Browse Definitions :
Definition

build or buy (make or buy)

Contributor(s): Matthew Haughn

Build or buy, often expressed as make or buy, is the fundamental decision as to whether to develop something in-house or purchase it from an external supplier.

The two major considerations are cost and production capacity. Assuming that an organization has the capacity to develop a product in-house, the decision essentially comes down to effective use of available resources, including not only return on investment (ROI) but the total cost of ownership (TCO), taking into account all the expenses required to support the product throughout its life cycle.

There are a number of important criteria that must be considered to guide the decision to build or buy. Many organizations currently face the build or buy problem with mobile apps, for example, as an increasingly mobile workforce and the BYOD (bring your own device) environment drive demand. A business might choose to buy a mobile app if relatively generic features will satisfy requirements or, on the other hand, may outsource development if the requirements are beyond in-house capabilities. Assuming staff has the expertise, it may be advisable to build the app in-house if there is idle production capacity or if quality control, intellectual property or competitive intelligence are of particular concern.

 A cost-benefit analysis (CBA) of both options can yield more insight into which is the better route for the organization. To inform a build or buy decision, opportunity costs (the potential value lost when an option is forgone) should be considered along with the costs of developing or purchasing the system and maintaining it. What should not be considered is sunk cost – money that has been invested and cannot be recovered.

This was last updated in June 2016

Continue Reading About build or buy (make or buy)

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.

-ADS BY GOOGLE

File Extensions and File Formats

SearchCompliance

  • risk management

    Risk management is the process of identifying, assessing and controlling threats to an organization's capital and earnings.

  • compliance as a service (CaaS)

    Compliance as a Service (CaaS) is a cloud service service level agreement (SLA) that specified how a managed service provider (...

  • data protection impact assessment (DPIA)

    A data protection impact assessment (DPIA) is a process designed to help organizations determine how data processing systems, ...

SearchSecurity

  • Port Scan

    A port scan is a series of messages sent by someone attempting to break into a computer to learn which computer network services ...

  • DMZ (networking)

    In computer networks, a DMZ (demilitarized zone), also sometimes known as a perimeter network or a screened subnetwork, is a ...

  • quantum supremacy

    Quantum supremacy is the experimental demonstration of a quantum computer's dominance and advantage over classic computers by ...

SearchHealthIT

SearchDisasterRecovery

  • business continuity plan (BCP)

    A business continuity plan (BCP) is a document that consists of the critical information an organization needs to continue ...

  • disaster recovery team

    A disaster recovery team is a group of individuals focused on planning, implementing, maintaining, auditing and testing an ...

  • cloud insurance

    Cloud insurance is any type of financial or data protection obtained by a cloud service provider. 

SearchStorage

Close