Trend 7: Modernizing core technologies Considerations around cloud, cyber, and revitalizing the core
6 minute read
03 February 2020
Overthe years, most mining companies have made significant investments in a range of back-end technology systems. In embracing a digital future, however, miners will likely need to modernize many of these legacy systems and migrate to a digital core—raising a range of considerations around moving to the cloud, adopting sound cyber risk strategies, and choosing the best approach for modernizing their core systems.
Learn More
Download the full Tracking the Trends 2020 report or create a custom PDF
Join the conversation: #TTT2020
Learn about Deloitte's Energy, Resources & Industrials services
Go straight to smart. Get the Deloitte Insights app
The digital era has presented mining companies with a significant opportunity to innovate, reduce costs, enhance productivity, improve safety performance, and realize operational efficiency improvements. Unlocking these benefits, however, might be easier said than done—especially given the industry’s ongoing reliance on legacy back-end technology systems.
“Mining industry digital investments to date have demonstrated the potential, but have often been constrained by legacy system and data challenges,” says Paul Klein, Partner, Consulting, Deloitte Australia. “Businesses aren’t expected to be able to realize the full potential of the intelligent mine without modernizing their digital core.”
Core modernization: The carrot and the stick
As Deloitte noted in Tech Trends 2019, “Core modernization seeks to solve the riddle of how companies with significant investments in legacy systems can extract more value from these systems by making them a foundation for new disruptive innovations. Beyond just re-platforming legacy systems, core modernization involves creating a roadmap for building a next-generation enterprise resource planning (ERP) core that incorporates—rather than merely enabling—digital, cloud, and other macro forces.”1
If these gains represent the carrot, the danger of ongoing reliance on legacy solutions that are losing technological relevance and service support is the stick. As major ERP providers roll out next-generation platforms designed to enable real-time transactional processing and data analysis, mining companies are facing an imminent need to update their ERP systems and make choices on whether to host their data on premises or in the cloud.
Whether they are pursuing enterprisewide transformation or making incremental improvements, these are approaches2 mining companies should take into account when considering core modernization:
- Replatform: Upgrade platforms through technical upgrades, software updates, and migration to modern operating environments (such as cloud platforms, in-memory databases, and virtualized environments).
- Revitalize: Layer on new capabilities to enhance stable underlying core processes and data. This could include enhancing usability with digital solutions that improve employee engagement, adopting visualization suites to fuel data analysis, or introducing cognitive techniques to strengthen reporting and support predictive and prescriptive analytics.
- Remediate: Address internal complexities of existing core implementations. This could involve reconciling master data to simplify business processes and introduce single views of key data, integrating disparate systems to streamline data sharing with external partners, or rationalizing custom extensions and bespoke solutions to simplify system maintenance.
- Replace: Introduce new systems for parts of the core. This may mean adopting new products from existing vendors or revisiting “build” versus “buy” decisions as new entrants roll out new solutions. Ideally, organizations will use these pivots to revisit their needs and build new capabilities rather than replicating the work habits associated with their old systems.
- Retrench: Do nothing—which can be strategic as long as it’s an intentional choice. “Good enough” may be more than enough for non-differentiated parts of the business. The key here is to weigh the risks and inform stakeholders before taking this route.
Cloud first
“There’s an implicit assumption that companies have a choice about whether or not to transition to the cloud,” admits Rakesh Surana, Mining & Metals Leader, Deloitte India. “Miners may not realize that some of their systems and data are already in the cloud. Major ERP vendors have adopted ‘cloud first’ strategies. One of the business implications of many cloud solutions is there are little to no customizations. You implement what you get, and you gain the advantage of frequent upgrades. Business users should quickly adopt standard ‘core’ ERPs. Original equipment manufacturers (OEMs) that generate real-time data from embedded sensors aggregate and share that data in the cloud. Even supervisory control and data acquisition (SCADA) system vendors are communicating over the cloud.”
Achieving cyber maturity
As a growing volume of data transitions to the cloud, miners should take steps to enhance their cyber risk strategies. Even absent cloud considerations, modernizing the core can introduce new cyber risks. Too often, non-standard and aging assets aren’t properly maintained, and legacy platforms are allowed to persist without appropriate protections, introducing potential threats.
Upgrading these systems presents opportunities to take stock of existing vulnerabilities and craft more robust cyber risk strategies—not only for miners’ back-office IT systems, but also for operational technology (OT), such as SCADA systems, and programmable logic controllers (PLCs).
Admittedly, this is no small task. While OT systems were developed by engineers with safety and reliability in mind, security was rarely embedded into most of them—as they weren’t originally designed to be connected. Today, however, as operational processes become more automated and more operational equipment and OT are connected to communications networks, facilities such as mine sites, mineral processing plants, and remote operations centers are becoming vulnerable to cyberattacks. These vulnerabilities span not just the SCADA systems and PLCs mentioned above, but also potentially electrical infrastructure, integration with supply chain partners, and more.
This is putting engineers under greater pressure to protect OT in the same way information technology (IT) is protected—creating challenges to harmonize the traditionally disparate IT and OT organizations and cultures.
As the pace of technology innovation accelerates, and the intelligent mine is expected to become a reality, mining companies will likely need back-end systems capable of supporting their transformational opportunities.
Making modernization work
- Create a business case. Cost avoidance is rarely incentive enough to modernize core systems. Instead, mining companies should consider framing the business case in terms of lost business opportunities, lack of agility, and business risk. Even then, it’s important to be realistic when projecting the extent of hidden complexity—and the budget required to resolve this complexity.
- Automate and accelerate. Without a proper approach, transitioning to a new ERP platform can introduce significant implementation risk. To avoid missed project milestones and budget overruns, companies should work with system integrators that offer proven business transformation accelerators. Optimally, this should include: roadmaps for developing a project charter, resourcing plans, and project plans; process flows that take end-to-end process design considerations into account; modules preconfigured to the metals and mining industry; and full reporting, data migration, testing, and training templates.
- Honor your legacy, but don’t be constrained by it. Modernizing the core typically has everything to do with legacy. That legacy is entangled in a history of investment decisions, long hours, and careers across the organization. A portion of most companies’ workforce job history (and job security) is embedded in the existing footprint. As such, decisions concerning the core can be fraught with emotional and political baggage. When reimagining core systems, companies should respect their technology heritage without becoming beholden to it. Sidestep subjective debates by focusing on fact-based, data-driven discussions about pressing business needs.3
- Back to standard. Respecting the legacy without being beholden to it can create a golden opportunity to migrate to a modern, simplified, standardized digital core, adopting best practices and moving any critical customizations or extension sets to cloud-based development platforms. Keeping the core clean and standard can significantly reduce the cost of ownership and improves the sustainability of the core.
- Conduct a cyber risk maturity assessment. To pinpoint where to focus improvement efforts, mining companies should assess the maturity of both their corporate and operational cyber risk controls. This typically means recording assets and facilities and ranking them in terms of criticality, identifying their exploitable vulnerabilities, and assessing the maturity of the controls environment to proactively manage these threats.4
- Build a unified cyber risk program. To address cyber risk across both business functions and operations, mining companies should adopt a systematic approach. The ultimate aim is to create an environment that is secure, vigilant, and resilient. Being secure is about protecting critical assets and infrastructure from breaches or compromises by adopting effective automated controls and monitoring. Being vigilant involves continuous monitoring to detect if systems have been compromised. And being resilient is about putting plans and procedures in place to identify a cyberattack, contain or neutralize it, and rapidly restore normal operations.5
Energy, Resources & Industrials
Deloitte’s Global Energy, Resources & Industrials specialists provide comprehensive, integrated solutions to all segments of the Oil, Gas & Chemicals, Power & Utilities, Mining & Metals and Industrial Products & Construction sectors. Offering clients deep industry knowledge and a global network.
Learn more
Get in touch
- Andrew Swart
- Global Mining & Metals Leader
- Deloitte Canada
- aswart@deloitte.ca
- +1 416-813-2335
Explore the collection
-
Trend 1: The social investor Article5 years ago -
Trend 3: Seize opportunity amid uncertainty Article5 years ago -
Trend 4: Dynamically managing risk Article5 years ago -
Trend 5: The path to decarbonization Article5 years ago -
Trend 10: Tax tribulations Article5 years ago
