http://www.ittoday.info Large collection of highly informative articles on many hot topics from industry thought leaders. en-us Tue, 02 Mar 2010 12:25:45 EST As someone responsible for security, you should ask yourself several questions to determine how much of your corporate information is at risk. While it may sound simple, many organizations don't take the time to examine information from all sides, including both an internal view and an external view. As information traverses networks, applications, endpoints and people, an information exposure assessment of actual data loss risk across networks, Web applications, storage and endpoints can help companies determine how exposed their information might be. Gleaning visibility into your organization's internal and external exposures provides a good view of digital and critical assets. http://www.infosectoday.com/Articles/Assessing_Reducing_Information_Exposure.htm rich.ohanley@taylorandfrancis.com Mon, 08 Mar 2010 08:25:45 EST Although virtualization and cloud computing can help your company accomplish more by breaking the physical bonds between an IT infrastructure and its users, heightened security threats must be overcome in order to benefit fully from this new computing paradigm. This is particularly true for the SaaS provider. Some security concerns are worth more discussion. For example, in the cloud, you lose control over assets in some respects, so your security model must be reassessed. Enterprise security is only as good as the least reliable partner, department, or vendor. Can you trust your data to your service provider? This excerpt discusses some issues you should consider before answering that question. http://www.infosectoday.com/Articles/Cloud_Security_Challenges.htm rich.ohanley@taylorandfrancis.com Tue, 02 Mar 2010 12:25:45 EST Mobile technologies contribute uniquely to the communications revolution by eliminating the need for physical land-based connectivity between people, processes, and entities. However, its success depends heavily on a meticulously planned and executed methodological framework. The Mobile Enterprise Transition (MET) framework provides detailed guidance based on the questions of "why, what, how, and who," thereby facilitating the strategic adoption of mobility by business. The MET framework focuses the goals of the organization on strategic and formal adoption of mobility and, at the same time, ameliorates the risks associated with the transition. This excerpt discusses the goals of Mobile Enterprise Transition and managing the expectations of the business. http://www.ittoday.info/Articles/Designing_Backup_for_Recovery.htm rich.ohanley@taylorandfrancis.com Mon, 22 Feb 2010 10:33:45 EST The goal of this article is to discuss how a backup system needs to be designed to facilitate recoveries. The purpose of a backup is to provide a mechanism to recover, and therefore it follows that the backup system must be designed to allow those recoveries to take place with as little effort or cost as possible. http://www.ittoday.info/Articles/Designing_Backup_for_Recovery.htm rich.ohanley@taylorandfrancis.com Mon, 15 Feb 2010 08:41:45 EST The handbook points the way to successful execution of IT projects by offering 39 contributed articles by experts in the field. Content includes introductory material that addresses 21st century public information systems, modern IT needs, and the development of e-government. It follows with an examination of the growth and use of information technology within and among government agencies and organizations. The book addresses current policy issues, offers case studies, and demonstrates successful public sector applications. Each section leads to a holistic approach that emphasizes communication, understanding, and participation from top management, technology teams, and end users. http://www.crcpress.com/product/isbn/9781439807569 rich.ohanley@taylorandfrancis.com Mon, 15 Feb 2010 08:30:45 EST While the practice of collecting and extracting intelligence from business information is not new today's analytic requirements are evolving dramatically. Business managers need answers today or tomorrow, not next month or next year. They need to capture and make sense of massive volumes of data spanning both traditional sources, such as transactional systems, as well as an ever expanding array of data from online and mobile devices. And in an economy that's forcing everyone to do more with less, they need scalable, affordable and simple-to-use solutions. Here are the top trends shaping analytics in 2010 and beyond. http://www.ittoday.info/Articles/Trends_Shaping_Analytics.htm rich.ohanley@taylorandfrancis.com Mon, 08 Feb 2010 08:41:45 EST Congratulations! You are a successful security professional in an organization that has a global footprint. Accordingly, in your role of security manager you have just been advised that your company will build a chemical facility in Colombia, and you now have the responsibility and obligation to ensure that your company's people and assets are adequately protected. Whether you have had international security experience or not, you are about to get an education in the ups and downs, the ins and outs, of dealing with people and projects operating outside of the United States of America or wherever you country of origin might be. You are faced with major opportunities and gigantic challenges. So, what to do? Read on ... http://www.infosectoday.com/Articles/Security_Management_in_Global_and_High-Risk_Operations.htm rich.ohanley@taylorandfrancis.com Mon, 08 Feb 2010 08:41:45 EST An alert management platform empowers companies to target actionable information from IT applications and systems automatically to the employee who can resolve the issue--escalating as necessary. Effective alert management provides the tools to access internal systems and address events from a mobile workbench as well as resolve issues from any web-enabled mobile device. Process acceleration and service improvements can help resolve incidents an average of 40 percent faster, saving up to millions of dollars annually. There are five ways that implementing alert management can immediately increase operational effectiveness across the enterprise--including process and efficiency improvements in incident, service, and change management--while significantly reducing costs. http://www.ittoday.info/Articles/Alert_Management.htm rich.ohanley@taylorandfrancis.com Mon, 01 Feb 2010 09:17:45 EST One problem with the implementation of SOX is that it tends to set a standard for compliance that may be inadequate. Meeting SOX standards--i.e., passing 404--does not imply that a firm or an IT department has the processes in place required to manage its business. Nor does it mean that an optimal level of control exists anymore than having a pulse signifies good health. SOX compliance is the minimum standard, not an optimum standard. Regardless of current maturity level of your firm, you will need to demonstrate SOX compliance efficiently and honestly. This article describes the typical steps required to pass section 404. http://www.ittoday.info/Articles/Ten_Steps_to_SOX_Compliance.htm rich.ohanley@taylorandfrancis.com Mon, 25 Jan 2010 15:36:45 EST Vulnerability management is the cyclical practice of identifying, classifying, remediating, and mitigating vulnerabilities. This is a broad definition that has implications for corporate or government entities. It is not a new discipline, nor is it a new technology. This vital function has been a normal part of hardening defenses and identifying weaknesses to systems, processes, and strategies in the military and in the private sector. With growing complexity in organizations, it has become necessary to draw out this function as a unique practice complete with supporting tools. Listen as Park Foreman discusses how to get started. http://www.infosectoday.com/Podcasts/Vulnerability_Management.mp3 rich.ohanley@taylorandfrancis.com Tue, 19 Jan 2010 10:00:45 EST With 10 Gbps network deployments finally taking off in 2009, the focus of network administrators is now turning to the challenge of managing 10 Gbps networks and in particular to troubleshooting these networks. Existing network management tools can provide an overview of the network, but these systems are only as good as the information provided to them. By employing proactive performance monitoring tools in the network, problems can be avoided and if a network error occurs, the cause of the error can be quickly detected by utilizing the information gathered by these tools. This article by Dan Joe Barry from Napatech looks at some of these tools outlining the benefits that they provide for network administrators. http://www.ittoday.info/Articles/Troubleshooting_10Gbps_Networks.htm rich.ohanley@taylorandfrancis.com Mon, 18 Jan 2010 08:30:45 EST Meeting the need for an authoritative and practical classroom resource, Information Security Management: Concepts and Practice provides a general overview of security auditing before examining the various elements of the information security life cycle. It explains the ISO 17799 standard and walks readers through the steps for conducting a nominal security audit that conforms to the standard. The text also provides detailed guidance for conducting an in-depth technical security audit leading to certification against the 27001 standard. Topics addressed include cyber security, security risk assessments, privacy rights, HIPAA, SOX, intrusion detection systems, security testing activities, cyber terrorism, and vulnerability assessments. http://www.crcpress.com/product/isbn/9781420078541 rich.ohanley@taylorandfrancis.com Mon, 18 Jan 2010 08:30:45 EST IT departments willing to look beyond the surface and the obvious can often eliminate apparent tradeoffs without having to choose one side or the other. When faced with a situation that appears to force a tradeoff, try to examine the problem from a different angle. Taking this fresh-thinking perspective can stretch the IT budget to achieve goals that you might otherwise forgo in an environment of severe financial constraints. http://www.ittoday.info/Articles/Stretch_IT_Budget.htm rich.ohanley@taylorandfrancis.com Mon, 11 Jan 2010 08:30:45 EST Following and expanding on PMI Project Management Body of Knowledge (PMBOK), this classroom-tested text provides a complete overview of project management theory. It translates the abstract model vocabulary and processes from A Guide to the Project Management Body of Knowledge (PMBOK Guide), Fourth Edition into accessible discussions. Filled with end-of-chapter questions, scheduling and budgeting problems, scoping projects, and sample worksheets illustrating various analytical tools and management decisions, the book is ideal for classroom use and essential reading for those seeking project management certification. http://www.crcpress.com/product/isbn/9781439809938 rich.ohanley@taylorandfrancis.com Mon, 11 Jan 2010 08:30:45 EST Most of what's been written about multiple generations working side by side has come from those of us who are considerably older (and more experienced) than our Gen X and Gen Y counterparts. In this article, Sheryl Lindsell-Roberts and Nancy Settle-Murphy sought the perspectives of some of their Gen X and Gen Y colleagues. After all, for all of the wisdom we older generations think we have to offer, the Gen X and Y folks of the world have a lot to teach us, too. http://www.itperformanceimprovement.com/Articles/NS-Intergenerational_Harmony.htm rich.ohanley@taylorandfrancis.com Mon, 04 Jan 2010 14:30:45 EST