Browse Definitions :
Definition

build or buy (make or buy)

Build or buy, often expressed as make or buy, is the fundamental decision as to whether to develop something in-house or purchase it from an external supplier.

The two major considerations are cost and production capacity. Assuming that an organization has the capacity to develop a product in-house, the decision essentially comes down to effective use of available resources, including not only return on investment (ROI) but the total cost of ownership (TCO), taking into account all the expenses required to support the product throughout its life cycle.

There are a number of important criteria that must be considered to guide the decision to build or buy. Many organizations currently face the build or buy problem with Mobile apps, for example, as an increasingly mobile workforce and the BYOD (bring your own device) environment drive demand. A business might choose to buy a mobile app if relatively generic features will satisfy requirements or, on the other hand, may outsource development if the requirements are beyond in-house capabilities. Assuming staff has the expertise, it may be advisable to build the app in-house if there is idle production capacity or if quality control, intellectual property or competitive intelligence are of particular concern.

 A cost-benefit analysis (CBA) of both options can yield more insight into which is the better route for the organization. To inform a build or buy decision, opportunity costs (the potential value lost when an option is forgone) should be considered along with the costs of developing or purchasing the system and maintaining it. What should not be considered is sunk cost – money that has been invested and cannot be recovered.

This was last updated in June 2016

Continue Reading About build or buy (make or buy)

SearchCompliance
  • compliance risk

    Compliance risk is an organization's potential exposure to legal penalties, financial forfeiture and material loss, resulting ...

  • information governance

    Information governance is a holistic approach to managing corporate information by implementing processes, roles, controls and ...

  • enterprise document management (EDM)

    Enterprise document management (EDM) is a strategy for overseeing an organization's paper and electronic documents so they can be...

SearchSecurity
  • Extensible Authentication Protocol (EAP)

    The Extensible Authentication Protocol (EAP) is a protocol for wireless networks that expands the authentication methods used by ...

  • session key

    A session key is an encryption and decryption key that is randomly generated to ensure the security of a communications session ...

  • data breach

    A data breach is a cyber attack in which sensitive, confidential or otherwise protected data has been accessed and/or disclosed ...

SearchHealthIT
SearchDisasterRecovery
  • risk mitigation

    Risk mitigation is a strategy to prepare for and lessen the effects of threats faced by a business.

  • call tree

    A call tree is a layered hierarchical communication model that is used to notify specific individuals of an event and coordinate ...

  • Disaster Recovery as a Service (DRaaS)

    Disaster recovery as a service (DRaaS) is the replication and hosting of physical or virtual servers by a third party to provide ...

SearchStorage
  • cloud storage

    Cloud storage is a service model in which data is transmitted and stored on remote storage systems, where it is maintained, ...

  • cloud testing

    Cloud testing is the process of using the cloud computing resources of a third-party service provider to test software ...

  • storage virtualization

    Storage virtualization is the pooling of physical storage from multiple storage devices into what appears to be a single storage ...

Close