If you're new here, you may want to subscribe to my RSS feed. Thanks for visiting!

In mid-May of 2008, just a few weeks back, HP’s CEO Mark Hurd announced an agreement to buy EDS for $13,9 billion and stated that it fulfills their strategic objective of expanding in the services area.

This is major news because this agreement means that HP’s and EDS’ combined revenues reaches a whopping $38 billion a year, a bit behind IBM at $54 billion but clearly ahead of Accenture at $21 billion.

According to the merger plan that’s been released, EDS CEO Ron Rittenmeyer will lead a new organization called “EDS — an HP company” and report directly to HP’s Mark Hurd. EDS will still employ 210,000 people but Wall Street is abuzz with rumors of downsizing.

While HP’s IT services unit was already managing P&G’s global consumer products’ tech operations (a 10 year, $3 billion contract, started in 2003), EDS brings blue-chip customers to the table, such as American Airlines, Bank of America and Royal Dutch Shell.

So EDS’ vast vertical and operational expertise which is especially strong in the financial services, health care and government sectors could finally help HP break into the IT services major leagues. The biggest threat to the success of this deal might come from HP’s somewhat “computer and printer” culture that’s still (proverbially speaking) lightyears away from SaaS, cloud computing and other new-wave IT trends for which EDS has proved to be more comfortable with.

HP hopes that with EDS now on its team, big multinationals will look to outsourcers more often to collect, secure, integrate and deliver software and other IT resources over the web.

Of course, the future will tell if giant system integrators, like HP’s newly acquired EDS, will still be required at a time when the SaaS and cloud computing super-efficient duo are removing complexity from many IT activities, across the board.

Tags: hp, eds, operations, merger plan, it, it services, saas, cloud computing, outsourcing, it resources

If you enjoyed this post, make sure you subscribe to my RSS feed!

Networked multifunction printers are the norm, nowadays, in offices and home-offices across the world.

Priced to pleased and loaded with popular features, they’ve come to be seen as the discreet yet efficient office multifunction sidekicks that sit politely in their place, waiting to receive new jobs, over the network.

What almost everybody forgets it the security risk networked printers represent. Combining several functions in a single unit, including fax, copy, print and scan, these devices are likely to be compromised by hackers.

Since nobody pays close attention to these seemingly mundane devices, they can easily be hacked under the IT Surveillance Team’s radar which, typically, has other (more pressing) threats to deal with, namely on the web server front. In the case of multifunction printers, the attacks are as likely to come from inside the office as from the outside world, which add to the severity of the security risk.

What’s the big deal if the networked printer secretly slides under a hacker’s control?

Well, for one thing, the hacker could view, collect, steal or distribute everything that goes through the device. Imagine your competitor electronically getting all your latest business proposals — that would surely endanger your entire company.

The following types of attacks are most likely to occur within the realm of your office’s multifunction printer so make sure to learn about these attack scenarios:

• DoS - Specialized malware can be programmed to crash printers and scanners, therefore disrupting paper-based business operations.
• Code execution - Hackers can exploit vulnerabilities to load a rootkit into printers, thereby hijacking all documents passing across the network (not just the compromised device).
• Document spying - Featring built-in network, fax / modem and LAN / WAN capabilities, there are a variety of ways to smuggle the stolen data out of an organization, once it’s been captured.
• Credentials theft - If users need to enter a password for certain operations, such as scanning to email, an attacker can capture user names and passwords to gain further access to network resources.

While they may look harmless, modern multifunction printers aren’t dumb machines anymore. IT Admins need to pay attention to these devices’ vulnerabilities and weaknesses to be in a more favorable position where they can apply patches and, at the very least, prepare comprehensive risk-management strategies.

A word of caution also to the multifunction printers that can be accessed through an online authentication interface, through any web browser. Though this system is remarkably convenient for end-users, such authentication methods can easily be bypassed to launch commands which may completely hijack the device.

If you’re serious about closing all prime networked entry points for hackers, perhaps ou should also include all multifunction printers connected to your network.

Tags: network, printers, hackers, hijack, devices, business, authentication, security

If you enjoyed this post, make sure you subscribe to my RSS feed!

Are you popular? Do other people have in interest for gathering data on you? Are the interested parties friendlies or otherwise utterly dangerous?

All these questions quickly come to mind for information security experts who look to secure data in all ways possible to prevent that it get leaked into the wrong hands.

The internet connects over 1.5 billion people daily, for anything ranging from email or web surfing to complex remote medical interventions — that makes for a tempting target for ill intended individuals looking to get their hands on sensitive data, which is basically why you need to protect yourself better.

What you did to protect your data a year ago probably isn’t as good today because the very nature of threats keeps shifting in sometimes unforseen territories. Regularly assessing the efficiency of your data protection will become even more critical in the future as attackers, ranging from more or less talented hackers, organized crime and even foreign governments will try their best to steal anything of value (for them) that you may have.

Your computer’s hard drive is like a proverbial safe which instantly becomes (way) more vulnerable from the moment you connect to the internet or even a home wireless network.

If you intend to have the upper hand against those determined to steal your data, you need to be one step ahead of them, namely with the following no non-sense strategies:

• Enclaves - Early on, determine what’s the most sensitive data you must protect and give it special treatment because that’s probably what the data thieves will be looking for.
• Border firewalls - Network-layer firewalls work best when combined with application-layer counterparts so be creative in protecting your “borders”.
• Strong authentication - Require strong passwords (on everything) which must be changed regularly and for more serious security needs, consider using token-based systems (physical USB key-like devices with ever changing “tokens” to access the data).
• Configuration and patch management - Make sure your (1) equipment, (2) software and (3) human resources are always “well maintained”… and up-to-date!
• Host-based firewalls - Server and workstation intrusion, virus and malware protection is still essential to weed out the unwanted stuff that somehow finds a way in (in spite of all the other protections).
• Data encryption - Make sure to especially encrypt data on mobile devices since they’re the ones likely to be lost (or stolen) when in transit — encrypt all you can.
• Awareness and training - An aggressive cybersecurity program will go a long way in efficiently protecting yourself against newer threats.

While some treat data security entirely as a hit-and-miss process, experience shows that luck favors the prepared, when it comes to cybersecurity.

Forget the antiquated (but still active, alas) Nigerian bank scam threat pouring in email boxes all over the world, the newer threats tend to be socially engineered so ensuing phishing attacks are savvily aimed at the intellectual interest of the end user, making them that much harder to debunk. In other words, attacks are getting uncomfortably personal.

As you attempt, most probably armed with gear, software and knowledge, to fend off the attackers’ attempting to break open the gates to your digital kingdom, keep in mind that people are the weak link in any network security effort.

Interestingly, there’s a corollary to the “people are the problem” saying and it has to with the widely recognized fact that people are also the most effective “tool” to fight attackers.

Although you may never be perfectly secure, make an effort to prevent data thieves from succeeding in their highly illegal —and overwhelmingly stealth— attempts to steal from you.

Tags: security, cybersecurity, it, firewall, border, encryption, data theft, hard drives

If you enjoyed this post, make sure you subscribe to my RSS feed!

Information. Almost all organizations accumulate it. Some rise above the others by seeing their data as a strategic asset to be intelligently exploited. The later requires a mix of vision, faith and creativity.

Do your organization truly understand the value, hidden away in arrays of hard drives?

For the sheer sake of achieving new heights, in this digital era, let’s hope it does!

The typical scenario is that of an organization which accumulates various pieces of data which are very seldom toyed around with to find new, more creative uses for. Just think about the various departments all working in proverbial silos or paranoid IT folks trying to “secure” the data so much that it ends up locked away in some data center, never to be seen again!

The era of merely shuffling numbers in a spreadsheet are numbered. Nowadays, the required data manipulation complexity level goes way beyond summarizing a column or two. It’s now about twisting the data way beyond its initially intended use to produce otherwise unforseen value.

As with lots of things in life, the inescapable truth is that the true power of BI, short for business intelligence, ultimately resides in the smarts injected into it.

Since it’s always a good time to start (1) implementing, (2) using and (3) profiting from business intelligence software and tools, here’s a quick list of things to do, intended mostly for BI newbies:

1. Think big - Imagine how information can be used to improve -everything- about your business instead of focusing on the query tools (the low-level mechanics);
2. Start small - A focused project, for instance, will likely yielda fast win, generate executive enthusiasm and provide insight into BI’s almost inevitable complexities;
3. Encourage “business & IT” partnerships - Make sure you learn what drives the organization and staff the BI team jointly with business -and- techies;
4. Clean up your act - Use a data governance program to improve data integrity, especially when your source systems are a mess because they could extend that mess out to your BI platform;
5. Make tools engaging for users - Keep in mind that BI interfaces are typically optimized for different users and applications. As such, never underestimate the importance of interface appeal.

BI doesn’t come cheap and it’s not necessarily a walk in the park to properly implement but it’s typically worth it, especially when the right “data equals value” mindset permeates the organization.

There has been a surge in major acquisitions recently, such as Oracle-Hyperion, SAP-Business Objects and IBM-Cognos so that should, in theory, mean more software value for the money, assuming more smarts have been added to the “merged” offering. Although it’s still rather new, Microsoft’s PerformancePoint software might become a credible contender in the BI field, especially for mid-sized businesses.

BI’s increasingly strategic importance can’t go unnoticed, especially for executives.

Even though many organizations made their first steps with BI as departmental initiatives, they’ve transformed those pioneering developments into mission-critical apps.

Deploying BI across the organization brings, among other things, economies of scale thus reducing development and infrastructure costs.

In short, perhaps you too should take BI for a “data exploration” spin!

Tags: bi, business intelligence, strategic, organizations, oracle, sap, ibm, microsoft

If you enjoyed this post, make sure you subscribe to my RSS feed!

At a time when information availability, online and off, is rising to unprescedented levels, almost anyone managing information should pause to think of a strategy to benefit from this digital bounty instead of being drowned by it.

As such, here are the many elements of information management you should consider when devising your very own “strategy for staying on top of things”:

Data - Databases, data warehouses, data cleansing, profiling, integration, metadata repositories, networked storage systems.

Content - Document management, web content management, records management, imaging.

Intelligence - Business intelligence, data extraction and mining, analysis, reporting, dashboards, performance management.

Search - Keyword search, content classification, categorization, entity extraction, taxonomy creation, document search, e-mail search.

Think of these elements as parts of your future strategy for winning in the information age. Whoever finds ways to inch ahead of everyone else in fields related to any one of these elements will stand to win big, especially in our increasingly networked world.

It’s not just about buying a bigger hard drive anymore, it’s about managing the information in such a way that truly empowers you.

Tags: information management, data, content, intelligence, search

If you enjoyed this post, make sure you subscribe to my RSS feed!