramatic game-changing moves from competitors, Subex should now be looking to ride a virtuous circle to better results in future.

You can read the Q2 results press release here, the shareholder presentation here, and the numbers here.

Five years ago, I wrote a blog post about revenue assurance. It was called ‘The RA Truck Stop’ and I asked if people wanted to engage in some (virtual) conversation about revenue assurance. The idea was to help ourselves by helping each other. This is the 500th post I have written. A lot has changed in the meantime. Other things have not changed. Now seems like a good time to reflect on those last five years, and on what might lie ahead.

Reconciliation, Reconciliation, Reconciliation

In five years, I have never known a year where somebody was not hailing something new and exciting in the world of revenue assurance. But forget that nonsense. Most RA practitioners rely on a diet of the same bread and butter as they did five years ago. The meals come in slightly different flavours, like ‘switch to bill’ and ‘order to cash’, but each is essentially the same. Think of them like sandwiches. You start with bread, and you finish with bread. Take some data from here, take some data from there. The only question is what comes between. Reconciliations are the standard fare for most people who work in revenue assurance, and the reason why we have RA software is because reconciliation can be automated. Genius, inspiration, insight, imagination… these things can not be automated. But they cannot be standardized, either. Reconciliation is not sexy work, and need not be hyped. It is what it is: a powerful control if deployed correctly, and one that generates returns if there are sizable discrepancies to be found. Nobody would repeat this obvious truth every day – I would not write 500 posts on how to do reconciliations – but it deserves a mention every now and then, to remind us to stay true to ourselves.

Man and Machine

I keep my old conference handouts – great big fat folders of paper that were later replaced by CDs and websites. Scanning through them, the business names are revealing. I spied the following participants at one event: Cartesian, Azure, cVidya, ECtel, WeDo Soft, Visual Wireless, Cape and Connectiva. Some of those names remain, others disappeared as firms merged or were taken over. Revenue assurance converged in the sense of every supplier evolving towards a well-defined suite of competing offerings. It also converged with fewer firms managing their cost base and chasing larger global market share in pursuit of superior profits. In the last few years, the direction of development has re-diversified, although still mostly based on the kernel of a reconciliation engine. Whether called ‘business assurance’ or ‘business optimization’, vendors are groping for the next big thing to add to their portfolio, without undermining their core. Subex’s venture into service activation went badly. WeDo has done well at increasing revenues from outside telecoms. These vendor engines could continue to drive us forward, and point to possible futures; but not everybody can go with them. The common core of automating control and data analysis need not lead to a common job specification for the people using their tools. Perhaps this explains why ‘revenue assurance’ is a phrase that increasingly crops up in other industries, but your traditional telecoms practitioner may not find it so easy to transfer their skills and find employment outside of telecoms. Similarly, it is not easy, or inevitable, that they will make headway with gaining additional responsibilities within their own company. The job of a train driver is defined by the engine he drives. He is not a taxi driver, nor a pilot. Those working in marketing, HR or accounting may find themselves moving from industry to industry. The RA practitioner is at a junction. He can define himself like a train driver, and rely on the vendors to lay tracks that he can follow. Or he could become like the professionals in marketing, HR and accounting – people whose skills transcend the particulars of a specific business, and whose primary tool is their know-how.

Despite the hype, RA is not yet a profession, and it is not inevitable it will become one. It does not employ the kinds of numbers, and has not attained the breadth of scope, to sustain a profession. The question is whether, as people move away from the common core of RA activities, they will remain connected to the rest of the group, and hence broaden its range. They may instead splinter off, leave their past behind, and define themselves differently. I face that choice myself. RA practitioners may fancy themselves to be risk managers, but I find little affinity between the sloppy assertions of risk management that come from usual suspects (*cough* cVidya *cough*), and the comprehensive and established forms of risk management found in the energy and financial sectors. And those sectors still suffer oil rig explosions and banking meltdowns, so let us not kid ourselves that risk management is something we can perfect over the course of a single afternoon. It would be delusional to believe that telecoms RA has a destiny to conquer other fields; it will expand if its intellectual assets are superior to alternatives, and not otherwise. But the automation of data analytics and data-based controls does seem inevitable across all businesses worldwide. Perhaps some of the lessons learned in the past five years have scope to be taught more widely, and the vendors will be hoping to capitalize on that. Even so, there will be more changes of name in future.

Common Cause

Nobody writes 500 blogs, unless somebody out there is reading them. Thank you. What do we have in common? Perhaps it is a shared passion for revenue assurance, or an interest in similar news items. Or maybe we share common antipathies ;) When writing ‘The RA Truck Stop’, I was looking for something I lacked: a sense of a community with those in a similar line of work, that crossed business and geographic boundaries. A lot of you read this, so I was not entirely alone. Thanks to blogging, I have met many wonderful people, sometimes in person, sometimes over the internet. Their enthusiasm and high principles give me confidence. If they are representative, and I believe they are, there will always be a die-hard core who will insist that we keep getting better at what we do.

Then again, I wonder if we are further from achieving a genuine RA community than we ever have been. Papa Rob’s narrow and self-serving agenda makes him the ultimate troll. Pay the toll to GRAPA’s troll, and you can hang a piece of paper on your wall. But as the Grand Poobah of RA has no interest in permitting the science of RA to reach beyond his limited abilities, and is antagonistic to the interests of vendors (unless they also pay his toll), he can only inhibit the potential of RA, even though he trades on sunny promises about its prospects. Meanwhile, the TM Forum’s RA team has been a great disappointment to me. It needs new leadership – one man should not occupy a role for seven years, just because he turned up to the first meeting and nobody else asked for the job. The TMF team has become a contorted mirror that reflects GRAPA’s primary failing; there is no incentive for genuine teamwork, because all credit flows in one direction only. GRAPA draws strength by accusing the TMF of being too exclusive and of slavishly serving the interests of vendors. The criticism is grossly exaggerated, but Papa Rob is cunning enough to maximize the weight of a single grain of truth.

But, as you know, I am a contrarian. I find fault where others find favour. In the words of Mick Jagger and Keith Richards: I can’t get no satisfaction. And that, perhaps, is the greatest thing we have in common, and why I keep writing, and you keep reading. If we were the type to be easily satisfied, we would not, or should not, be doing what we do. We like to see holes where others see the fabric of life, and to translate the discovery of failure into the opportunity for improvement. That, paradoxically, is the wellspring of our community spirit.

501, and on

On June 6th, 1994, the great West Indian batsman, Brian Lara, dispatched an off-drive to the boundary of Edgbaston Cricket Ground. (If you think revenue assurance is full of jargon and data, then try cricket.) Those four runs took his total to 501 not out, the highest score in first class cricket. And then he went back to the pavilion, his job well done, with the game ending in a draw. But the ball before, he was cracked on the helmet by a bouncer. Nobody made it easy for Lara to amass his record total, and though he eventually retired undefeated, his rivals were always trying to catch him out. Nothing of value is achieved without adversity, and the best defences are only proven when tested. These could be mottoes for what we do. I will take them as reasons to keep batting for my cause; I hope you want me to play on.

It is official – scientists have found an explanation for why most people are over-optimistic. In a previous blog, I talked about the need to allow for optimism bias when conducting risk assessments. One quite natural response was to question if I was being fair, and to challenge whether people really are over-optimistic. However, a recent study published in Nature Neuroscience has located what happens in the brain when people are over-optimistic. As the scientists put it:

…highly optimistic individuals exhibited reduced tracking of estimation errors that called for negative update in right inferior prefrontal gyrus.

Put simply, optimists process good news about the future, and ignore bad news. Whilst optimism is good for a person’s health, Dr. Tali Sharot also pointed out the downside:

The negative aspect is that we underestimate risks.

You can read the BBC version of the story here, and the scientific paper here. However, I must admit I have not actually read the full paper. It costs money to buy, and being a pessimist, I assume it is not worth it ;)