IT Tools for Managers - CIO Management Toolkit

Disaster Recovery Planning, Job Descriptions, Salary Survey, Business Continuity, ITSM, SOA, Compliance, SOX, and HIPAA

CIO Management Toolkit IT Tools for Managers - CIO Management Toolkit - The IT Tools feed is an XML news feed that you can subscribe to and re-publish on your web site or blog. The only requirement that you need to meet is that the feed is included with no modifications and that the links within the feed are retained as is.

If you wish to subscribe to this news feed the options that you have are:


Many companies do not address known security vulnerabilities

CIO's and IT Managers to not address security vulnerabilities aggressively

Security Team managing security vulnerabilitiesIn a recent study it was found that companies typically have the IT staff triage security vulnerabilities and patch only the most dangerous ones. That is 69% of the ones discovered. For the remaining defects:

  • 70% of vulnerabilities remain unpatched four weeks after disclosure
  • 55% sill open after 3 months
  • 25% of the high-severity ratings vulnerabilities were took over 290 days to correct

The study found that the Asia-Pacific region acts the quickest to respond and implement solutions. They patch 25% of the defects within an average of eight days. In the US that takes 22 days and in Europe and the Middle East it takes 28 days.
There are several things that enterprise software developers can do to help improve application security. The most important function of an application security program is to effectively fix flaws once they are discovered.

It has been found that, the most prevalent flaw types appear year after year. That means organizations have made very little headway to create awareness within their development organizations about serious vulnerabilities, like cryptographic flaws, SQL injection and cross-site scripting.

Organizations need to find effective ways to prioritize which flaws they fix first. Over time, there has been good progress with closing flaws through remediation or mitigation, but there is more work to do.

Security Manual TemplateOrder Security ManualDownload Selected Security Manual  Pages

- Many companies do not address known security vulnerabilities


Microsoft Loses Version Control Battle

Patch Management - Version Control Fails at Microsoft

Patch Management - Version ControlMicrosoft's cumulative update for the few PCs that moved to Windows 10 version 1809 before they halted its rollout is causing the "Blue Screen of Death" (BSOD) errors on some HP machines.

A patch management policy should have a section detailing what must be done to ensure the security personnel know what to do in this situation. Patch scanning can be one option or monitoring the media. Patch scanning is obviously the most convenient method and the least time-consuming as in most cases it can be setup and left to work autonomously.

Order Patch Management PolicyDownload Version control Selected Pages
- Microsoft Loses Version Control Battle


CIO Management Tool Kit Key to becoming World Class C-Level Executive

CIO management concerns are constantly changing but the solutions are always centered around three factors: technology, infrastructure and people

CIO Management Tool Kit

Janco has created a kit that contains tools which focuses on manage IT Infrastructure. The CIO Management Tool Kit is available for immediate electronic download and includes the following:

  • Security Manual Template
  • How to Guide for Cloud Processing and Outsourcing
  • IT Job Family Classification HandiGuide
  • 300 plus IT  Job Descriptions - From CIO to Blockchain developer
  • Interview and Hiring Guide
  • Latest IT Salary Survey
  • IT Governance Policy Bundle plus Electronic Forms
  • Business and IT Impact Questionnaire
  • Vulnerability and Threat Assessment Tool

Read on CIO Management Tool Kit...

Download Table of Contents CIO  Management Kit

 

Order CIO  Management Kit

- CIO Management Tool Kit Key to becoming World Class C-Level Executive


CIO Management Tool Kit

CIO management concerns are constantly changing

CIOs and CTOs are in a constantly evolving field, however world class CIOs and CTOs focus on three areas to help them manage more effectively. They are:

  • Technology
  • People
  • Infrastructure

CIO Issues

Download Table of Contents CIO  Management Kit Order CIO  Management Kit

- CIO Management Tool Kit


Massachusetts and New York mandated security requirmements

Meaningful Security Compliance

Security complianceThe Massachusetts mandated security is much less extensive than the New York Cybersecurity law. There currently is an increased focus on data.  Now CSO need to set how data is categorized, stored, governed, secured, and reported as firm’s strive to avoid data breaches. Companies need a CSO who owns the security practice and programs. Additionally, companies need an individual who owns data at an enterprise level (chief data officer see https://goo.gl/eTCkvB) to ensure effective data governance. The CDO and CSO together work to avoid data breaches, detect when breaches do happen, fix the situation effectively, and quickly report breaches in a way that complies with each state’s regulations.

Order Security Policies and ProceduresDownload TOC security policies

- Massachusetts and New York mandated security requirmements