Please complete all required fields!
The choices when selecting and designing an enterprise resource planning (ERP) solution are immense and typically require industry-specific considerations. Executives rightly desire fully-integrated IT services across all departments within an organisation. The end result is a reliable, fully-integrated, and secure solution whether it is deployed in a public or hybrid Cloud solution.
What should not be up for negotiation are the essential, machine critical controls (CCs) that maintain the effectiveness and security of this critical asset during normal business operations. In all, IBRS previously addressed the 10 human-facing CCs1. In this research article, the focus is the remaining 10 machine CCs.
Read more ...
The choices when selecting and designing an Enterprise Resource Planning (ERP) solution are immense and typically require industry specific considerations. Executives rightly desire fully-integrated IT services across all departments within an organisation. The end result is a reliable, fully-integrated, and secure solution whether it is deployed in a public or hybrid Cloud solution.
What should not be up for negotiation are the essential, human-facing critical controls (CCs) that maintain the effectiveness and security of this critical asset during business operations. In all, IBRS sees organisations needing to address 10 human-facing CCs from a group of 20 CCs. The remaining 10 CCs will cover the technical controls later in this research series.
The COVID-19 pandemic has, in many cases, forced the workforce environment to shrink to the walls of worker’s houses for at least nine months. While some services such as shopping, online learning and telemedicine proved to be useful when made available remotely, many other services were not suitable to run effectively outside the traditional work environment (e. g. those with inadequate network capacity). Organisations should study the feasibility and cost-effectiveness of deploying additional remote services that are critical to improve business performance, increase service efficiency and reduce the cost of doing business.
01 March 2021: ServiceNow released the latest quarterly edition of its platform.
Why it’s Important
ServiceNow provided the latest quarterly release in March 2021. In this version, called ‘Quebec’, ServiceNow has revised its support model and incorporated major changes to enable the effective upgrades from either New York, Orlando or Paris versions.
A streamlined support structure will help CIO and ITSM team on a ‘learn, prepare and upgrade’ model.
One of the big winners is the telecommunication sector, with enhancements to the product cataloguing, order management and open API’s to assist with alarm management. A new processing engine has been created to automate alerts and incidents.
ServiceNow clients should set time to review the release notes for Quebec and consider the ‘learn, prepare and upgrade’ literature to determine whether they are ready for the upgrade. If so, plan and execute once the risks and value are clear.
Related IBRS Advisory
Conclusion: Many vendors, consultants and managed service providers are pushing ‘security information and event management’ (SIEM) as a panacea to security failings. The intent is correct. Having visibility of what is or has happened in the infrastructure is essential to detecting and responding to intrusions.
What often gets glossed over is that SIEM is a tool, not a complete solution in itself. Deployment requires deep engagement with the IT operations team and a clear vision of what is expected from the SIEM. The vision will be driven by how SIEM will be used, what outcomes would be expected and how its use would evolve over time.
With careful planning prior to deployment, some, if not most, of these issues can be addressed.
Login to read your premium content.