Cloud Computing

by Jason Clause Filed under: Email, Hardware, Hosted Services, Managed Services, Network Security, Outsourced IT Support, Software

There is a lot of noise about cloud computing. It’s fairly new and new is exciting. So what exactly is cloud computing? More importantly, why should a small business owner care?

The cloud is a metaphor used to describe the Internet. Cloud computing is building on that metaphor to describe using the Internet to deliver computing resources as a service. Broadly, cloud computing is the convergence of three technologies: server virtualization, utility computing and software as a service.

1. Virtualization allows software to be separated from physical hardware.This in-turn, allows a single physical server to become 10, 50 or even 100 virtual servers.
2. Utility / grid computing allows server capacity to be accessed across a grid of systems.This in-turn allows computing capacity to increase or decrease depending on user or resource demands.
3. Software as a service allows on-demand software applications via the Internet to be purchased on a predictable monthly subscription basis.

This convergence allows a provider to aggregate many computing resources and profitably deliver those resources as a service for a fixed monthly fee.

The resulting delivery model is highly efficient, but it’s not the key reason for a small business to consider cloud computing. The key reason is best illustrated by looking back a century ago to the emergence of the national electricity grid.

Originally, if a business needed electricity it would have to build and fund the generating capacity on its own. Boilers, turbines and transformers were expensive and so only the largest firms could afford the new technology. The emergence of the grid allowed everyone access to electricity on a subscription basis. All one had to do was plug in. No more expensive capital projects.

In the modern era, mostly because of its size, a small business is inherently forced to either pay for more computer resources than it needs or to suffer with systems that won’t quite do the job. It’s an unwinnable contest that does not balance out.

Cloud computing gives a small business the ability to finally balance that equation by allowing them to pay for only the specific IT resources, service and support they need. Small businesses no longer have to lay out huge amounts of capital for servers, software and staff to build and maintain IT resources such as corporate email, shared files and accounting applications. Instead, they can plug into a computing cloud and access only the resources they need on a fixed fee subscription basis.

As with any new technology, there are a lot of options and providers to consider working with. If cloud computing is an option for your business, moving an on-premise computer network to the cloud needs to be thoroughly planned. For more information about cloud computing click here.

In addition to operating a private computing cloud, Endsight manages more than 100 on-premise computer networks. If you’d like to discuss your current situation and determine the cloud’s applicability to you’re business click here to schedule an in-person meeting.

Tags: Cloud Computing, grid computing, small businesses, utility computing 1

Is moving an office in your future plans?

by Jason Clause Filed under: Business & Management, Managed Services, Marketing, Network Security, Outsourced IT Support

When I was in college, I had to move every year.  I lived in a fraternity house and that really simplified the logistic. But even though I never had to move more than a few doors down the hallway, I still didn’t like it.  The idea of a uprooting all of my things, transporting them, and then having to find new places for everything, was a daunting task that stressed me out every time.

As Endsight’s outsourced IT business has grown, we’ve been heavily involved in a staggering number of office moves. Every time, it’s easy to remember the stress I felt as an undergraduate with my mini fridge and futon.  Obviously, the client has much more to consider which makes the stress level even greater.

No two office moves are ever the same.  But having been through enough of these, I thought it would be helpful to list some of the key advisers and partner/vendor rolls to consider as part of your planning process.

Many of our clients begin the process by seeking council from key strategic advisers.

Contemplating a Move:

Commercial Realtor (Help you selected a new location)

Banker (Help decide the best way to finance the move)

Accountant (Help you decide if you can afford the move)

Lawyer (Help you avoid costly legal issues associated with the move)

Once a location has been selected, there are a number of other partner/vendors to involve in the process.

The New Office:

General Contractor (Tenant improvements)

Architect (Make it look fabulous)

Cable Installer (Network cabling)

HVAC (Server room)

Signage (Sign out front, names on the office Doors)

The Move:

Mover (To get from point A to point B)

Phone System Support (Take down and set up phones)

Computer System Support (Take down and set up computer systems)

Internet and Phone System Connectivity (Connect to the outside world)

Office Furniture (Acquire new and /or liquidate old)

Printers, Faxes & Copiers (Often times these are under contract)

Communication:

Marketing (Promote new location, update Website, send a news letter, and create a promotional item)

Printed Materials (Letterhead, business cards, marketing collateral)

Most businesses enjoy existing relationships to leverage as part of the planning process.  If your company needs help filling in the roster, Endsight can help by facilitating introductions to our network of colleagues.  If your small business is planning a move click here.   We would be happy to meet in person with you to discuss your plan.

Tags: Endsight, move, Outsourced IT 1

Beware of Facebook frauds and Google goons | Adventures in IT - InfoWorld

by Jason Clause Filed under: Managed Services, Network Security

Social media and search engine scams are on the rise. Cyberthieves are finding new ways to slip onto your computer and into your pocket. Are you really sure you’re safe?

If any of my Facebook friends get a message from me that reads like this, “I’m in a Turkish prison and need you to wire me $1,000 dollars.”  Please try to call my wife first.  She’ll know what to do. 

Scams and shams are increasing on Google and other popular sites.  The cyber world is a dangerous place where the bad guys can look like good guys.  I encourage you to give this article a good read.  (Read the article by clicking here)

To avoid internet viruses and other traps intended to download malicious software on your machine it’s important to:

1. Implement a centrally managed antivirus solution

4. Consider restricting network / user permissions with regard to software downloads

We’ve baked these countermeasures into our outsourced IT service approach.    If you’re concerned about your exposure to the cyber slime, contact us, and let’s discuss your options.

Tags: cyberthieves, internet viruses, malicious software, Outsourced IT, patch management, search engine scams No Comments »

Make sure you have a handle on your IT resources

by Jason Clause Filed under: Managed Services, Network Security

2009 has been a tumultuous year for the small-business Owner. Cutbacks and spending freezes from our customers have forced many of us to make some very difficult decisions with regards to employee retention.

Some of us have been forced to lay off some really good people as we attempt to reduce our cost structures, collect on outstanding receivables and most importantly find new revenue.

 

I came across a recent article by Roger Grimes entitled “Do you have a handle on your managed resources?” The article is really geared towards a larger IT department but I think it sheds some light on a new challenge that the small-business owner needs to consider.

 

From a computer infrastructure perspective each employee must exist as a user on the network. In addition to being assigned a physical workstation, that user needs the workstation to be assigned as a resource on the network. Each user and resource are then granted permissions and assigned to groups based on their job roles.

 

For example, you hire a new controller, and want to give him or her a workstation with access to email, shared files and your accounting data.

 

To accomplish that on the network your controller is created as a network users in your network directory. He or she is then assigned a workstation as a resource. The controller is granted permission to access email, shared files and your small businesses accounting system as a member of the finance group.

 

Proper maintenance of this directory is essential to maintaining a secure, reliable computing environment. As new employees start and others move on, this directory must be updated to avoid risks to security. (stale accounts give malicious hackers great opportunities to exploit your network)

 

This is a difficult process to maintain under normal circumstances, but for the last nine months our business environment has been chaotic. It’s a good bet that network directory maintenance has taken a backseat to far more pressing issues. But it should be addressed and the sooner the better.

 

Roger’s article is a pretty easy read and it should help provide some direction for those of you that feel like you can take care of this issue by yourself. But as Roger related his story, it’s really easy to delete items from the directory and cause a catastrophe. (Follow this link to read the specific example) So if you’re going to attempt to do this yourself you need to know that you might delete something that could take your entire network down.

 

At Endsight, we’ve developed add move and change policies that we’ve baked into our internal systems and procedures. Our team does this all the time and we can guarantee our work. If you need help with this issue or with any other aspects of managing your computer network please feel free to contact us.

Tags: computer infrastructure, directory maintenance, Email, hackers, reliable computing, Roger Grimes, small business owner, small-business No Comments »

Firms Not Cutting IT Security

by Lauren Papesh, Business Development Filed under: Hardware, Managed Services, Network Security

This is an article I found in business weekly which addresses Endsight’s main IT Security direction. Although the economy is down, companies cannot afford to skimp on security and IT maintenance. Endsight now offers virus and spam protection at the desktop and server levels. Many of our clients are realizing the value in protecting their most important asset- their knowledge. Back up is becoming more practicle, affordable and important these days. It’s a safe guard that many companies only realize the importance of once its too late.

Please enjoy this article written by Stewart Baines of silicon.com

Despite tight budgets, CIOs, faced with rising threats from malware and disgruntled employees, have decided it pays to be wary, surveys show

With IT budgets flat or declining, you might have expected security spending to be similarly under pressure. But it seems CIOs faced with rising threats—including those from malware and disgruntled employees—have decided that it pays to be wary.

Indeed, several surveys have reported that enterprises are increasing their security budgets in 2009 despite cuts in overall IT budgets, with tech chiefs expecting security issues to grow this year as a result of the economic uncertainty.

Speaking to IT directors, the story is the same: downturn or not, cutting security spending is not worth the risk.

Jane Kimberlin, the IT director of Domino’s Pizza, which is bucking the trend of depressing financial results thanks to diners downsizing to a takeaway, said: “We are in fortunate position of finding the downturn not affecting sales. Consequently I am not experiencing any budget constraints at all.

“Having said that, I don’t think we would ever reduce our security budgets. I often talk to other CIOs in the FTSE 250 and it’s not something anyone has said they would do.”

Similarly David Supple, IT director for Ecotec, a management consultancy working in the public sector, said despite the tricky economic climate: “Overall our IT security budgets are not down a lot.”

Crisis, what crisis?
So with IT security budgets largely intact, are companies well prepared for the challenges ahead? Over the past year there have been a string of high profile data breaches, and embarrassing cases of lost laptops, USB drives and CDs in the public and private sector.

But the fear is that such mistakes could be replaced with the deliberate theft of data, with disgruntled former employers made redundant in the downturn fuelling the insider threat to IT security.

Alan Rodger, senior research analyst, Butler Group said: “The insider threat is the most significant. With people’s jobs coming under threat, some will make the most of the opportunity before they leave. For others, simply being told their pay is being cut might inspire them to breach security.

“Investment over the years has focused on security threats outside of the organisation but I believe companies now need to spend a lot more time looking at the threats from within.”

Rodger’s stance is underlined by a recent Ponemon Institute survey of 950 people who had lost or left their jobs during the last 12 months. The research found nearly 60 per cent of them took company information, such as customer contacts, when they left.

The threat of flexibility
As the downturn rumbles on, there is pressure from business managers to be more flexible and cut costs: get closer to customers, work from home more often, and reduce the overhead on centralised offices. The counterpoint is that data leaves the once fortified confines of a company’s premises.

“My internal customers need to be more mobile and so we have seen an explosion of devices on market like netbooks which help them do this. I have to get the balance between making services accessible and security, and security has to win every time,” Domino’s Kimberlin said.

“But we have to recognise that there is a blurring between our work and personal lives so if our employees want to use social networking for instance, we let them do it as long as it doesn’t compromise our security,” she continued.

Ecotec’s Supple added: “Employees are working at weekends and in the evenings from home, maybe when they were not doing it before and using equipment that is not ours,” adds Supple. “Our perimeter has grown.”

So what can an IT director do when faced with conflicting pressures to make working practices more flexible, yet make access to sensitive corporate data more secure, particularly when there is little money around for investment in anything other than business-as-usual security? The trick is to focus investment on where it makes a difference.
Burton analyst Rodger said: “Over the years, most IT security projects have not had to be qualified by a business case but that is changing. Many businesses are recognising that they need to assess the risk, and find a balance between financial cost and the probability of a breach happening.

“When you understand the risk—and how the economic crisis could increase risks—you stop making short-term cost savings in the IT security budgets in ways that leaves you open to the worst risks.”

http://www.businessweek.com/globalbiz/content/mar2009/gb2009039_621530.htm?chan=top+news_top+news+index+-+temp_global+business

Tags: Back up, budget constraints, business weekly, CIO, Corporate, crisis, economic uncertainty, Endsight, IT managers, IT outsourcing, IT Security, proactive maintenance, security direction, SPAM, SPAM filtering technology, Stewart Baines, Tech Budget, tight budgets, Virus Protection No Comments »

Don’t Be Afraid, Be Prepared

by Mike Chaput, President & CEO Filed under: Network Security

Over the course of a year, we meet with hundreds of small business owners and executives and the issue of network security is one of the most confusing and daunting for nearly all.

While many businesses have a healthy fear of network breaches, far more concerning are those who believe they are “below the radar.” We often hear statements such as “Nobody would want to steal my data” or “We’ve never been attacked before.” Unfortunately, it’s not just high profile businesses that are attacked.

What most executives don’t realize is that most of the time, no one is interested in actual data. There are many other reasons why networks get exploited. By understanding these reasons, it becomes inherently clear that any company relying on its computer network needs a basic level of security.

As mentioned previously, theft is a primary motivator for security breaches. But, it’s not the data being stolen. If your systems are not properly protected a hacker can install a program called a Key Stroke Logger (KSL). This software tracks every key stroke typed on an infected machine. The hacker can determine usernames and passwords, not only to your network but also to any website you visit - including your bank. (As it turns out, it is a lot easier to hack your computer than your bank!) Using KSL software, a hacker can access your accounts and steal your identity. Small business owners are left worrying not only about their personal and corporate accounts, but also about lawsuits from employees affected by negligent security.

Other network attacks are the result of ill will harvested in the process of running your business. It’s not
uncommon to see a scorned employee, irritated vendor, or angry customer retaliate in the form of a ‘hack.’ Indeed, the software used to attack networks is freely available on the internet and anyone with reasonable computer skills and time can take advantage of an improperly managed network.

Finally, boredom is a prime motivator of hackers. Many are computer savvy kids who feel a great sense of power by taking control of a stranger’s network. The hacker specifically targets an improperly secured network, runs a basic attack and takes control. With the keys to the kingdom, the hacker may engage in anything from an elaborate prank to the illegal hosting of pirated movies, pictures and music. For the unfortunate business owner, it all adds up to downtime, data loss and potential embarrassment.

If you think your company may not be taking appropriate precautionkey stroke logger,kls,s with network security, chances are you’re right. Consider outsourcing your IT management to a company that can administer the network using industry best practices; however, if your philosophy is to handle these issues internally there are resources that can help. ICSA is a third party organization that evaluates and certifies all internet security products. It is an excellent resource for deciding which solution is most appropriate for your network.

After all, education is the key to preventing network security breaches.

Tags: computer hackers, hackers, hacking, it management, Network Security, outsourcing No Comments »