Chief Information Officer and IT Managers Areas of Interest

Disaster Recovery Planning, Job Descriptions, Salary Survey, Business Continuity, ITSM, SOA, Compliance, SOX, and HIPAA

Chief Information Officer and IT Managers Areas of Interest - The CIO and IT management news feed is one that you can subscribe to and re-publish on your web site or blog. The only requirement that you need to meet is that the feed is included with no modifications and that the links within the feed are retained as is.

If you wish to subscribe to this news feed add the link below to your reader:

Janco RSS Newsfeed  Chief Information Officer News Feed


Disaster Recovery Planning & Business Continuity Planning Quick Action Steps Defined

Disaster Planning Template

The must do things that your company must do to make sure the disaster recovery and business continuity plan will work when they are need are:

 

Order Disaster Plan Template Download Sample

  • Distribute the disaster recovery and business continuity plan or a HandiGuide® to all decision makers and key operating employees who will need access to it when the event occurs.

  • Define the chain of command with single leader but do not limit the people who would have to implement the disaster recovery business continuity plan when the event occurs if that leader is unavailable.
  • Conduct frequent tests and address all areas where shortcomings are found.
  • Conduct the tests in an unannounced mode
  • Validated that mission critical data is at sites other than the primary data center
  • Establish a communication plan that can be implemented after the disaster.

Disaster Planning Security Template

HandiGuide is a Janco Associates registered trademark 

Order DRP BCP Security Bundle Download Sample

- Disaster Recovery Planning & Business Continuity Planning Quick Action Steps Defined


Compliance is driven from the top down

Compliance is driven from the top down.  Executive Management is the prime mover.

The tone at the top is vital with communication from top management into the middle management team. Some best practices that can periodically reinforce compliance of various policies include middle management facilitating a short time of staff meeting to discuss a specific policy relative to actual business behavior. Training is great yet people need to know what compliant behavior looks to their daily work.

Compliance Process
- Compliance is driven from the top down


Security threat warning to HP laptop users

Security threats addressedSecurity Policies - Procedures - Audit Tools

Several Hewlett-Packard (HP) laptops have been shipped with a keylogger in an audio driver package, creating a major security risk. A keylogger - surveillance software that has the ability to record every keystroke you make to a log file - can record if a password is entered, even if that password is not displayed on the screen.

Read on

Order Security Manual Template

Download sample

 

- Security threat warning to HP laptop users


Blockcahain Job Descriptions

Blockchain Job DescriptionAvailable for Immediate Download - Blockchain Job Descriptions

The major part of the blockchain and cryptocurrency jobs market remains to be focused on developers, and this continues to be the area of most demand. The “U.S Emerging Jobs Report” published by Linkedin back in 2018 shows that demand for blockchain developers has grown 33 times over the previous year.

As of Oct. 23, 2018, the average salary for a blockchain developer was reported to be $127,000, according to Janco Associates, a consulting firm that conducts salary surveys.

Order Manager Blockchain Architecture Job Description

- Blockcahain Job Descriptions


Free hacker tools make it easy to compromise weak passwords

Security Manual defines compliant password rules

Janco finds that over 30% of all users use the same passwords for multiple sites.  With that knowledge in hand hackers can target individual users to find their favorite passwords and use that information to more easily compromise secure business and personal data. 

Security Policies Procedures

Some of the tools they have available are:

  • Custom Word List Generator - Spiders a site or users social network postings to  determine unique words in site or in an individual's profile.
  • RSMangle - Takes a word list and generates mangled combinations and manipulations of those words.
  • Assocaited Word List Generator - Generates word lists based on search terms for a particular site or user profile.
  • Common User Password Profiler - A word list generator based on answers to questions that users submit to various web sites.
  • Userpass.py - A script that generates customized word list for a specific target so that a search is launched to find users in a company and then search profiles in social networks to generate a common word list.

Read on Order Security Manual Template Download sample

- Free hacker tools make it easy to compromise weak passwords