Tips

Tips

Risk and compliance strategies and best practices

• How to ensure cybersecurity plans align with BC/DR plans

  It's crucial for organizations to have a collection of emergency-focused plans in place that can interact with each other if a cybersecurity attack occurs.  Continue Reading

• How IoT, 5G, RPA and AI are opening doors to cybersecurity threats

  In the second part of a series on CIOs preparing for cyberthreats in 2020, we look at how emerging technologies like IoT and the cloud became vulnerable to cyberattacks in the last year.  Continue Reading

• Preparing for the new forms of cybersecurity threats in 2020

  In the first part of a series on the new forms of cyberthreats in 2020, we're diving into the many infiltration points being targeted today and why CIOs should be prepared.  Continue Reading

• Challenges vs. benefits of edge computing security

  Organizations moving more compute to the edges of their networks must adjust how they protect and govern their data and devices. But what should you expect along the way?  Continue Reading

• 6 potential blockchain limitations for enterprise use

  The potential benefits of blockchain for enterprise use must be weighed against blockchain's limitations. Here are six.  Continue Reading

• 4 cloud-based e-discovery strategies to target containerized data

  A cloud migration requires evaluating any existing information governance programs. E-discovery in the cloud and for container-based data platforms requires a detailed strategy.  Continue Reading

• E-discovery in the cloud introduces security, compliance issues

  E-discovery is still reliable for organizing and preserving data for legal compliance, but e-discovery in the cloud and container-based storage complicate governance processes.  Continue Reading

• 5 open source software problems -- and how to manage them

  Open source software's appeal is understandable: It's free, accessible and relatively easy to implement. But CIOs should be aware of the pitfalls.  Continue Reading

• Overcoming multi-cloud's risks, regulatory compliance challenges

  Companies adopting multi-cloud data management models face numerous regulatory compliance challenges, but IT governance strategies are helping them protect disparate information.  Continue Reading

• Security practices don't have to hinder IT speed

  Speed-to-market strategies shouldn't be bogged down by IT security. Here are two steps that will help CISOs adapt governance practices to support IT speed.  Continue Reading

• Quest for the best security for containers: Seven steps

  Despite their name, containers are by no means impervious to threats. With their use expected to grow, the time is ripe for determining the best security for containers.  Continue Reading

• Loose coupling, tight data access minimize security risks of new tech

  A recent article on biological malware got Niel Nickolaisen thinking about how to minimize security risks in emerging tech. Here are two approaches that will help.  Continue Reading

• Engineering compliance, legal rules into mobile technology development

  Legal concerns can hinder the mobility strategy of companies, but designing compliance into the front end of mobile technology development will keep both regulators and CIOs satisfied.  Continue Reading

• Changes in CISO responsibilities call for new reporting structure

  CISO responsibilities are both expanding and shifting to other departments. CEB's Jeremy Bergsman sorts out the future state of IS, privacy and the risk ecosystem.  Continue Reading

• Mobile security issues and solutions

  Mobile technology usage is growing just as the number of threats facing mobile data is growing. CIOs must combat mobile security issues to stay ahead in the mobile-dominated world.  Continue Reading

• Concerned about mobile vulnerabilities, CIOs add security layers

  IT leaders are adding more security layers in an effort to protect against mobility threats. What tools are in their portfolios?  Continue Reading

• The best mobile security plans examine risks first, then prescribe

  How do CIOs deliver the best mobile security? Take a cue from the great psychologist Abraham Maslow, says CTO Niel Nickolaisen.  Continue Reading

• Board presentations on IT risk: Don't make these five mistakes

  CIO and CISO board presentations on cybersecurity are on the rise. Jeremy Bergsman of consultancy CEB explains what not to do.  Continue Reading

• How to handle a data breach: Managing public perception

  When your organization plans out how to handle a data breach, managing public perception should be given special consideration. One piece of advice: Don't play the victim.  Continue Reading

• Data monetization success begins with three key concepts

  Companies are eyeing data assets as the new cash cow, but monetizing data is hard to do, warn data monetization experts Lydia Jones and Karl Urich. Here's what you need to know.  Continue Reading

• Shifting IT security budgets to attack detection, response

  A prevention-focused security strategy isn't foolproof. CIOs need to guide a shift in IT security spending toward attack detection and response.  Continue Reading

• Reconciling great user experience with data risks: CIO tips

  Harvey Koeppel recounts his quest to deliver great user experience without inviting undue data risks. The journey was not easy.  Continue Reading

• Mobile apps for business: Four CIO rules for building a mobile future

  Niel Nickolaisen suggests fellow IT leaders ignore the hysteria over 'mobile-first' enterprises and take a balanced approach to mobile app development.  Continue Reading

• Private cloud termination agreement: What CIOs need to know

  Relationships between companies and their cloud providers can be fleeting. Knowing this, it's important for CIOs to think about exit strategies before they sign that cloud contract. David Rutchik, a partner at Pace Harmon LLC, offers advice.  Continue Reading

• The complexities of a diversified cloud strategy

  Experts urge using a diversified cloud strategy to offset cloud vendor instability, but the sophisticated management skills this approach requires may make it unfeasible for some IT organizations.  Continue Reading

• Use a diversified cloud strategy to offset provider instability

  It can be tough for CIOs to get cloud providers to commit to providing long-term services. One way to ensure stability is by using a diversified cloud strategy.  Continue Reading

• Cloud contract checklist: A lawyer's perspective

  It can be difficult to navigate cloud contracts. There are laws to abide by, SLAs, subcontractors and more. Where to start? One lawyer lays out the six basic issues he vets when he reviews cloud contracts with his clients.  Continue Reading

• CIO tip: Learn how to present a risk-management plan to the board

  CIO tip: Companies are getting serious about risk management plans -- and leaning on CIOs to help them.  Continue Reading

• Four steps to defining and articulating the role of risk management

  Risk management programs are under pressure from all quarters. Here are four steps to defining and articulating the role of risk management.  Continue Reading

• Privacy and data protection governance in five steps

  From data privacy scope to mapping laws to business requirements, Forrester Research outlines five steps to privacy and data protection governance.  Continue Reading

• Minimizing supply chain risks key to business continuity management

  Find out why supply chain analysis is a critical component of business continuity management in this tip.  Continue Reading

• All about the business: Critical insights on operational risk

  Speed and complexity are putting more demands than ever on business operations. Operational risk management strategies can help bridge the gaps.  Continue Reading

• Swine flu preparedness: Business continuity during an H1N1 outbreak

  Swine flu preparedness will top enterprise CIO agendas this fall as offices create business continuity plans in case of widespread absenteeism. Learn more in this H1N1 flu guide.  Continue Reading

• Disaster recovery: Use simple plan to classify apps

  Classifying applications in order of importance is key to keeping disaster recovery in sync with revenue goals.  Continue Reading

• ITIL vs. MOF: Find the best IT framework option for the midmarket

  The IT Infrastructure Library's increased complexity is difficult for midmarket CIOs to embrace, argues CIO Niel Nickolaisen. That's why he turned to the Microsoft Operations Framework.  Continue Reading

• IT contract negotiation strategies

  Vendor contracts can save SMBs money -- if negotiated properly. Follow these four step to help your contract negotiations go smoothly.  Continue Reading

• Security awareness training for SMBs

  Security awareness training can be costly to SMBs, but there are alternatives to the traditional plans. Learn how to create a cost-effective, yet successful, training plan for your company.  Continue Reading

• USB wireless security lets you lock your PC by walking away

  A USB wireless security device employs proximity-based security to lock a PC or server when the user or admin steps away. The device has been turned into a plug-in.  Continue Reading

• Top 10 considerations for selecting a platform

  With hardware costs for Windows, Solaris and Linux running neck and neck these days, here's a rundown of the top 10 things beyond initial cost to consider when choosing a platform.  Continue Reading

• Physical security for laptops

  Make sure your portable computers aren't too portable. Consider physical security for your organization's laptops.  Continue Reading