You can't secure what you don't acknowledge.SM

Friday, May 13, 2011

Need secure email? Look at what bin Laden did.

Here's a good read on the lengths Osama bin Laden when to in order to keep his electronic communications under wraps. I won't spoil the details but it's a pretty old school approach. Check it out and imagine being in one of the coffee shops where the emails were being sent out...

I wonder if his thumb drives were encrypted?? Like many, I doubt they thought that one through. :-)

Thursday, May 12, 2011

Amazon's cloud outage, big deal...?

Here's a great piece from my colleague Jonathan Feldman on why Amazon's recent outage is irrelevant. It reminds me of my what I've always preached: if it's got an IP address, a URL or human beings involved, it's fair game. Something's going to happen eventually.

It's our job to help our businesses/clients to be able to respond appropriately and minimize the impact when something does occur. You've gotta have a fall back plan for everything.

BTW, check out this page for links to more of Jonathan's work. Good stuff.

Some tips for balancing work and play

There's an old saying "Play as hard as you work" that I strive to live by. I've discovered that balancing work and personal time is one of the hardest - yet most important - things you can do as a human being. I found this to be doubly true after losing my mom to cancer last year and nearly losing my father to a heart attack this year.

If you're looking for ways to slow down and enjoy life during this one shot that you've got there's an excellent book on the subject that I HIGHLY recommend:

Furthermore, recently pulled together an expert briefing on the subject that I contributed to:
Focus Experts' Briefing: 6 Ways to Improve Work/Life Balance

If you want to make some changes you've got make some hard choices. I hope these resources help.

Wednesday, May 11, 2011

The new IT skill you *must* develop

Yesterday I had lunch with some colleagues who are lawyers that focus their work in/around compliance, intellectual property and cloud computing. It was neat to hear their perspective on where things are headed in IT. We came to the conclusion that IT professionals are going to have to learn as much as they can about the legal side of what we do.

I'm not talking compliance in general but also contracts, SLAs and the like. You've got to be able to inform management on what to ask for in SLAs (especially with cloud services), set their expectations on the realities of what their signing and also be prepared to raise some red flags when you find SLA or contract verbiage that's not good for the business.

The harsh truth is many corporate lawyers and executives don't have a clue when it comes to understanding the IT-related nuances in SLAs and contracts. So, step back and be prepared to help in this area - it's only going to become more complex. There are some great legal resources on various blogs and Twitter. I'll see if I can round some up for a future post.