SpotON – our blog around digital compliance in enterprises
SpotON – Digital Compliance
Read here regularly on selected topics, developments and news from the areas:
SAM & Cloud – use software legally compliant and cost-effective
IT Security & Threat Intelligence – protect the IT landscape effectively
Data & Digitization – manage digital assets across the lifecycle
Complion Insights – look behind the scenes of digital compliance consultants
01/07/2025
VMware takeover by Broadcom - developments, impact and outlook
The takeover of VMware by Broadcom at the end of 2023 has changed the IT world forever - with far-reaching consequences for customers, partners and the entire VMware ecosystem. Since then, continuous adjustments to licenses, products and partner structures have caused great uncertainty.
Experience report from an implementation project: Contractual DORA compliance in ICT third-party risk management
In our latest article, Roman Scholtysik, Florian Müller, and Christian Grabner shed light on the contractual implementation of regulatory requirements under DORA. Based on concrete project experience, they show how companies can effectively shape digital resilience at the contractual level. A practical report for anyone who not only wants to understand DORA, but also wants to implement it operationally.
Between duty and potential: A project report on a Microsoft True-Up
What at first glance appears to be a mandatory annual task in license management turns out on closer inspection to be a project with great potential for optimization: the annual Microsoft True-Up report. The overarching goal is a comparison in which companies tell Microsoft how many licenses they have actually used in the past year.
Possible security risk from Chinese components in solar systems
The increasing spread of solar installations not only brings opportunities for the transition towards renewable energy, but also poses new risks to security of supply. In particular, the discovery of suspicious radio modules in solar system inverters, as reported by the Reuters news agency, raises serious questions about cyber security.
Your first project at COMPLION – Why IT regulation is an ideal start for young professionals
Are you a graduate or young professional wondering what your first project at COMPLION could look like when you start your career? Perhaps you're thinking of exciting IT projects, major transformation processes or digital innovations. That's right! But you're probably not thinking about IT regulation.
Sounds dry at first? But it's not. In fact, it's the ideal start for career starters and I'll tell you why.
I would like to show you what IT regulation is, what your tasks in the project at COMPLION look like and what skill set you should have in order to successfully master your tasks.
Concretization of AI competence in software asset management
Monitoring usage data, detecting over- and under-licensing, creating demand forecasts, integrating data from different sources and optimizing software costs - all supported by the use of AI. An idea that promises new efficiency gains and savings and should trigger euphoria among many license managers.
This blog post explains the need for an IT GRC manager. The blog post gives a brief introduction to the business activities of an IT GRC manager and also points out their indispensable position in a company. For a common basic understanding, the term GRC is first discussed and explained.
The three main phases of Contract Management - SAM Contract Management Training from COMPLION
Effective contract management is essential to minimize risks, exploit opportunities and maximize value from these agreements.
COMPLION's SAM (Software Asset Management) Contract Management Training addresses, among other things, the three main phases of contract management, which are organized along the lifecycle of each contract: Contract Creation, Contract Monitoring & Governance Contract Termination/Renewal.
In the following blog post - which reflects a small excerpt from the content of the SAM Contract Management Training - the three main phases of software contract management are described and the most important results and documents of each phase are summarized.
Effective communication and collaboration with stakeholders in Software Asset Management (SAM)
Collaboration and communication with stakeholders are key factors in the success of software asset management (SAM) projects. Without it, SAM initiatives can stall and even fail. It is therefore all the more important to know the different interests, expectations and requirements of the parties involved in a SAM project and to manage them.
At COMPLION, our project experience has taught us why stakeholder communication is so important in SAM, what challenges can arise and how companies can overcome them.
Beyond Compliance - Does the SAM function still have a raison d'être in the cloud era?
With the increasing use of cloud-based services in companies, the importance of traditional license compliance, especially for Software as a Service (SaaS), is decreasing - this was the unanimous opinion of the participants of our panel discussion on 24.03.2025 at SAMS in Berlin.
But what value can SAM add to the management of cloud-based services? In this blog post, we look at selected topics.
Sustainable compliance, efficiency and IT security - How COMPLION combines personal strengths and professional experience with vision
At any point in your career, you ask yourself the following question: "How do I match my own skills and experience with the requirements of my job?"
In this blog post, we show you the vision with which Complion was founded, how we implement it and how you can get involved with us.
The first quarter of 2025 from a cybersecurity perspective: New world record set in crypto theft and HR departments under pressure
The first quarter of the year is almost over and the crypto heist high score already seems to have been reached. Suspected North Korean hackers were able to steal around 1.5 billion US dollars in cryptocurrencies from the crypto exchange Bybit. The success of the modern bank robbers was partly based on the use of freeware by the victim Bybit. Details on what is probably the biggest crypto theft of all time and which trends from 2024 will continue this year can be found in the new blog post by Tobias Philipsen.