IT Governance

CIO Strategy / IT Governance / IT Security / IT StrategyComments Off on ZDNet – Security Features Built into Cloud Services
14
Sep 17

ZDNet – Security Features Built into Cloud Services

Public cloud providers go to great lengths to secure their infrastructure, but organizations are still responsible to protect their apps and data. We look at Amazon Web Services and Microsoft Azure.

As we discussed in an earlier post [link to cloud fears entry], it’s a little late in the game to be wholly suspicious of cloud computing. However, there’s still a lot to talk about in terms of securing the cloud.

The security features offered by public cloud providers represent only a part of the shared responsibility model; the other part falls within your organization’s responsibility. For example, your public cloud provider may offer security groups for identity and access management (IAM) and firewalls that scan traffic on specific ports and to and from specific IP addresses.

More of the ZDNet article from Larry Seltzer

CIO Strategy / DevOps / IT Governance / IT Staff Retention / IT StrategyComments Off on Customer Think – Software Developers Fear That A.I. Will Soon Replace Them
12
Sep 17

Customer Think – Software Developers Fear That A.I. Will Soon Replace Them

Since its inception in the 19th century, Artificial Intelligence is a growing topic of conversation in both science fiction and intellectual debate. To Cut a long story short, AI turns out to be the most disruptive and pervasive technologies of the current digital revolution. Right from automobiles to health care, home automation, aerospace engineering, material science, sports, the technology has been used very creatively, in hitherto unheard of sectors and has the potential to profoundly affect how we interact across the globe. As a result, the tech industry’s interest becomes stronger than ever.

According to the Oxford dictionary “The theory and development of computer systems able to perform tasks normally requiring human intelligence, such as visual perception, speech recognition, decision-making, and translation between languages.”

More of the Customer Think article from Nishtha Singh

CIO Strategy / IT Governance / IT Security / IT StrategyComments Off on Continuity Central – Gartner publishes ‘Hype Cycle for Cloud Security in 2017’
11
Sep 17

Continuity Central – Gartner publishes ‘Hype Cycle for Cloud Security in 2017’

The Gartner Hype Cycle for Cloud Security aims to help security professionals understand which emerging technologies are ready for mainstream use, and which are still years away from productive deployments for most organizations. The 2017 edition of the Hype Cycle for Cloud Security is now available and a summary is below.

“Security continues to be the most commonly cited reason for avoiding the use of public cloud,” said Jay Heiser, research vice president at Gartner. “Yet paradoxically, the organizations already using the public cloud consider security to be one of the primary benefits.”

The attack resistance of the majority of cloud service providers has not proven to be a major weakness so far, but customers of these services may not know how to use them securely.

“The Hype Cycle can help cybersecurity professionals identify the most important new mechanisms to help their organizations make controlled, compliant and economical use of the public cloud,” said Mr. Heiser.

More of the Continuity Central post

Business continuity / CIO Strategy / Disaster Recovery / IT Governance / IT StrategyComments Off on Continuity Central – To BIA or not to BIA is not the question…
09
Aug 17

Continuity Central – To BIA or not to BIA is not the question…

Continuity Central recently conducted a survey to seek the views of business continuity professionals on whether it is feasible to omit the business impact analysis (BIA) from the BC process. Mel Gosling, FBCI, explains why he believes this is the wrong question to ask…

The Big Picture

It’s always useful to step back and see the big picture, and with the question of ‘To BIA or not to BIA?’ this bigger picture is that the BIA is an integral part the business continuity management (BCM) process specified in ISO 22301 and promoted by business continuity professional associations such as the BCI in its Good Practice Guidelines. Rather than looking closely at the detailed question, we should look at the bigger picture and ask ourselves whether or not we should use this specific BCM process at all.

More of the Continuity Central article

Bi-Modal IT / CIO Strategy / IT Governance / IT Security / IT Staff Retention / IT StrategyComments Off on CIO Insight – A Practical Alternative to Two-Speed IT (Part 2)
04
Aug 17

CIO Insight – A Practical Alternative to Two-Speed IT (Part 2)

In part one of this series, we explored a pair of competing requests many modern IT leaders receive from their stakeholders:

We investigated one “buzzwordy” solution—two-speed IT—and how implementing this solution often creates more problems than it solves. We proposed an alternate five-step framework for handling these requests. In steps one and two of this framework, we revealed how the above two competing requests are old problems, best solved with an old, proven solution—and not buzzwords.

E-Signatures 201: Get the Details on Integration, Customization and Advanced Workflow Register
In part two of this series, we will walk you through the remaining steps in our practical framework and lead you down a path toward implementing this proven solution: the technology lifecycle.

Step 3: Think technology lifecycle, not “innovation” vs. “operations.”

To better understand why the good-on-paper “two-speed IT” approach often produces problems when implemented in the real world, look at Gartner’s two speeds (or modes) in which they shoehorn all technology systems and services:

Mode 1: Development projects related to core system maintenance, stability or efficiency. These require highly specialized programmers and traditional, slow-moving development cycles. There is little need for business involvement.

Mode 2: Development projects that help innovate or differentiate the business. These require a high degree of business involvement, fast turnaround and frequent updates. Mode 2 requires a rapid path (or IT fast lane) to transform business ideas into applications.

More of the CIO Insight post from Lee Reese

Bi-Modal IT / CIO Strategy / Cloud Computing / Cloud infrastructure / IT Governance / IT Security / IT StrategyComments Off on CIO Insight – Two-Speed IT: Juggling Competing Agendas (Part 1)
03
Aug 17

CIO Insight – Two-Speed IT: Juggling Competing Agendas (Part 1)

How can IT leaders juggle seemingly competing agendas: to meet the business’ demands for increased innovation, while cutting costs and slashing budgets?

With the ever-increasing interest in technology solutions, IT’s stakeholders are giving them two competing demands:
1. Produce new innovative, strategic technology-based capabilities.
2. Do so with reduced resources.

How can IT leaders step up to the plate and juggle these seemingly competing agendas: to meet the business’ demands for increased innovation, including new digital systems and services, all while cutting costs and slashing budgets?

Unleash Your DevOps Strategy by Synchronizing Application and Database Changes Register
One popular solution has emerged within IT thought leadership. Often called “two-speed IT,” this idea proposes that the IT organization does not attempt to resolve the tension between these two ideas. Instead, IT lumps all of its technology into one of two broad buckets: operational technology and innovative technology. Do this, and operations won’t slow down innovation, and expensive innovation investments won’t inflate operations’ budgets.

More of the CIO Insight post from Lee Reese

Data Center / Data center compliance / IT Governance / IT SecurityComments Off on The Register – Healthcare dev fined $155 MEEELLION for lying about compliance
28
Jul 17

The Register – Healthcare dev fined $155 MEEELLION for lying about compliance

A health records software company will have to pay $155m to the US government to settle accusations it was lying about the data protection its products offered.

The Department of Justice said that eClinicalWorks (eCW), a Massachusetts-based software company specializing in electronic health records (EHR) management, lied to government regulators when applying to be certified for use by the US Department of Health and Human Services (HHS).

According to the DoJ, eCW and its executives lied to the HHS about the data protections its products use. At one point, it is alleged that the company configured the software specially to beat testing tools and trick the HHS into believing the products were far more robust and secure than they actually were.

More of The Register article from Shaun Nichols

Business continuity / Cloud Computing / Cloud infrastructure / Data Center / Disaster Recovery / IT Governance / IT StrategyComments Off on SearchDataCenter – Distributed data centers boost resiliency, but IT hurdles remain
27
Jul 17

SearchDataCenter – Distributed data centers boost resiliency, but IT hurdles remain

Distributed data center architectures increase IT resiliency compared to traditional single-site models, with networking, data integrity and other factors all playing critical roles.

Architectures that span distributed data centers can reduce the risk of outages, but enterprises still must take necessary steps to ensure IT resiliency.

Major data center outages continue to affect organizations and users worldwide, most recently and prominently at Verizon, Amazon Web Services, Delta and United Airlines. Whether it’s an airline or cloud provider that suffers a technical breakdown, its bottom line and reputation can suffer.

More of the SearchDataCenter article from Tim Culverhouse

CIO Strategy / IT Governance / IT Strategy / Technical DebtComments Off on IT Business Edge – AMD and Intel Declare War on the Data Center: Why This Is a Good Thing
25
Jul 17

IT Business Edge – AMD and Intel Declare War on the Data Center: Why This Is a Good Thing

This month, anything that doesn’t have me looking up to see if North Korea has lobbed a missile at the West Coast is a positive event. But this week, Intel responded to AMD’s Epyc launch with an epic launch of its own: the Purley version of its Xeon processor architecture. It clearly has come to play hard ball. Years ago, because things tended to be more generic, the processor played a far bigger role in servers and workstations. Today, a server can rely more heavily on the GPU than the CPU, can bottleneck on memory, storage, or internal transport rather than the processor more often, and just as often, must be purpose-built for whatever task it is being positioned in.

More of the IT Business Edge post from Rob Enderle

CIO Strategy / Digital Transformation / Get Better / IT Governance / IT StrategyComments Off on CIO Insight – Digital Transformation Is in Chaos
24
Jul 17

CIO Insight – Digital Transformation Is in Chaos

Digital transformation has stalled due to a misalignment between its definition and meaning, delayed ROI, complexity and resistance to new ways of working.

A new survey finds a “widespread stall” in digital transformation efforts, suggesting that its leadership is in crisis. Half of senior executives polled said their company is not successfully executing 50 percent of its strategies, according to the new report from Wipro Digital, “A Crisis in Digital Transformation.” While most executives believe the company is clear on the definition of digital transformation, an obstacle to success is the lack of alignment on what exactly digital transformation means. “Digital transformation efforts are coming up short on intended ROI, in part because digital transformation is as much a leadership issue as it is a strategy, technology, culture and talent issue,” said Rajan Kohli, senior vice president and global head, Wipro Digital.

More of the CIO Insight slideshow from Karen Frenkel

← Older Entries
Newer Entries →