CIO - Productivity Bundle
Over 220 IT and Internet Job
Descriptions, Disaster Recovery Template
IT Service Management Template - Sensitive Information Policy - Salary Survey - Security Template
The CIO productivity kit standard edition contains:
- Over 220 job descriptions in MS WORD format
- Current IT Salary Survey for US and Canada (by city)
- Disaster Recovery Template which is Sarbanes Oxley compliant
- Security Template which is Sarbanes Oxley and ISO 27000 compliant
- IT Service Management Template (Change Management, Help Desk, and Service Requests)
- Sensitive Information Policy (Protect Credit Card Card and Personal Information)
The CIO productivity kit metric edition contains
- Everything in the standard edition
- Disk Monitor Software Server Edition
- Network Event Viewer Software
- Metrics for Internet and IT (metric kit)
- Service Level Policy Agreement Policy Template (metric kit)
The table below provides more data on each kit.
See below table for full descriptions |
CIO Productivity Bundle | ||
| Standard | With Metrics | ||
| Save | $2,449 | $3,199 | |
| Latest Salary Survey - PDF | X | X | |
| Internet & IT Job Descriptions (220 job descriptions) - Word Files - 1 per job description Includes all 73 salary survey positions - For a list of jobs click here | X | X | |
| Internet & IT Job Descriptions HandiGuide® (over 200 job descriptions) - PDF - For a list of jobs click here | X | X | |
| Disaster Recovery Template - Sarbanes Oxley Compliant (Word Document) | X | X | |
| Security Manual Template - Sarbanes Oxley Compliant (Word Document) | X | X | |
| IT Service Management Template (Word) | X | X | |
| Sensitive Information Policy (Word) | X | X | |
| Metrics for the Internet and Information Technology HandiGuide® - 320 pages, defines 540 objective metrics, and contains 83 Metric report that show over 220 objective metrics. (Word Document) | X | ||
| Service Level Agreement Policy Template defines a three tier environment and specific SLAs metrics that are both internally and externally focused. The sample contain over 70 metrics presented graphically. Word and PDF | X | ||
*Note: The 73 Salary Survey positions are included in the Internet and IT Job Description HandiGuide® and in the 220 plus individual job description word files
Disaster Recovery Template (DRP)
This Disaster Recovery Plan template (DRP) can be used for any enterprise. The DRP Template is sent to you via e-mail in WORD and/or PDF format. Included is a Business Impact Questionnaire as well as a full Job Description for the Disaster Recovery Manager. This template has helped over 3,000 companies world-wide with
Security Manual
The plan is 178 pages and includes
everything needed to customize the Internet and Information Technology
Security Manual to fit your specific
requirement. The electronic document includes proven written text and
examples for your security plan.
IT Service Management Policy Template
The IT Service Management Policy Template is a 78 page document that contains policies, standards, procedures and metrics. Chapters of the template include: Service Requests Policy, Service Request Standard, Help Desk Policy, Help Desk Standards, Help Desk Procedures, Help Desk Service Level Agreement, Change Control Standard, Change Control Quality Assurance Standard, Change Control Management Workbook, Documentation Standard, Application Version Control Standard, Version Control Standard, Internet, e-Mail and Electronic Communication Policy, and Travel and Off-Site Meeting.
Sensitive Information Policy Template
The policy defines how to treat Credit Card, Social Security, Employee, and Customer Data. The policy is 15 pages in length. This policy complies with Sarbanes Oxley Section 404.
Internet and IT Job Descriptions
Over 220 Internet and IT Position
Descriptions are in Microsoft Word for Windows format. The HandiGuide includes positions from CIO and CTO to Wireless and Metrics Managers.
All of the positions in the book have been created to reflect the
technology world of today and are fully compliant with all mandate regulations including HIPAA, SOX and PCI-DSS. In addition the position descriptions have been updated to be compliant with ISO and ITIL..
Metrics for the Internet & IT
The Metrics for the Internet and
Information Technology HandiGuide® is over 320 pages, defines 540 objective metrics, and contains
83 metric reports that show over 240 objective metrics.
Service Level Agreement Policy Template
The Service Level Agreement Policy Template is a nine page policy for a single application, It defines specific SLAs and metrics that are both internally and externally focused. The sample contain over 70 possible metrics presented graphically in PDF format.
IT Salary Survey
The Janco Associates, Inc. survey draws on data collected throughout the year (data as of January 2009) by extensive internet-based and completed survey forms sent to businesses throughout the United States and Canada. Our database contains over 85,000 data points.
CIO - CTO - Productivity Issues
Google stops supporting older browsers
Google has announced that Google Docs will drop support for Microsoft's nearly nine-year-old Internet Explorer 6 (IE6) browser starting on March 1.
Ironically, if Google had taken its anti-IE6 advice to heart before hackers broke into its corporate network last year, it might not now be mulling whether to abandon the Chinese search market.
"We're going to begin phasing out our support, starting with Google Docs and Google Sites," said the senior product manager for Google Apps, in a Friday entry on the company's enterprise blog . "As a result, you may find that from March 1 key functionality within these products -- as well as new Docs and Sites features -- won't work properly in older browsers." Google Sites is the search engine's free Web hosting service.
Google's new list of supported browsers omits IE6, as well as other older programs, including Mozilla's Firefox 2.0, Apple's Safari 2.0 and Google's own Chrome 3.0. IE6 is by far the oldest browser of the bunch, with an August 2001 debut. In comparison, Firefox 2.0 dates to October 2006, Safari 2.0 to April 2005 and Chrome 3.0 to September 2009.
People running older browsers should upgrade to a newer version, said the Google represenative, who posted links to downloads of IE8, Firefox 3.6, Safari 4.0 and Chrome 4.0. The latter is available in final form only for Windows ; Chrome 4.0 for the Mac is still in beta .
Google's move is only the latest in a year-long string of major Web properties dropping support for IE6 or urging users to ditch it for something newer. The campaign began in February 2009, when Facebook prompted IE6 users to upgrade. It then accelerated last summer when Google's YouTube did the same, as Digg announced it would curtail IE6 support and as a California site builder led nearly 40 Web start-ups to urge their users to dump the browser . An "IE Must Die" petition on Twitter, meanwhile, has accumulated more than 14,000 signatures.
- more info
Productivity improvements are possible
Similar to the explosion in regulations such as Sarbanes-Oxley after Enron, many pundits expect new regulations in light of the financial industry meltdown. And industry experts expect that IT organizations in many government agencies will have to take on the heavy burden of the new regulations that are expected to emerge. Microsoft Windows Server 2008 R2 can help IT departments in public sector organizations meet today's demands for lower TCO, improved security, and delivery of IT services. Companies that want to cut costs, lower complexity, and increase agility need to embrace virtualization in their production environments, and Windows Server 2008 R2 supports high-availability virtual environments.
CIO - Productivity Bundle
Over 220 IT and Internet Job Descriptions, Disaster Recovery Template
IT Service Management Template - Sensitive Information Policy - Salary Survey - Security Template
The CIO productivity kit standard edition contains:
- more info
- Over 220 job descriptions in MS WORD format
- Current IT Salary Survey for US and Canada (by city)
- Disaster Recovery Template which is Sarbanes Oxley compliant
- Security Template which is Sarbanes Oxley and ISO 27000 compliant
- IT Service Management Template (Change Management, Help Desk, and Service Requests)
- Sensitive Information Policy (Protect Credit Card Card and Personal Information)
NASA to redo IT Infrastructure
NASA has issued a final request for proposal for a menu of information technology services such as e-mail, security management, instant messaging and mobile communications. Estimates have pegged the work as worth $2.5 billion.
The project, Agency Consolidated End User Services (ACES), is designed to consolidate services across NASA into one agencywide solution. The requirements are currently met through the Outsourcing Desktop Initiative for NASA, the ODIN contract.The ACES contract is expected to be biggest of five contracts that NASA plans to issue as part of its Information Technology Infrastructure Integration Program (I3P) acquisition to consolidate the agency's IT and data services.
Market research firm Input puts the total value for the five contracts, based on NASAs draft RFPs, at $4.3 billion. Input said ACES value is $2.5 billion based on information in the draft RFPs.
According to the final RFP, the winning contractor will be responsible for a range of services including:
- more info
- E-mail and collaborative calendaring services:
- Active Directory services.
- Security management including IT security, emergency management and preparedness, and data at rest services.
- Software license management: The contractor shall provide a fully managed and supported shared license infrastructure.
- Instant messaging services.
- Mobile communications device services such as cell and smart phones.
Service-Oriented Architecture and IT Service Management Are Keys To Success in the Recovery
SOA and ITSM drive success and productivity
One bad customer experience can cost you that customer for life. Hospitality, travel, retail, healthcare, and financial services are especially prone to losing customers who have a negative experience. It does not take much for a customer to decide that you and your company are not worth his time, effort, or money.
Customers like to feel loved, and they are turned off very quickly when they sense that you do not care about the pain they are feeling. Even if you cannot help them because the situation is beyond your control, acknowledge that you understand both the situation and their frustration.
No customer wants the person serving her to be distracted or preoccupied. Ever go to the local mall and try to get help from a teenager focused more on texting her friends than helping you find what youre looking for? On the other hand, being too focused can be a bad thing. Have you ever asked an innocent question out of curiosity and then found yourself stuck for an eternity while a customer support person hunts endlessly for an answer? This person is likely so focused on getting the answer that he does not realize that you really do not care that much about it and would rather not wait for an answer to an inessential question. Be sure your people understand the degree of focus required for the job.
Even if the employee has the right skill set and experience, his odds of being successful and remaining on the job are low if his core behaviors and tendencies do not line up with those needed for success in that particular role. This is especially true for customer-facing roles in which your frontline employees act as extensions of your brand and heavily influence the customer experience.
- more info
Attackon Google mail accounts in China
It was reported in Computerworld that a "highly sophisticated and targeted" attack against Google's network last month originated in China, and tried to access the Gmail accounts of Chinese human rights activists.
In a blog post Tuesday, David Drummond, Google's chief legal officer, said that attacks have forced the company to "review the feasibility of our business operations in China." Google, continued Drummond, is "no longer willing to continue censoring our results on Google.cn, and so over the next few weeks we will be discussing with the Chinese government the basis on which we could operate an unfiltered search engine within the law, if at all."
The end result of those discussions, said Drummond, may be that Google shuts down its search engine and close its offices in the People's Republic of China.
"This is a bold and a very difficult move on [Google's] part," said Leslie Harris, the president and CEO of the Center for Democracy & Technology (CDT), a Washington, D.C.-based civil liberties group. "But with the revelations that there have been major cyber attacks aimed at human rights activists, both in China and in the West, it's hard to see how Google could have remained silent."
According to Drummond, Google was one of at least 20 large companies that were targeted by massive attacks in December. In Google's case, the attacks resulted in the theft of some company intellectual property.
- more info
H-1B Reaches quota - More Audits to Take Place
U.S. employers again hit the cap of 65,000 for the controversial visas that allow foreign workers in specialty fields such as computer science and programming to work in the United States for three to six years.
Despite an early slump in U.S. employer demand for H-1B visas, the U.S. Citizenship and Immigration Services announced Dec. 22 it had reached the 65,000 cap for the controversial guest worker visas favored by technology companies. H-1B visas allow companies to hire foreign workers with special skills to work in the United States for three to six years.
USCIS officials intend to up the ante of verifying and investigating the validity of H-1B visa usage by companies. Immigration officials will ramp up law enforcement to help thwart fraud and quell political pressure that wants to severely limit H-1B visa usage.
The United States Customs and Immigrations Services plans to up its enforcement of the law on H-1B visas and the U.S. companies that take advantage of them by conducting 25,000 on-site inspections in 2010. IBM, Microsoft, Oracle, Google and many technology giants and smaller IT shops employ temporary H-1B visa holders to fill U.S.-based jobs from foreign countries. After a Congressional report showed a range of fraud within the H-1B visa program, the pressure to enforce the law on the books has increased.
In 2009, the USCIS conducted 5,191 on-site inspections, according to a report in Computerworld, with many of the inspections being unannounced visits. The 25,000 inspection effort in 2010 could be a serious boost to quelling fraud, but it may not be enough for those in the U.S. government who advocate for stronger limits on H-1B visas.
- more info
Can Tape Backups Work In a Disaster Recovery Process
Tape backup can provide for the long-term archival needs of the virtual servers; however tape cannot provide the level of recoverability required for critical business applications. Disaster Recovery Planning requires more.
Rebuilding one application from tape can be a difficult and lengthy process. Recovering four or more applications at the same time from tape to rebuild one physical server will result in an excessive period of downtime, likely more than the business can afford.
Organizations may not understand how vulnerable their data and business remain to disaster - even after they've made a huge up-front and ongoing investment in tape-based disaster recovery. An article in SearchSecurity reports that in a survey of 500 IT departments, as many as 20% of routine nightly backups fail to capture all data. Among participants of another survey cited in this article, 40% of IT managers were unable to recover data from a tape when they needed it. This is a significant concern for corporations that are regulated as they can face the risk of being out of compliance if they cannot produce required data when they need it.
Tape backup also places limits on your recovery point objective (RPO), the point in time to which you can recover your systems should disaster strike. Periodic tape backup guarantees hours of lost data in the event of a disaster. Suppose, for example, that a critical system fails anytime today; the best you can do is recover to yesterday's data, which will be at least twelve hours old. The later in the day disaster strikes, the older the data from which you'll recover. In addition, recovering from a disaster, any data not backed up is lost for good - unless you recreate it.
- more info
Job market prospects remain poor at best
The yearly cap for H-1B visas is 65,000. In 2008, the H-1B quota was met in one day. According to the most recent numbers issued by U.S. Citizenship and Immigration Services, the late rush has pushed the number of H-1B visa petitions to 58,900.
In additions, according to some forecasts the first quarter of 2010 will see only minor IT hiring increases, but also a small additional IT job losses. In a survey of 1,400 CIOs, 7 percent said they expect an increase in hiring, while 4 percent expect to reduce staff for a net gain of 3 percent in favor of hiring.
That does not bode well for IT professionals and college graduates. The question is when will the market turn around.
- more info
U.K.Inacts Big Brother Laws
- If illegal file sharing is suspected (not necessarily proven) within a home, all Internet access to that residence could be terminated and fines of up to £50,000 could be imposed on the household.
- ISPs could be compelled to spy on their own users or face stiff fines and other penalties.
- The UK Business Secretary (similiar to the US Secretary of Commerce) would be granted the power to modify any aspect of the law without debate, including the definition of new violations and penalties at a whim, essentially turning his position into that of a dictator for all digital communications within the United Kingdom.
Needless to say, these are bad ideas at best, even coming from a country with an Official Secrets Act. The language in this bill would place corporations in complete control over the Internet in the United Kingdom, answering to nobody but themselves. It's practically a step-by-step guide on how to force your best and brightest to move to another country.
- more info
CIOs address security threats
Business processes today rely on vastly different methods of data storage and data exchange than even a few years ago. The objective is to provide full 360-degree security that protects against the widest range of attacks.The changes in the computing landscape make it essential that companies adopt a new approach to security. According to published research 90% of all CIOs say that data security is "important" or "very important" and would get high priority in 2009.
CIOs need to worry about three possible threat can affect the business operations, data integrity and overall security of organizations.
- Theft or loss of a mobile device - SmartPhone or laptop
- Theft or loss of removable media containing confidential data - USB storage
- Disgrunteled employee or contrator
The security manual template addresses each of these issues with specific policies and procedures that can be implemented quickly.
- more info
Protecting intellectual property - CIO role
The problem is, many companies devote resources to IT security assuming that the thieves and threats are on the outside, attempting to gain access to the network via malware and hack attempts. They ensure anti-malware and intrusion detection/prevention systems are in place, and restrict network access. What happens when the internal worker becomes the threat? What is needed is a set of securtiy policies and procedures support by an audit program that validates that they are followed by everyone.
Data is the lifeblood of every company, and often, it's the only thing that differentiates one organization from another. Who has the most loyal customers, the best service, and the most innovative strategies all boils down to information residing on the company's IT systems.
For companies that deal with product designs and prototypes, it's easy to understand how closely their information must be guarded. Strategic plans, corporate roadmaps, and notes from a brainstorming session could also be valuable to competitors. Personal information - of employees and customers - can be used for identity theft and other types of fraud, if it falls into the wrong hands.
- more info
Firefox is primary security risk faced by users
According to a security vulnerability report by Cenzic, Of all Web vulnerabilities, 90 percent pertained to code in commercial Web applications, while Web browsers comprised about 8 percent and Web servers about 2 percent. Of the browser vulnerabilities, Firefox had 44 percent of the total, but perhaps the biggest surprise was Safari, which formed 35 percent of the browser vulnerabilities. Internet Explorer was third, with 15 percent, and Opera was at 6 percent.
Of the published vulnerabilities in Commercial Off The Shelf (COTS) applications, SQL Injection, and XSS were once again the most common vulnerabilities, which is why, it is no coincidence that most of the attacks in first half exploited these two vulnerabilities. Based on thousands of assessments performed by Cenzic's managed service, nine out 10 applications continue to be vulnerable with Information Leaks, Cross Site Scripting, Authentication Flaws, and Session Management as the most common categories.
The top 10 vulnerabilities for the first half of 2009, included familiar names such as Sun, IBM, SAP, PHP, and Apache.
- more info
Unused Servers Waste Engery and Critical IT Resources
Millions of servers around the world are doing little more than wasting energy, according to a new study.
At least 15 percent of servers are not doing anything useful, said a majority (72 percent) of server managers polled by Kelton Research. In addition, 83 percent said they don't have an adequate grasp of server utilization, and 72 percent rely on CPU utilization as their measure of server efficiency.
The cost of unused servers is estimated at $24.7 billion a year, including the value of hardware, maintenance, management, energy and cooling for unused servers.
Specifically, the study concludes that an estimated 4.75 million servers worldwide are being run 24/7, managed and upgraded without being actively used on a daily basis. Assuming about $4,400 per server per year in operational costs (an IDC estimate), those unused servers cost $20.9 billion to run, plus consume another $3.8 billion in energy costs.
- more info
Reasons to block instant messaging
In the workplace, instant messaging (IM)often replaces
e-mail and phone calls for user-to-user or group conversations. This includes frequent exchanges of files, records and other data, plus regular back-and-forth texting between coworkers or collaborators busy getting their jobs done. Though much IM traffic involves pairs of users, it's neither difficult nor unusual for multiparty IM sessions to replace conference calls. Many IM security problems can expose organizations directly to serious security risks and potentially devastating legal liabilities or financial losses. Because most consumer-grade IM technology is not encrypted, that makes a good place to start exploring how and why this claim holds water. Many IM packages also lack strong proofs of user identity, perform neither file nor content screening on transmissions and directly expose users to malicious software and behavior.
- more info
Employment down for IT professionals according to IEEE-USA
The number of unemployed IT professionals, including systems analysts, has reached 59,000 in the third quarter, up from 49,000 in the previous quarter.
In 2001, there were 745,000 software engineers. In 2002, that number had fallen to 715,000 but then started to increase until the third quarter of 2008, when it reached 1.078 million; software engineer employment now stands at 970,000.
In 2001, there were 734,000 computer scientists and systems analysts, compared to 745,000 in the most recent quarter -- the same number reported in 2005. The peak employment year in this category was 837,000 in 2008.
While the overall third-quarter unemployment rate for computer professionals rose from to 6% from 5.4% in the second quarter, the jobless rate declined for electrical engineers and software engineers, according to a new analysis of government labor data compiled by the IEEE-USA.
The organization of technical professionals said that the unemployment rate for electrical engineers fell in the third quarter from 8.6% to 7.3%, possibly with the help of increasing investments in smart grid technologies. Unemployment among software engineers in the third quarter also fell, to 4.7% from 5%.
The most recent employment data for software engineers is mixed, improving in some areas but declining overall.
While the overall third-quarter unemployment rate for computer professionals rose from to 6% from 5.4% in the second quarter, the jobless rate declined for electrical engineers and software engineers, according to a new analysis of government labor data compiled by the IEEE-USA.
The organization of technical professionals said that the unemployment rate for electrical engineers fell in the third quarter from 8.6% to 7.3%, possibly with the help of increasing investments in smart grid technologies. Unemployment among software engineers in the third quarter also fell, to 4.7% from 5%.
- more info
CIO and companies look towards virtualization solutions
Virtualization management is increasingly more important as CIOs and companies look for every way possible to extract as much value as they can from their IT investments. For many, the answer is next generation tools that deliver proactive monitoring and predictive capacity analysis to enhance the most popular virtualization solutions and improve the odds of a fast return on investment (ROI).
CIOs are looking for virtualization management solutions that will immediately demonstrate its value by predicting your resource utilization trends and alerting you in advance of potential issues. In this process CIOs hope to:
- more info
Cost cutting continuing in many IT organizations
Most CIO's continue to look for ways to reduce costs. Many no longer are willing to pay a premium for vendors to fix any problems in key software and hardware within four hours instead of a 24-hours. Sometimes things stay broken until IT staffers can figure out the fixes themselves.
Steps that CIOs are taking include:
However it is critical to not impact core infrastructure systems or those that are customer centric.
- more info
What does Web 2.0 Promise
Web 2.0
is the next step in the evolution of the computer industry caused by the move to the Internet as platform. While most focus on the implications of software development technologies used to create Web 2.0 applications, it is important to understand the attitude of empowerment of Web 2.0 software developers place a high priority on accomplishing the following objectives with Web 2.0 in order to attain the larger business goals:
- more info
PCI-DSS is not working as designed
PCI is not working as designed according to the survey of more than 500 U.S. and multinational IT security practitioners at companies with an average of $5.6 billion in annual revenue:
- more info
Scam shows creativity of Internet thieves
A security vendor has identified an online service offering to help anyone to hack into any Facebook account for $100. However, those who sign up for the service could find themselves becoming the victims instead.
Users of the service are required to first register with the site and then provide an ID of the Facebook account they want hacked. Users who enter the ID and click on a "Hack it" button are then presented with the username of the owner of the Facebook account. They then have the option to "Start Facebook hacking."
Those who follow the instructions are eventually told that the hack was successful and a password for the account was retrieved. In order to get the password, the user is then required to send $100 via Western Union to an individual in the Ukraine.
- more info
