Skip to main content

Maintain business domain name intact

There is one thing that organizations must do. They have to register their own domain name, make it final, and afterwards be certain that they are managing it on their own. Digital reputation is increasingly becoming one of, if not there already, the criteria to assess how sound a business fundamental is. Really? Imagine if you caused, or a business keep, changing its own domain name. It is more likely that customers will have a hard time finding what they want to know about how to do business with you. There is much more than just learning the how regardless if a strictly or shabbily regulated business and industry is taken into account. And if the domain name has to be changed, don't totally abandon it. Make a redirect to the new domain name you intend to use and keep it that way for years to come. Until such time that every customer has learned about it already, and that the internet including search engines has been pointing and crawling to the new one directly and automaticall

[TW] IT documents, audit and leaders

IT documents comes with different names such as the following:
- Manual or handbook,
- Policies and procedures,
- Management systems,
- Project plans.

In the real world we have various names with unique descriptions and purposes when in fact they could be made to do a uniform direction for which actions are based for the entire IT initiatives, probably the longest in IT lifecycle is operation.

The problem is our inclination on something else which is wrong. IT remains an IT area. Business remains a business area.

The same problem is carried out when we conduct IT audit. Most audit are missing the gists in which IT is being used by businesses. We once said that an effective IT audit is conducted by IT people themselves but there is something wrong with that even. Business and accounting people have been doing it with a different bias and preconceived notions which doesn't make the cut for IT direction and audit respectively.

Leaders play the same game and so the problem continues and they are dependent on their technology people to carry out related stuff just like they made their businesspeople do theirs even before technology became the premium facility for doing business.

But the actions are taking technology to make things work and every document created must consider the former always and not the latter. If you've seen the SCF which stands as structure, content and facilities, these has a lot to do with any decent IT work document including any outcome- or case-based education.

Comments

Anonymous said…
I have a feeling this is all realistic in the real world and the methods being used here (I read the whole of iclassed contents, forthright) can be very extensive to regulatory regimes, tacit or not but there's more for a proactive effort for organization's cybersecurity, data privacy, etcetera. I especially like how CITO was opined, which is making technological progress a concerted attempt how we should see things and deal with them way a little better, albeit not much on OT yet.

Popular posts from this blog

Philippine telcos blocking entire SMS text with internet addresses in it

If you are sending SMS texts to your friends, family or colleagues and they contain internet or web address including IP and email addresses, and even a period or dot separating, regardless of, your words and numbers, they are automatically blocked and not going to be received by your waiting recipient. Cooler heads must prevail here especially if an important message is urgently being expected. IP version 6 address is fine. However, an IPv4 including localhost address (given automatically to every computers and network interfaces as their own alone designed for troubleshooting purposes), and your money in the billion figure using dot as separators would be blocked.  If you send "local.business, naman.naman etcetera" or any words that made you use dot in between them, as part of the text, they will be blocked. There are some, that isn't blocked in this category. Like check.iclassed, some.ent, whatever.local etcetera, that is because they do not form any domain name at all

Philippine cyber campaign

Are Philippine institutions being targeted or simply being probed? We don't know for certain. It could be either or both. Whichever comes first? What we can understand, with the success of such attacks, is that they have found their way. Really.   How hard or easy? The attacker knows, but probably, also, those being attacked. Inclination should be there no matter how sophisticated our security systems are. In cybersecurity, we do a very focused job. Making sure we disappoint whoever is trying to gain access to any resource without permission and authority regardless of the environment we are in. What happened is that every asset deemed to have every variant of resource built-in, operating, that makes up the entire system working whatever it is trying to employ, in that case the primary purpose. Meaning, we have to know if we are running our system in a manner that is really secure, provisioned properly during design stage and managed continuously afterwards, post-implementation. No

iclassed privacy policy, unbelievable at first sight

Those who, before engaging us and was reading our business conduct, alerts and notices , could not restrain themselves asking, "can you really do your job without keeping any data at all? At the end of the day, you should still be looking at those information and make sure you did, and will, do well. I am expecting a lot from you here, you said so yourself!" Now, that last sentence is so loud. We keep them, not in our premises, but yours. If you've been our clients, you'll know how persistent we are when it comes to the reliability and security of your systems, data and credentials. That's our responsibility, as is made popular by cloud computing, and we don't need to be in a cloud.