For the past five years, kneejerk reactions to information risk have led to technology implementations that are built on fragile or non-existent IRM roadmaps. The result has been flawed technology implementations that don't adequately address fundamental risks. In order to reduce wasteful spend, lower organizational risk and develop systems that scale, CIO's must initiate the development of clear IRM strategies as the starting point. This effort will provide a credible means of guiding subsequent technology investments and improve overall business value