Blog Demystifying IBM’s IASP Programme
Demystifying IBM’s IASP Programme
By Insight UK / 18 Jun 2024 / Topics: Cloud
By Insight UK / 18 Jun 2024 / Topics: Cloud
IBM Authorised SAM Provider (IASP) Program:
The IASP programme as defined by IBM is an alternative to traditional software license verification audits. It allows 4 accredited providers; KPMG, Deloitte, AnglePoint and EY to deliver a Software Asset Management service and report to IBM software consumption. It exempts customers from an IBM software audit if they are part of the programme.
The IASP programme, according to IBM, has been designed to help organisations achieve their SAM goals, whilst maintaining compliance with their terms and conditions. Although the service aims to ensure compliance, reduce costs, and optimise software usage, it can have adverse effects. This article explores both the advantages and disadvantages of enrolling into IBM's IASP programme.
The IASP programme launched in 2019 and is only available to invited customers only, it is not an available option for all customers. The programme is primarily aimed at large enterprise-level customers, leaving out small-medium-size businesses. The programme offers a range of SAM services, including SAM assessments, software license optimisation, and SAM tool implementation, with access to expert SAM services delivered only by IBM's partners.
IASP partners are authorised by IBM to deliver SAM services using IBM's proprietary tools and methodologies. This ensures that organisations receive SAM services that are aligned with IBM's best practices and policies.
The authorised partner bids to IBM’s end users (customers) on who they wish to appoint to support them, by completing the baseline and preparing a report for the client to send to IBM. Reporting to IBM is done periodically and prepared by an authorised SAM Provider, IBM has also standardised the reporting template to be submitted in accordance with their outlined requirements.
The IASP programme offers a range of benefits to organizations, including:
Expert SAM services: IASP partners are experts in SAM and have access to IBM's proprietary tools and methodologies. IASP partners can perform SAM assessments to help organisations identify areas where they may be over- or under-licensed, allowing them to optimise their license usage and reduce costs.
Audit Exemption: IBM will exempt audits for the client for the duration of the IASP programme.
SAM tool implementation: IASP partners can help organisations implement SAM tools to automate SAM processes and improve SAM effectiveness.
Optimisation: Effective SAM can help organisations optimise their software usage, ensuring they are using their software in the most effective and efficient way possible.
However, there are some misconceptions which many businesses are not aware of:
Lack of independence: IBM has full access to your IBM software estate, which could potentially mean greater financial risk imposed whilst you remain an active participant of the programme.
Not everyone is invited: Your organisation is only likely to be invited to participate in the IASP programme if they are Enterprise level client or with significant IBM investment. Leaving Small-medium organisations excluded meaning, for the majority of IBM customers this will not be an option.
Increased costs: Although the client may see savings and reduced compliance risk, there are additional costs associated with the programme. With IBM increasing its prices globally for software licenses, does it really result in cost savings? The client will need to pay both the authorised partner and IBM for any shortfalls that occur. As opposed to IBM just paying the auditor and the customer paying for the non-compliance.
Risk and exposure: This risk is not always mitigated, but merely identified and IBM has an open door into your organisation's infrastructure. With constant monitoring of your IBM footprint, it is like being a prisoner in your own home.
Auditors disguised as SAM providers: Two of the authorised partners are also IBM’s global licence compliance audit partners when running a traditional audit. This can be seen to be a potential conflict of interest, restricting your options for an IASP. The partners would essentially be helping to facilitate any non-compliance by reporting it back to IBM, as opposed to independent SAM providers supporting your organisation to remediate it.
Audit exemptions misconceptions: IBM states the client will not be subject to a software audit if they are an active participant, however following a traditional IBM software audit the client becomes exempt for 3 years anyway. Would you rather have IBM auditing you for 3-6 months or indirectly for 3 years as part of the IASP programme?
Contradiction – The IASP programme helps organisations achieve compliance and avoid costly penalties for non-compliance, but if the reports show a shortfall, the client will need to pay for the shortfall. IBM has confirmed audit settlements can be negotiated in your normal discounted price band, however, there are no discounts if you are part of the IASP prgramme.
At first glance, the IASP programme would seem like a good option, but it comes with strings attached having to constantly report to IBM and the IASP could identify more exposures in your existing environment. IBM’s architect behind IASP, states that the IASP programme is not revenue-motivated (for IBM) and the hope was to build and retain long- term client relationships. However, it can be quite the contrary as IBM takes a different and slightly more friendly approach to how they currently audit their customers.
It is a cost-saving exercise, but at the expense of having a SAM provider. If you already have an existing SAM service with one of the four accredited partners then you could be doubling up on your investment. Having a completely independent SAM provider can be more cost- effective, with less exposure and a non-biased approach to protecting your organisation from non-compliance risk as they have your best interests at heart.
Furthermore, the IASP program does not make sub-capacity problems go away, instead, you are obligated to share every single sub-capacity violation you have with IBM every quarter.
The IBM Authorised SAM Provider (IASP) programme may seem to be a good option for enterprise-level clients who are at risk of major non-compliance, but it comes at the cost of losing your independence and gives all the power to the vendor. Although it does offer SAM expertise to achieve effective software asset management, the same outcome could be achieved by having an independent SAM provider, and they would cover more than just IBM.
Enrolling in the IASP programme will be inviting IBM to indirectly audit your organisation frequently, as it is an audit disguised as a SAM service. The waiver for accidental deployments is at the discretion of IBM, making it more difficult to negotiate as IBM will have more visibility than they would in a traditional audit.
By partnering with Insight, you can access a range of expert SAM services delivered across a broader range of software vendors; ensuring compliance, reducing costs, and optimising software usage. We help businesses achieve their SAM goals in a way that works best for them, whilst protecting their independence.