Is Enterprise IT More Difficult To Manage Now Than Ever?

← Back to Stories (view on slashdot.org)

Is Enterprise IT More Difficult To Manage Now Than Ever?

Posted by Soulskill on Friday December 12, 2014 @06:45AM from the get-off-my-virtualized-lawn dept.

colinneagle writes: Who's old enough to remember when the best technology was found at work, while at home we got by with clunky home computers and pokey dial-up modems? Those days are gone, and they don't look like they're ever coming back.

Instead, today's IT department is scrambling to deliver technology offerings that won't get laughed at — or, just as bad, ignored — by a modern workforce raised on slick smartphones and consumer services powered by data centers far more powerful than the one their company uses. And those services work better and faster than the programs they offer, partly because consumers don't have to worry about all the constraints that IT does, from security and privacy to, you know, actually being profitable. Plus, while IT still has to maintain all the old desktop apps, it also needs to make sure mobile users can do whatever they need to from anywhere at any time.

And that's just the users. IT's issues with corporate peers and leaders may be even rockier. Between shadow IT and other Software-as-a-Service, estimates say that 1 in 5 technology operations dollars are now being spent outside the IT department, and many think that figure is actually much higher. New digital initiatives are increasingly being driven by marketing and other business functions, not by IT. Today's CMOs often outrank the CIO, whose role may be constrained to keeping the infrastructure running at the lowest possible cost instead of bringing strategic value to the organization. Hardly a recipe for success and influence.

241 comments

Min score:

Reason:

Sort:

YES !! by Anonymous Coward · 2014-12-12 06:46 · Score: 0

Now it is, absolutely !!
1. Re:YES !! by mythosaz · 2014-12-12 06:51 · Score: 4, Insightful
  
  True.
  I work in client computing. What 15 years ago was wandering around with an Office CD is now making sure that App-V Office works on non-persistent virtual machines while settings get captured by a third virtualization service. And making sure that last decade's mouse and keyboard would work has become making sure that users can get into systems from any device, anywhere, over VPN, to the aforementioned virtual systems, without them ever locking themselves out, needing to get to the password reset portal, or making sure the help desk doesn't overload their call volume. Even the proliferation of multiple monitors has left you upgrading Citrix clients and thin device firmwares, all of which connects to another byzantine layer of abstraction.
  Wait, what? The filer is out? How many people are down?
2. Re:YES !! by Darth+Muffin · 2014-12-12 07:04 · Score: 5, Insightful
  
  Consumer level devices and upline management that doesn't understand IT but has the power to say "make it so" are my problem.
  These have happened to me:
  "Why do you need that $700 enterprise-grade AP? Just use the $69 linksys one like I do at home!"
  Monday: "Support my new iGadget. Now." Tuesday: "We need encryption/security/firewall/2FA to meet PCI/CJIS/SOX requirements".
  "Cost saving measure by centralizing printers!" By next month everyone who has the authority to ask for a personal printer again has one.
  "Make an SSID without a password so that we can use our Chromecast."
  
  --
  Real programmers use "copy con program.exe"
3. Re:YES !! by Anonymous Coward · 2014-12-12 07:47 · Score: 1
  
  Not only that, but back then it was only 2-3 people in the IT shop. Today they expect you to do that with ... um ... only 2-3 people in the IT shop.
4. Re:YES !! by Anonymous Coward · 2014-12-12 08:03 · Score: 0
  
  Meh.
  Twenty years ago, I had to demo green screens to college grads who grew up with a PC in their bedroom.
  Clunky legacy systems can very long time if they still work and get the job done. The new kids roll their eyes and complain. Eventually, they get replaced--the systems and the kids--but human behavior doesn't really change.
5. Re:YES !! by cyberchondriac · 2014-12-12 08:30 · Score: 1
  
  Not only that, but back then it was only 2-3 people in the IT shop. Today they expect you to do that with ... um ... only 2-3 people in the IT shop.
  This. We've lost a lot of good people, they rarely get replaced, while new projects and systems keep piling on.
  
  --
  
  Look back up at my post, now look back down, you're on the Internet. Now look back up. I'm a signature.
6. Re:YES !! by Grishnakh · 2014-12-12 08:36 · Score: 4, Insightful
  
  The problem here isn't the "new kids", it's the company for buying into crappy "solutions" which are proprietary and keep the IT department stuck supporting them for years or decades. For instance, look at Rational ClearCase. It's a complete piece of shit compared to modern DVCS systems like git or mercurial; it's slow as hell, requires full-time administrators to keep it running, and is a PITA to use, and lacks all kinds of modern features such as atomic commits. Maybe in 1989 it was pretty cool, but so were patent leather jackets. So why do companies still keep paying millions of dollars for this POS? Because management is stupid and believes the marketing BS from IBM/Rational, and also probably because they've based all their development on it and are afraid of change (even though CC is so shitty it's costing them dearly in development time because it's such a PITA to use).
  If companies worked harder to keep themselves independent and not reliant on proprietary products that only aim to lock them in, they wouldn't have this problem so much.
7. Re:YES !! by Rob+Y. · 2014-12-12 09:48 · Score: 1
  
  Or, more likely, the company's merged a few times, so most of the IT folks got fired. And now the 2-3 people remaining are in a different location administering systems they're not familiar with.
  When my company switched Manhattan offices last year (after a string of takeovers and mergers), they mandated that all servers be located in a cheaper New Jersey location - including file servers for the local network. Even with a pretty good amount of bandwidth between the two sites, the file servers are now essentially useless. I've resorted to doing all work on local copies on my desktop machine and then copying them to the servers for backup whenever I think I've changed enough stuff for it to be worth waiting 15 minutes for the copy operation. It was either that or wait 10 minutes every time I wanted to recompile a Windows app I work on. I suppose they could've hosted my dev environment on a Citrix box in New Jersey - except that all the Citrix stuff they have is in Kansas City.
  These are New York only servers, and the New York office has a mostly-empty equipment room that houses the routers, phone system, etc. The only reason these servers are in New Jersey is that there's nobody left in the New York office to swap backup tapes every morning (and I guess there'd be some cost to arrange for offsite storage of those tapes). But they're probably paying me more to do my own backups than any real solution would cost.
  
  --
  Posted from my Android phone. Oh, I can change this? There, that's better...
8. Re:YES !! by Cramer · 2014-12-12 10:00 · Score: 1
  
  If you're going to compare ClearCase to git and mercurial, it's flaming obvious you don't know the first god damn thing about CC. Slow? Stop using it like it's CVS (snapshots and/or across "T1" wan links from all over the place) Check your network and the PoS computer(s) acting as your servers. Pain to use? No more so than any other tool. If you bothered to learn to use it, it's no more complicated than anything else.
  And every software house in the universe needs a dedicated admin to manage their build and source systems. Developers are hands down the worst idiots EVER at "configuration management", build scripts, and code organization.
9. Re:YES !! by Anonymous Coward · 2014-12-12 10:05 · Score: 0
  
  My company has a large (worldwide) presence, and the only way to keep up with email and file shares in the regional data centers is to use network acceleration devices, given the chattiness of most protocols (hint: most expect LAN type latency; throwing bandwidth at it doesn't modify that problem one bit.)
10. Re:YES !! by Anonymous Coward · 2014-12-12 10:40 · Score: 1
  
  If you're going to compare ClearCase to git and mercurial, it's flaming obvious you don't know the first god damn thing about CC. Slow? Stop using it like it's CVS (snapshots and/or across "T1" wan links from all over the place) Check your network and the PoS computer(s) acting as your servers. Pain to use? No more so than any other tool. If you bothered to learn to use it, it's no more complicated than anything else.
  And every software house in the universe needs a dedicated admin to manage their build and source systems. Developers are hands down the worst idiots EVER at "configuration management", build scripts, and code organization.
  Oh look, a 5 figure ID slashdotter is angry at the 6 figure ID slashdotter/kid.
  Should we get off your lawn?
11. Re:YES !! by Dastardly · 2014-12-12 10:58 · Score: 1
  
  Yes!
  All of you get the hell off my lawn!!!!
12. Re:YES !! by Dadoo · 2014-12-12 11:31 · Score: 1
  
  "Why do you need that $700 enterprise-grade AP? Just use the $69 linksys one like I do at home!"
  I just got a very similar question, yesterday.
  We're adding 350 workstations (and PoE phones) to our network - something for which we should be seriously looking at a Catalyst 6500 or a Nexus 7000, right? No, I cheaped out and got some Catalyst 2960s and a pile of SF500s. Total cost? $20000.
  What's the first question they asked me? "Nowadays, I can get two terabytes of hard disk for $100. Why do we have to pay so much for our network ports?"
  
  --
  Sit, Ubuntu, sit. Good dog.
13. Re:YES !! by Anonymous Coward · 2014-12-12 11:39 · Score: 0
  
  You might want to look into BranchCache - http://technet.microsoft.com/e...
14. Re:YES !! by skids · 2014-12-12 12:05 · Score: 1
  
  I.... am glad I don't have your problems. Really the user base has gotten too lethargic. An occasional day-long outage due to an arp spoofing attack that the cheap-ass prosumer equipment cannot block can do wonders for an IT budget. Of course that's a lot of firing/hiring musical chairs because they won't remember that you told them the crap stuff wouldn't cut it.
  Have fun with that "backplane" capacity :-)
  (BTW these days you'd be looking at a 6800 not a 6500 unless buying used, and the Nexus only if you've got some majorly complex things going on in the server room. Also we gave up on paying the cisco premium on the edge a while back, and have never looked back. While Cisco has been fiddling with SLA, other folks have made much cheaper alternate edge switches with fully adequate feature sets.)
  
  --
  Someone had to do it.
15. Re:YES !! by Plouf · 2014-12-12 13:22 · Score: 0
  
  Clearcase sucks for Java. Anything else sucks for C/C++. Don't even consider Clearcase if you're an Eclipse shop. Don't even consider doing serious C++ job on Git. Just use the right tool and move on.
16. Re:YES !! by jbolden · 2014-12-12 14:24 · Score: 1
  
  Why use backup tapes? Just use 3x redundancy and have files that are semi-stable replicate off the network.
  Anyway.... that file copy issues sounds weird. Obvious the distance is adding latency, but if copies of reasonable files are taking 15 minutes there is just nowhere near enough bandwidth or you have a bad configuration problem. Assuming it is not bandwidth the operation is halting too often?
  Would anyone in your company be interested in a free assessment?
17. Re:YES !! by Anonymous Coward · 2014-12-12 16:13 · Score: 0
  
  This is exactly right. I've heard every one of these practically word-for-word.
18. Re:YES !! by dkf · 2014-12-12 20:53 · Score: 0
  
  Clearcase sucks for Java. Anything else sucks for C/C++. Don't even consider Clearcase if you're an Eclipse shop. Don't even consider doing serious C++ job on Git. Just use the right tool and move on.
  So... you're saying that anyone using git for a serious C project is an idiot? Hmm...
  
  --
  "Little does he know, but there is no 'I' in 'Idiot'!"
19. Re:YES !! by Big+Jason · 2014-12-13 02:51 · Score: 1
  
  As a 4 digit IDer, I agree that ClearCase sucks ass.
20. Re:YES !! by AK+Marc · 2014-12-13 06:38 · Score: 1
  
  Why use backup tapes? Just use 3x redundancy and have files that are semi-stable replicate off the network.
  Who are you paying for the off-site storage, and how much does it cost? Tapes are cheap, and faster. Never underestimate the bandwidth of a Buick full of backups tapes.
  
  Also, the "off-site" storage often forgets the first rule of "backup solutions". I put that in quotes because there is no such thing. Nobody wants a backup solution. Everyone wants a restore solution. You want the simplest restore solution possible. With the world of tapes, you can configure a bootable CD with a tape, and the CD restores the first server image on the tape to the drive it's in. For roughly the time it takes for delivery, to read the tape, plus two reboots, you can have your primary back up and running. And that's if all the on-site is 100% lost.
  
  And for me, I've found the value in backup tapes being that you have hundreds of tapes/copies. With good management, when someone comes in and says "4 months ago, an employee accidentally deleted a Very Important File that we now need to close the books." You do a few minutes of research, restore that one and only one file onto a USB drive, and run it over to the guy asking. With "redundancy" you have a working copy of today's files, but no ability to recover previous states. That's bad.
  
  --
  Learn to love Alaska
21. Re:YES !! by jbolden · 2014-12-13 07:41 · Score: 1
  
  Who are you paying for the off-site storage, and how much does it cost? Tapes are cheap, and faster.
  
  Tapes aren't faster than HDD backup. A Buick full of hard drives crushes a Buick full of tapes in terms of storage. Even better is a buick full of flash though then we aren't talking cheaper.
  
  n. You want the simplest restore solution possible.
  
  The simplest restore solution possible is running out of multiple data centers which are redundant to one another. Images are regularly taken down and restored on a continuous basis. Restoration is nothing other than what the IT operations group / systems does everyday to reallocate compute and storage.
  
  With "redundancy" you have a working copy of today's files, but no ability to recover previous states. That's bad.
  
  I agree that's why you have the semi-stable stuff go to network backup. When they go after the 4 month old file that was semi-stable.
  ____
  I think to advance this conversation we need to separate out an actual scenario. X amount of data, Y amount of retention, Z copies... I'm hard pressed to see any situation that tapes make better than something else. So paint me a stable picture for which
  you believe tape helps.
22. Re:YES !! by Plouf · 2014-12-13 14:07 · Score: 1
  
  I didn't call anyone an idiot. Keep your flamebait away from me.
23. Re: YES !! by cloudmaster · 2014-12-13 17:02 · Score: 1
  
  Everyone hates Clear Case, except for the joker above who clearly works for them. If the mvfs implementation which implements a recursive loop (don't ever blindly use find on an mvfs volume) isn't bad enough to convince someone, the lack of granular access control and the incredibly clunky interface should be.
24. Re:YES !! by goarilla · 2014-12-13 22:48 · Score: 1
  
  (BTW these days you'd be looking at a 6800 not a 6500 unless buying used, and the Nexus only if you've got some majorly complex things going on in the server room. Also we gave up on paying the cisco premium on the edge a while back, and have never looked back. While Cisco has been fiddling with SLA, other folks have made much cheaper alternate edge switches with fully adequate feature sets.)
  
  You are mixing network gear vendors (HP Procurves, Netgear ?).
25. Re:YES !! by NewYork · 2014-12-14 00:07 · Score: 1
  
  Because management is stupid and believes the marketing BS from IBM/Rational
  I think it's https://en.m.wikipedia.org/wik...
  
  --
  Casteism
26. Re:YES !! by skids · 2014-12-16 13:44 · Score: 1
  
  Yes, we have three brands of edge switches (HP,Cisco,Aruba), Aruba wifi and Cisco routing. NAC is Extreme, Shaper is Procera. Integration is a pain sometimes, but we're well over the hump and now when a vendor walks in to sell us stuff they don't act like they own the place, and requiring standards compliance and interoperability tends to get us the better products in the ong run, IMO.
  
  --
  Someone had to do it.
Cloud by Archangel+Michael · 2014-12-12 06:53 · Score: 1, Interesting

The cost of the Cloud is cheap. And for IT, we just say "not as secure, but if you're okay with that, go ahead" and when the Cloud services fail, or get breached or whatever, the CIO can simply say "not my fault, that was your choice". The real cost is hidden.

--
Agent K: A *person* is smart. People are dumb, stupid, panicky animals, and you know it.
1. Re:Cloud by alphatel · 2014-12-12 07:03 · Score: 1
  
  The cost of the Cloud is cheap. And for IT, we just say "not as secure, but if you're okay with that, go ahead" and when the Cloud services fail, or get breached or whatever, the CIO can simply say "not my fault, that was your choice". The real cost is hidden.
  It's the security of the infrastructure that matters. A company is rarely going to lose their shirt because someone found their marketing material in cyberspace, two weeks before it would be released. Of course your mileage may vary.
  
  --
  When the foot seeks the place of the head, the line is crossed. Know your place. Keep your place. Be a shoe.
2. Re:Cloud by bondsbw · 2014-12-12 07:10 · Score: 3, Informative
  
  Most cloud providers are orders of magnitude more secure than company IT.
  
  --
  All my liberal friends think I'm a conservative, all my conservative friends think I'm a liberal.
3. Re:Cloud by mlts · 2014-12-12 07:22 · Score: 2
  
  The cloud is cheap, but so is stashing one's valuables in a box underneath a bush by a park bench as opposed to a safety deposit box. As intrusions become more brutal (where sensitive data like employee bank accounts and HR records just doesn't go to the bad guys, but gets posted for the world to see just out of spite), the cloud solution that worked in 2010 has a good chance to destroy a company due to lawsuits in 2015.
4. Re:Cloud by armanox · 2014-12-12 07:43 · Score: 2
  
  Well, for some companies anyway...working for a network security company I have confidence in our network.
  
  --
  I'm starting to think GNU is the problem with "GNU/Linux" these days.
5. Re:Cloud by Anonymous Coward · 2014-12-12 07:50 · Score: 0
  
  [Citation Needed]
6. Re:Cloud by MeNeXT · 2014-12-12 07:53 · Score: 1
  
  Sales and Marketing may have more information to give than accounting. Just remember they hold the cards to all future sales while accounting just has the past. Of course your mileage may vary.
  
  --
  DRM? No thanks, I'll just get it somewhere else...
7. Re:Cloud by bondsbw · 2014-12-12 08:02 · Score: 1
  
  Fair enough, YMMV.
  
  --
  All my liberal friends think I'm a conservative, all my conservative friends think I'm a liberal.
8. Re:Cloud by Archangel+Michael · 2014-12-12 08:09 · Score: 2
  
  It depends. We hope they are more secure, but we have no idea if they actually are. Lack of data breaches doesn't indicate future performance.
  
  --
  Agent K: A *person* is smart. People are dumb, stupid, panicky animals, and you know it.
9. Re:Cloud by brunes69 · 2014-12-12 08:22 · Score: 3, Insightful
  
  This. A million times this.
  Getting so sick of the same old sub story about how the cloud is insecure, as if it is some rule of nature. The cloud will be as secure as the cloud vendor makes it.
  The idea that sensitive data is more secure in-house than in the cloud, just because it is not inside your four walls, is not rooted in reality. It might make you FEEL more warm and cozy that the data is in your four walls, but does your company have all of the latest enterprise application level firewalls and IPS devices? Does your company have a well-staffed dedicated 24/7 SOC IN ADDITION TO a 24/7 NOC? Does your company have a defined IOC sharing procedure with it's peers?
  So which has a better chance of having the resources needed to secure their environment - your tiny little IT shop with it's cash strapped budget, or an enterprise cloud vendor that has all of the above? My money is on the cloud vendor.
10. Re:Cloud by ShanghaiBill · 2014-12-12 08:27 · Score: 1
  
  Lack of data breaches doesn't indicate future performance.
  It doesn't guarantee future performance, but it certainly indicates it. In general, past performance is the best indicator of future performance.
11. Re:Cloud by goarilla · 2014-12-12 08:28 · Score: 1
  
  True most companies hide behind their obscurity.
12. Re:Cloud by Anon-Admin · 2014-12-12 08:40 · Score: 3, Interesting
  
  You IT security is only as good as your control of the hardware!
  I dont care if it is Windows or Linux, if someone other than the company personal can get to the hardware they can access your system and all the data in it. When you outsource your services to a data center provider you are trusting there security, there hiring practices, and there employees. Ill tell you right now, having worked for several of the BIG data center providers, most of them dont do a background checks. I have worked with many that were felons and in three cases worked with people convicted of credit fraud as well as hacking.
  How many CIO's/CTO's/etc ever investigate the data center provider to determine there hiring practices and who has access to the hardware they will be storing the virtual machines on?
  IT people say is it insecure because we know that #1) the person making the decision does not understand technology and #2) s/he simply went with the lowest bidder.
13. Re:Cloud by Archangel+Michael · 2014-12-12 08:45 · Score: 1
  
  Before Sony got hacked, they hadn't had a big breach. Past performance means little. The scale of Sony Breach is largely unprecedented. I reject your assessment on the grounds that "best indicator" is a meaningless phrase, and probably completely untrue. Best indicator are the perpetual steps being taken by IT staff to secure the data. I can assure you, from the little I know about the breach ( which is very little) I can assure you that the data was not secured properly.
  
  --
  Agent K: A *person* is smart. People are dumb, stupid, panicky animals, and you know it.
14. Re:Cloud by Anonymous Coward · 2014-12-12 08:49 · Score: 0
  
  Except there is no lack of breaches, there are plenty of breaches of cloud infrastructure, you hear about them all the time. Just google Amazon AWS portal hijack and you'll see plenty of victims. If you don't know what you're doing with IT you will create an insecure environment regardless of some VPS in Azure or a physical server on your own network.
15. Re:Cloud by brunes69 · 2014-12-12 08:57 · Score: 1
  
  There are standards such as ISO 27001 that are independently audited that can prove if a cloud provider is following the right security practices. I would seriously doubt your IT shop is ISO 27001 compliant. Amazon is, Google Apps is, as are many other cloud vendors.
  The whole cloud boogeyman has to die. It is foolish, short sighted thinking. Moving applications to cloud is an opportunity for enterprises to finally do things PROPERLY in IT for once instead of cobbling together systems on shoestring budgets with lax security policies and unaudited shell scripts holding the mess together like crazy glue.
16. Re:Cloud by Anonymous Coward · 2014-12-12 08:59 · Score: 0
  
  take your meds, grandpa; it's almost time for Matlock.
17. Re:Cloud by Anonymous Coward · 2014-12-12 09:00 · Score: 1
  
  You don't understand what the cloud provider is actually monitoring then. Quite frankly you're just as open to SQL injection using Azure as you are doing it yourself. Once you understand that most breaches don't occur through the firewall where IPS and and ACLs roam you'll start to realize that whether or not you have someone on staff maintaining your infrastucture you still need intelligent people managing the environment.All you're doing is removing the need for the rack monkey to replace a failed a disk or perform a restore. When it comes to security you get out what you put in and it doesn't matter where the resource is located. I've seen plenty of AWS and Azure instances that are wide open and routinely breached.This is not a fault of either Amazon or Microsoft. If you don't know what you're doing then a cloud provider is not going to save you.
  If you haven't automated away the basics at this stage you're way behind in IT. Patch management, AV, malware detection, these are all easy to deploy en masses now and don't require complicated tools like SCCM anymore. You sign up for a management care provider which usually costs less than just licensing AV these days.Then you forget about WSUS and all that complications of basic infrastructure. This means you focus your energy on providing a seamless experience for your users.
18. Re:Cloud by Anonymous Coward · 2014-12-12 09:11 · Score: 0
  
  Found the beef, parent has been holding out on us
19. Re:Cloud by Anonymous Coward · 2014-12-12 09:24 · Score: 0
  
  > Moving applications to cloud is an opportunity for enterprises to finally do things PROPERLY in IT for once instead of cobbling together systems on
  > shoestring budgets with lax security policies and unaudited shell scripts holding the mess together like crazy glue.
  What makes you think this? You can just as easily cobble together a few cloud systems together and with lax security policies, except now you have more people who have access to the physical hardware.
20. Re:Cloud by Anonymous Coward · 2014-12-12 09:24 · Score: 0
  
  I don't think they were looking for a clever joke or trying to be funny.
  At first glance I would think they'd like you to provide information from a valid authority for your claim. That's usually how we ask for things. I'll go find some water myself though, I don't need three sentences telling me to go fuck myself by stating how stupid it is to ask for water, when it has been know since gravity was invented, that it can be found in any low lying area.
21. Re:Cloud by pscottdv · 2014-12-12 09:30 · Score: 1
  
  So you are saying that [Citation Needed] has jumped the shark?
  
  --
  this signature has been removed due to a DMCA takedown notice
22. Re:Cloud by Rob+Y. · 2014-12-12 09:57 · Score: 2
  
  But that's exactly his point. All organizations have sensitive data infrastructure these days - most do not have IT staff competent to actually manage it once everyone's connected to the internet. And the staff they have was getting cut to the bone before IT got outsourced to the cloud. So, unless you're as tech savvy as the cloud majors, your data's likely to be less secure in house. Of course, that assumes you're a big enough target for hackers to take an interest in you. If Sony can be cracked, you can bet you can be too. So if you're as conspicuous a target as a Sony, you're probably better off in the cloud than relying on your IT staff to protect you. Odds are they're not as good as Sony's staff...
  
  --
  Posted from my Android phone. Oh, I can change this? There, that's better...
23. Re:Cloud by ShanghaiBill · 2014-12-12 10:02 · Score: 1
  
  Before Sony got hacked, they hadn't had a big breach.
  They had a big breach in 2011. They had other smaller breaches as well.
  
  I can assure you that the data was not secured properly.
  Duh. Thanks for your brilliant hindsight.
24. Re:Cloud by Blaskowicz · 2014-12-12 10:50 · Score: 1
  
  I thought the Sony Playstation Network had a big breach with millions of user account details and credit card information stolen.
25. Re:Cloud by sjames · 2014-12-12 11:19 · Score: 1
  
  That depends on what sense you mean. Most cloud providers seem to have decent integrity but wasn't there a story here a while back where a company lost control of it's control panel to a group of black hats?
26. Re:Cloud by David_Hart · 2014-12-12 11:30 · Score: 1
  
  Most cloud providers are orders of magnitude more secure than company IT.
  No....
  I would agree that most cloud providers probably have a better handle on security than corporate IT. Simply because if they have a breach they basically lose their whole business. As such, it's made a priority and has a decent budget.
  However... Because cloud providers have more than one customer, all it takes is one of them doing something illegal for your data to be subject to search and seizure. From a legal standpoint, the corporate data is actually less secure....
27. Re:Cloud by skids · 2014-12-12 12:10 · Score: 1
  
  A company is rarely going to lose their shirt because someone found their marketing material in cyberspace
  No, but they will surely raise holy hell when there's a BGP problem that kills access to the DNS server for their cloud service app and they can;t get any work done for a day while the ISPs bang it out.
  Also some idiot will eventually drop PCI data on the cloud service, even if the service has no place to put it. They will find a way tp let their idiot light shine through.
  
  --
  Someone had to do it.
28. Re:Cloud by Noah+Haders · 2014-12-12 12:48 · Score: 1
  
  the greatest hack paydirt is executive emails where you bash your competitors, your colleagues, and president Obama. [I would have inserted Sony links, but I leave it as an exercise for the reader.)
  -Andrew
29. Re:Cloud by Noah+Haders · 2014-12-12 13:05 · Score: 1
  
  sony pictures != sony
30. Re:Cloud by jbolden · 2014-12-12 14:30 · Score: 1
  
  There are cloud solutions for any level of security you need. Security varies. Heck Lockheed Martin has a cloud.
31. Re:Cloud by jbolden · 2014-12-12 14:32 · Score: 1
  
  You do if you are a real customer i.e. someone who can buy enterprise IT. Your agent can take you on a tour of the data centers your cloud provider uses and show you the physical layer. You can get a very accurate description of the software protections. If you buy your own direct connection you network provider will walk you through the network. If you want a cloud on your premise you can do that. Etc..
32. Re:Cloud by Anonymous Coward · 2014-12-12 14:32 · Score: 0
  
  Then your money is pretty much lost. You're a shill, a manager, or somebody who works in a rather pathetic IT environment staffed by poor performers.
  Security isn't about how much money you spend, how many products you have, or how large a data center you have. Security is about knowledge, process, and attitude. Obviously you do have to spend some money and have some resources, but having the right ones and not just piles of vendor crapware du jour is the real trick. Do I trust cloud providers to do that? I don't trust them to do anything but write invoices, and I'll audit those with a fine toothed comb.
  BTW, how do you know anything about your cloud vendor's infrastructure? How much do you think you know? How do you know your "cloud provider" isn't an operation the same size as yours? So there's one risk. So is vendor lock in. So is having your data on servers that host things which get seized for a lawsuit or somebody else's arrest. You have an airtight contract that says they'll back up AND restore your data in a timely fashion? Got a reason to believe you can actually enforce it?
  If I have your version of a tiny little IT shop with no budget then I also have an Internet connection that maybe not the greatest. There's another risk--me not being able to get at my stuff. Corporate espionage? It's real. Got all those things? I can think of a dozen more.
  Some of those things are problems for internal IT too of course. What workloads belong where is something that requires actual thought and analysis, including risk analysis. Being a knee jerk cloud fanatic is the hallmark of somebody easily influenced.
33. Re:Cloud by jbolden · 2014-12-12 14:35 · Score: 1
  
  So host with a telco cloud that does that sorts of checks. Or go even up market for a security company cloud like Firehost.
  You buy cloud your agent can walk you through the options.
34. Re:Cloud by jbolden · 2014-12-12 14:36 · Score: 2
  
  If you don't know what you're doing then a cloud provider is not going to save you.
  
  Actually they will. AWS and Azure don't offer a security service. But there are cloud providers that do and will act against unusual traffic.
35. Re: Cloud by Anonymous Coward · 2014-12-12 15:02 · Score: 0
  
  What's a mattock?
36. Re:Cloud by ShanghaiBill · 2014-12-12 17:57 · Score: 1
  
  sony pictures != sony
  Sony Pictures is a subsidiary of Sony. It is part of the same organization.
37. Re:Cloud by Anonymous Coward · 2014-12-12 18:13 · Score: 0
  
  Possibly... However, I actually had the opportunity to see a Fortune 10 company trying out a Top 3 cloud provider that by default left administrative protocols open to the internet. Which, I know, didn't happen within the decade before the above heinous example. The cloud provider also lacked the ability to maintain two internal route tables for cloud hosted servers, a basic tenet of building a secure web infrastructure.
  Their answer? Use our integrated firewall, but this is our default build. Default open is the profit motive for cloud providers, default closed is the profit motive (protect the brand) for companies. There is some distance there.
  (Above anecdote was given in generalities to prevent disclosure of untoward behavior.)
38. Re:Cloud by dkf · 2014-12-12 21:00 · Score: 1
  
  You IT security is only as good as your control of the hardware!
  But you have to let the users on anyway. If you manage to completely secure systems so that it is completely impossible for any data to leak, you'll have excluded everyone who has legitimate reasons to have access, and you'll have cost the company a lot of money in the process. You'll be seen as the weak point in the whole process and will get replaced with someone less expensive and more compliant with what the business needs.
  
  --
  "Little does he know, but there is no 'I' in 'Idiot'!"
39. Re:Cloud by Noah+Haders · 2014-12-12 21:21 · Score: 1
  
  sony pictures [less than symbol] SONY. SCEA [less than symbol] SONY. sony pictures [less than symbol][greater than symbol] SCEA
40. Re:Cloud by Anonymous Coward · 2014-12-12 23:51 · Score: 0
  
  *Their* are standars. puhlease!
41. Re:Cloud by Anonymous Coward · 2014-12-13 09:00 · Score: 0
  
  SSAE-16 SOC 2 Type II
42. Re:Cloud by Jack+Griffin · 2014-12-13 21:26 · Score: 1
  
  Unlikely. Plenty of big companies have had data breaches are are still operating. Part of the risk management is having a good PR ready to go so that when the inevitable happens you can smooth it over with excuses and carry on. The fact is that Cloud plus PR plus anticipated losses plus additional insurances are still cheaper than on-premise. From a business point of view it's a no-brainer.
43. Re:Cloud by Anonymous Coward · 2014-12-14 04:00 · Score: 0
  
  more secure and with free three-letter backup!
44. Re:Cloud by Zaelath · 2014-12-14 13:34 · Score: 1
  
  Hahahahaha, good one.
45. Re:Cloud by Agripa · 2014-12-19 07:18 · Score: 1
  
  When you outsource your services to a data center provider you are trusting there security, there hiring practices, and there employees.
  And you are trusting the NSA and any law enforcement agency with a subpena or national security letter and whoever they trust. At least if you host in house, you will have legal notification when they seize your data.
No, it's easyer than ever by Anonymous Coward · 2014-12-12 06:53 · Score: 0

.. because nowadays NSA cares for all your backups ;)
bring back the green IBM 3270 by iggymanz · 2014-12-12 06:54 · Score: 4, Insightful

force everyone to work on green phosphor , don't hire or pander to the kind of dumb-ass that needs clicky pointy and autocomplete and facebook/twitter/tumblr updates on the side. raise the bar. work will get done.
1. Re:bring back the green IBM 3270 by Miser · 2014-12-12 07:22 · Score: 1
  
  Logged in just to say YES. THIS. A thousand times this. Mainframes and text based FTW!
  Lock that stuff down so only real work gets done, and if you don't know technology you do NOT get to make the decisions.
  I don't go around telling the auto mechanic how to fix cars (since I do technology) so I don't expect non tech folks to tell me how to do my job.
2. Re:bring back the green IBM 3270 by mlts · 2014-12-12 07:25 · Score: 1
  
  I think text consoles, though secure, are dead. Instead, for a network that has to be secure, keep the machines on an isolated subnet (no traffic in/out except to the domain controller, the app server, and a RDP/terminal server.) That way, private data is secured, but people can hit the Web and do what they want, and data can't leak into the RDP link. Best of all worlds.
  Another idea is putting the data behind Citrix. Internal machines will still need to be secured, but the machines are more of glorified thin clients, as opposed to actually handling/manipulating internal stuff.
3. Re:bring back the green IBM 3270 by jellomizer · 2014-12-12 07:28 · Score: 1
  
  Ah yes Nostalgia Blinders!.
  Guess what it is 2014 and I still have to work with 3270 mainframes. And it good old time.
  1. New regulations means we need to add more and more to the screens. 80x24 gets filled fast, adding new screen pathways makes the program more cumbersome to use.
  2. Bulk Imports are ugly. Using screen scraping to load bulk data because it is locked down where you can't access the data directly.
  3. Changes are scary, one mistake effect the full work load.
  
  --
  If something is so important that you feel the need to post it on the internet... It probably isn't that important.
4. Re:bring back the green IBM 3270 by Miser · 2014-12-12 07:36 · Score: 1
  
  OK, I'll slightly concede some of the points listed.
  However, that all falls on its face when the boss* wants to use dropbox or whatever security hole laden fad of the week on that isolated RDP farm you set up.
  You explain the security implications, he/she wants it anyway. You either install it or get fired.
  There goes all of your nice isolated infrastructure.
  I've seen it happen . More than once. I used to be surprised. Now, not so much. I just facepalm and move on to the next customer. Sometimes I think I should be a farmer.
  Has anyone seen that VM/ESA IBM advertisement on youtube from 1995? That's what I want back. You can have your PC infected with all sorts of crap if you like, but you're not infecting the mainframe where the real work and real data is. It's not nostalgia. With all the modern stuff that z/VM and z/OS comes with today, I really think IBM may be slightly missing the boat. Make a system or version that's for lighter workloads, costs less money, yet comes with the robustness and rock solid nature that they are known for. Could blow Microsoft out of the water after x number of years. (or at least knock them down quite a few pegs)
  Yes I am rambling. :)
  * boss that doesn't have a clue or whos son/daughter/neighbor knows computers and if it works at home why are you working against me not to install it here at the office?
5. Re:bring back the green IBM 3270 by rickb928 · 2014-12-12 07:36 · Score: 1
  
  I'm still using green screens. They try to force me to the GUI, first by pointing out the functionality. I out of that they are denying me those functions in terminal, so of course the GUI is better. They really just don't want me running macros to pull details on 5,000+ accounts when I'm asked to.
  Yes, that's it.
  
  --
  deleting the extra space after periods so i can stay relevant, yeah.
6. Re:bring back the green IBM 3270 by omnichad · 2014-12-12 07:38 · Score: 1
  
  But the auto mechanic lets you drive your own car.
7. Re:bring back the green IBM 3270 by geekmux · 2014-12-12 07:43 · Score: 1
  
  force everyone to work on green phosphor , don't hire or pander to the kind of dumb-ass that needs clicky pointy and autocomplete and facebook/twitter/tumblr updates on the side. raise the bar. work will get done.
  That's cute.
  And I suppose when the new 29-year old social media hipster junkie walks in the room and introduces themselves as your new CEO, I'm curious how you're going to propose your new-and-improved hiring mantra.
  Or are you gonna just tell him to get off your lawn too..
8. Re:bring back the green IBM 3270 by armanox · 2014-12-12 07:45 · Score: 1
  
  You poor thing. I just spent two weeks working with an IBM 5250 on our AS/400..so I may feel some of your pain....
  
  --
  I'm starting to think GNU is the problem with "GNU/Linux" these days.
9. Re:bring back the green IBM 3270 by Miser · 2014-12-12 07:46 · Score: 1
  
  But the auto mechanic lets you drive your own car.
  *blink*
  OK, I'll need this one explained to me.
10. Re:bring back the green IBM 3270 by omnichad · 2014-12-12 07:55 · Score: 1
  
  You're equating users being able to really *use* their own machine as bad, and that locking down the machine is similar to what a mechanic does.
11. Re:bring back the green IBM 3270 by Anonymous Coward · 2014-12-12 07:57 · Score: 0
  
  If they is no button or option in the GUI to get the data, the data is absolutely secure!
12. Re:bring back the green IBM 3270 by TWX · 2014-12-12 07:57 · Score: 1
  
  There is an argument to be made for having office machines that only do workplace tasks though, instead of being general-purpose machines that do everything. Same can be said for education, that it makes sense to put technology in the hands of students that doesn't simply do everything, because humans are incredibly good at finding other things to do when they don't like the thing that they're supposed to be doing.
  
  --
  Do not look into laser with remaining eye.
13. Re:bring back the green IBM 3270 by AntEater · 2014-12-12 07:59 · Score: 1
  
  I know that I'm getting old and been in the industry too long when this idea gets me all excited inside. I honestly believe that you'd see huge gains in productivity with the focused work environment that the old serial terminal provided. Not to mention that the keyboard is orders of magnitude faster than anything requiring the mouse for most tasks. Where do I sign up for this?
  
  --
  Alex, I'll take keybindings not used by Emacs for $400....
14. Re:bring back the green IBM 3270 by armanox · 2014-12-12 08:01 · Score: 1
  
  Nah man. If he's a hipster, we'll just tell him we're using stuff that's obscure and the potential employees have probably never heard of them. I don't think that z/OS or IBM i are going mainstream anytime soon (well, not to the consumer world...)
  
  --
  I'm starting to think GNU is the problem with "GNU/Linux" these days.
15. Re:bring back the green IBM 3270 by Miser · 2014-12-12 08:06 · Score: 1
  
  Thanks, seriously - as it quite briskly went over my head.
  Using the machine is fine, within the constraints of the business. If I'm at a company that is doing Serious Business (tm), using Bonzi Buddy, Facebook, and all that stuff that has nothing to do with the aforementioned Serious Business is probably going to be on the denied list. The point I'm trying to make is more often than not, clueless CEOs (or clueless managers who suck the CEOs appendage) override the IT department.
  Move all of that Serious Business to the mainframe, and let IT manage that. Do whatever you want with your PC. If it gets infected, it gets removed, reimaged, and yet the mainframe is secure. Heck, I can make a one-floppy boot disk that makes any PC a 3270 terminal thanks to small Linux distributions and c3270. Perhaps I'm too far out in right field, but not too far. :)
16. Re:bring back the green IBM 3270 by mlts · 2014-12-12 08:06 · Score: 1
  
  For work use, a 3270 terminal does the job well, especially for point of sale systems. Just a terminal is pretty secure, as most likely the serial term servers are not connected to the Internet, and physically tapping the RS232 cable would require physical access.
  I would agree that now, having a 3270 emulator is a clean way of doing things. However, I wouldn't be surprised for an intruder to be able to use a RAT on someone's Windows box to slurp the user's password and use the 3270 via remote. If this wasn't the case, then I'd definitely recommend this route (although I'd present an alternative using a 3151/3153 and an AIX/Solaris backend with a curses interface as opposed to VM/ESA since old school UNIX experience seems easier to come by than Big Iron guys.)
  I definitely want to sub to your newsletter. In a way, all these breaches are making serial terminals sexy again, just because of the simplicity. Going back to serial terminals may not look as cool at some POS display with a flashy logo, but they do work, and with a good application designer, would work just as well as a graphical application, perhaps better, if the UI was made to be responsive. An attacker would have to have physical access, or have to go after the UNIX server, which is likely extremely hardened [1].
  [1]: Solaris 11 turns root into a role, and AIX can be configured to disallow root altogether, so UID 0 is just another user, no special attributes attached. Modern commercial UNIX variants can be locked down quite well.
17. Re:bring back the green IBM 3270 by Miser · 2014-12-12 08:12 · Score: 1
  
  I know that I'm getting old and been in the industry too long when this idea gets me all excited inside. I honestly believe that you'd see huge gains in productivity with the focused work environment that the old serial terminal provided. Not to mention that the keyboard is orders of magnitude faster than anything requiring the mouse for most tasks. Where do I sign up for this?
  I'm right there with you, Mr. Ant Eater. :) I find myself quite often bypassing the mouse in Windows, OS X, desktop Linux, and other operating systems and getting myself to a command prompt or equivalent and I can do things faster.
  I really think IBM is missing the boat also by not offering something similar to the OpenVMS hobbyist program for it's mainframe operating systems. I see Multiprise systems coming up on the used market and I swear some day I'm going to pull the trigger on a smallish system and stuff it in my basement. I'd much rather run it on Hercules legally. :)
18. Re:bring back the green IBM 3270 by Sir_Eptishous · 2014-12-12 08:14 · Score: 1
  
  Thats some lawn you've got.
  
  --
  We play the game with the bravery of being out of range
19. Re:bring back the green IBM 3270 by Miser · 2014-12-12 08:26 · Score: 1
  
  Why yes it is quite a lawn. No room for you though. :)
20. Re:bring back the green IBM 3270 by Anonymous Coward · 2014-12-12 09:38 · Score: 0
  
  Seriously?
  The 3270 never went away (in finance, anyway).
  My office currently has a web-based 3270 terminal emulator.
21. Re:bring back the green IBM 3270 by rizole · 2014-12-12 11:35 · Score: 1
  
  Wtf? Clicky pointy and autocomplete and facebook/twitter/tumblr updates ARE work you insensitive clod.
22. Re:bring back the green IBM 3270 by Anonymous Coward · 2014-12-12 13:20 · Score: 0
  
  >I think text consoles, though secure, are dead.
  So you are a windows administrator or clearly very junior. Everything complex in IT is still done (and likely always will be) via text. From development to low level network configs, database work and large scale systems administration. Sure some things may be wrapped in a pretty UI but at the end of the day editing configs and writing code is still editing configs and writing code.
23. Re:bring back the green IBM 3270 by Anonymous Coward · 2014-12-12 13:32 · Score: 0
  
  29 years old?
  kinda late to the party I guess. but ok, everyone has to follow their own path. maybe he spent years meditating on the beach in Thailand or something.
  But yeah, CEO.
24. Re:bring back the green IBM 3270 by jbolden · 2014-12-12 14:49 · Score: 1
  
  It exists: http://www.hercules-390.eu/
  As an aside I talked to the IBM guys. They offer Z-Series emulation as a service on SoftLayer via. Rational. So it isn't free but you can run Z-Series workloads pretty cheap for development and test.
25. Re:bring back the green IBM 3270 by Anonymous Coward · 2014-12-12 16:10 · Score: 0
  
  Huh? Ignoring the ad-hominems, I have not seen a physical VT 100 terminal/text console in a company in years. Physical terminals are rare these days, although not gone completely, and it is usually a legacy item. Serial ports abound (especially in the networking world), but that is usually handled by either some type of server or a laptop running minicom (a Linux serial emulator.)
  There is a difference between a terminal emulator like PuTTY which is a must have on the desktop in IT, and a physical dumb terminal attached to a serial port.
  As for Windows admins... even with Windows past 2008 R2, you have to know PowerShell, because the default install is Server Core, and it is a best practice to not install the full UI unless there is an absolute need for it.
  Even appliances such as a basic NAS like an Isilon cluster uses SSH and a UNIX shell. It is a lot easier to flip a permission by running "chmod 755 /ifs/data/foo" than it is to use the Web UI, even for some NTFS-like ACL.
26. Re:bring back the green IBM 3270 by hackertourist · 2014-12-13 00:06 · Score: 1
  
  This drivel is scored +5, Insightful?
  A text-only terminal is barely adequate for basic data entry, and useless at anything else. Guess what, basic data entry's about 1% of what office workers need to do these days. On an average day I write documents, create and edit drawings, and I create programs and scripts. All of which benefit from having 24" pixel-addressable screens and a decent GUI. Force me to work on a fucking terminal and my productivity goes through the floor.
  Your job is to SUPPORT the users, not hinder them at every turn.
27. Re:bring back the green IBM 3270 by jbolden · 2014-12-13 02:41 · Score: 1
  
  forgot to mention this
  
  However, that all falls on its face when the boss* wants to use dropbox
  
  Citrix makes there own dropbox like service called Sharefile. It integrates with Office at a deeper level, allows policy controls and integrates with the Citrix stuff. So the boss likes it even better. He's not saying he wants Dropbox, he is saying he wants an easy to use fileshare system with replication. You don't have to pick the low security one.
28. Re:bring back the green IBM 3270 by Miser · 2014-12-13 07:54 · Score: 1
  
  Yes, I'm familiar with Hercules - I even run MVS 3.8J on Hercules. What I'm looking for is a hobbyist style (a la OpenVMS) license for z/OS or z/VM that IBM would allow to run on Hercules legally. Heck even limit it a bit to discourage production use, but make it worth it for hobbyist use if a bunch of mainframe enthusiasts want to set up a system to play with a have a bunch of friends logon.
  The link you provided is just for Hercules. I'd like to register on IBM's website, download z/VM, VSE, or MVS - other program products too - then set it up on Hercules and go - legally. I would pay a nominal fee (less than $100 ?) per year to keep the "IBM hobbyist" program running.
  Just my $0.02.
  Also, I find it quite funny to hear all the younger folks making lawn jokes. The more things change, the more they stay the same. All this decentralization is going to bite everyone in the ass - it's only a matter of time.
29. Re:bring back the green IBM 3270 by Anonymous Coward · 2014-12-13 19:16 · Score: 0
  
  That's cute.
  And I suppose when the new 29-year old social media hipster junkie walks in the room and introduces themselves as your new CEO, I'm curious how you're going to propose your new-and-improved hiring mantra.
  Or are you gonna just tell him to get off your lawn too..
  A lot of shit gets put on mainframes but seriously, what have other platforms done but imitate it (albeit at a lower cost and performance back when IBM were riding high on it). On a cost per transaction basis mainframe is the way to go.
30. Re:bring back the green IBM 3270 by iggymanz · 2014-12-15 14:31 · Score: 1
  
  the places I have worked have business model viable for decades, no social media hipster in 20s need apply
31. Re:bring back the green IBM 3270 by Blaskowicz · 2014-12-16 18:12 · Score: 1
  
  Next best thing to a dumb text console I've seen was how a university treated its students. X11 terminals, Motif window manager, a login shell xterm (that makes all go poof if you close it!), Solaris 7 (no CDE, no file manager that we knew of).
  Graphical emacs and Netscape.. ugh! It was nice when we found out Mozilla 1.x was installed.
  These were generic computer labs, at the library or for more specific stuff you might get a Windows (or linux or even DOS) PC instead.
  Didn't stop us from running games (rather limited, no fullscreen 320x200 Quake at 60 fps)
  I should visit the labs to see if they upgraded things (newer Solaris on 1280x1024 panels, mouse with scrollwheel, still on MWM?)
Is it more difficult? by gstoddart · 2014-12-12 06:57 · Score: 4, Insightful

I can't answer if it's more difficult, or simply more challenging.
Increasingly, there seems to be more and more push for internal social media and the like.
There's clearly much more desire to see badges awarded for participating in discussions in Sharepoint than there is on having reliable servers.
So all the funding goes to the sexy mandates, with the apparent assumption that the stable boring stuff happens by magic and doesn't need funding.
Sometimes I find myself shaking my head, because when internally it becomes glitz over substance and functionality, the marketing idiots have screwed us all.
It is mind boggling to me that everyone seems to have gotten hoodwinked into thinking a "Like" button provides more benefit to the company than the things which keep corporate data intact.
It's like IT has become superficial and vacuous, and the decisions are being made by idiots who don't know which parts of technology add value to the business/support core business activities and are necessary.
I've seen "new collaboration tools" deployed in organizations that I immediately think "how the hell does this help me do my job, or improve anything in the company"? In some cases, I still don't have an answer.
But I've seen companies spend a lot of money on systems which add no real value, and which just siphon resources from things which do.

--
Lost at C:>. Found at C.
1. Re:Is it more difficult? by Sez+Zero · 2014-12-12 07:27 · Score: 1
  
  It is mind boggling to me that everyone seems to have gotten hoodwinked into thinking a "Like" button provides more benefit to the company than the things which keep corporate data intact.
  Maybe I'm lucky but I've only seen that where I work after all the basics are taken care of. With all of the tools and services available these days, I'd assume that the basics like data integrity, telephones are *locked down*. If your basics are causing trouble, you are definitely doing it wrong.
  I think more and more IT is becoming a manager of services, instead of a manager of servers. When there are companies out there making the basics easy to manage, then you can afford the time to get the Like buttons running.
2. Re:Is it more difficult? by khasim · 2014-12-12 07:50 · Score: 1
  
  I think more and more IT is becoming a manager of services, instead of a manager of servers.
  Services run on servers.
  Users access services that are running on servers.
  
  When there are companies out there making the basics easy to manage, then you can afford the time to get the Like buttons running.
  I keep getting marketing literature from companies promising that. But it never seems that they can deliver on their claims. Instead, it's just another service that needs to be maintained.
  Just PATCHING systems includes identifying/testing/deploying:
  firmware
  drivers
  OS
  apps
  for every server / workstation / switch / router / firewall / wireless connected to your network.
3. Re:Is it more difficult? by mlts · 2014-12-12 07:53 · Score: 4, Insightful
  
  IT can be completely different, depending on organization structure and people involved.
  I have worked in companies where the IT department always had stuff in testing and stayed ahead of the game, not just putting out reports, but workarounds when it became time to roll major upgrades out. I've worked in other departments which were purely reactionary, and the only thing they really did was fight fires with every purchase being under an emergency budget. I've seen the spectrum in between the two extremes.
  The problem with IT's reputation is that it is a cost center, and a highly visible one. IT also has a lot of factors, some at opposed ends. For example, if a sales guy demands that he is able to store confidential un-announced products on his personal laptop, how does one answer that demand and still preserve security? The exact answer depends on the organization [1].
  IT has always had that pitfall of the new and shiny, be it internal wikis that were deployed, then just sit there, untouched for years, to the cloud, to business social networks, to internal chat mechanisms, and so on. It takes both technical and social expertise to take all the noise and clamor from vendors busting down the door and create a usable, secure setup, while keeping in budget.
  The one most important factor is reacting to change. Flexibility is crucial. For example, even though individual machines with drive arrays work well, moving to a SAN in the data center [2] is a necessary move for most applications. Similar with moving from racks of physical hardware to a VM infrastructure [3]. Network-wise, the future will be about dealing with edge devices (IoT stuff), and perhaps even having a separate WAN that is shared among companies that uses leased lines so that business transactions run on a separate network than the Internet.
  [1]: One organization would give the sales guy the middle finger. Another would just allow him to email the plans to customers and call it done. In between would be a company laptop with decent FDE on it (BitLocker + TPM), and so on.
  [2]: Pick your protocol. iSCSI is the cheapest to implement, but FC is decent, as it is most likely a separate fabric so if the network goes down, your drives stay up. Ideally, if you have compute nodes (like ESXi machines), you have everything boot from the SAN.
  [3]: Again, this varies on application.
4. Re:Is it more difficult? by pr0fessor · 2014-12-12 08:12 · Score: 1
  
  collaborative tools are kind of a double edged sword... there are thousand of packages claiming to be collaborative tools and only a very small percentage of them focus on what really makes collaboration possible. Collaboration requires communication and without out that if you have a geographically diverse team then you suffer.
  I work with people from all over the country every day and because they are comprised of many different companies {that we purchased and gobble up} there are multiple packages out there that I have to deal with. The solutions are usually junk and have some kind of project management software built in that some exec wanted, these solutions are half used and end up being a waste of time and money.
  The solutions that work well are more along the lines of web-meeting or chat clients with audio/phone conferencing, file/screen sharing, and white boards many are not even label as collaborative tools but serve the purpose very well.
5. Re:Is it more difficult? by Rich0 · 2014-12-12 08:19 · Score: 1
  
  It isn't just IT. Management fads seem to be everywhere. People go where the incentives are. If doing something akin to internal marketing gets you a promotion, guess what you're going to do?
  Consulting companies pay artists and designers to work on powerpoint presentations, or at least to teach their consultants how to design snazzy slides and arm them with a mountain of templates. That all happens off the official bills but obviously the cost gets baked in. They do it for the same reason that ads always look pretty - they know that it impresses internal management at the client and it makes the guy who decided to hire the consultants look good, so that he gets more power in the company and more discretion to bring in more consultants.
  I learned a long time ago to read between the lines and work on the stuff that the managers "really" want. That project that has no business case that nobody has the guts to cancel - you put in the minimum effort so as to not outright be insubordinate and get yourself assigned to some hot project that is going to get rewarded and when they ask you to do things on the dead-end project you just say you're too busy and let the hotshot PM on your other project dump ice water on whoever asked you to do something unimportant. In the end the dead-end project fails and probably gets branded as a success and you haven't sidelined your career serving it.
6. Re:Is it more difficult? by Anon-Admin · 2014-12-12 08:55 · Score: 1
  
  IThe problem with IT's reputation is that it is a cost center
  Next time a manager points that out to you, ask them where it comes from. Oh look it comes from Accounting and they are a cost center as well. Oh and so is Marketing,
  There are lot and lots of examples where IT was divided off the business and the department began billing all the other departments for the work preformed. In every one of those instances IT becomes one of the biggest profit centres in the company. It is amazing what happens when the IT department has to be paid for the services provided.
7. Re:Is it more difficult? by goarilla · 2014-12-12 09:07 · Score: 1
  
  I see ... you hate YAMMER too :D.
8. Re:Is it more difficult? by pla · 2014-12-12 09:15 · Score: 1
  
  It's like IT has become superficial and vacuous, and the decisions are being made by idiots who don't know which parts of technology add value to the business/support core business activities and are necessary.
  
  Given that IT itself doesn't typically get to decide what services the company expects it to provide, I'd say you've pretty much nailed it with that quote - IT (at least the externally-visible aspects of it) has become superficial and vacuous, with the decisions made by idiots who can't tell "shiny" from "useful". You just need to clarify who makes those decisions.
9. Re:Is it more difficult? by goarilla · 2014-12-12 09:18 · Score: 1
  
  The one most important factor is reacting to change. Flexibility is crucial. For example, even though individual machines with drive arrays work well, moving to a SAN in the data center [2] is a necessary move for most applications. Similar with moving from racks of physical hardware to a VM infrastructure [3]. Network-wise, the future will be about dealing with edge devices (IoT stuff), and perhaps even having a separate WAN that is shared among companies that uses leased lines so that business transactions run on a separate network than the Internet.
  
  Doesn't this require a decent sized company to begin with (+1000 users) or one with a specific need.
  A SAN and virtual infrastructure isn't exactly cheap.
10. Re:Is it more difficult? by Anonymous Coward · 2014-12-12 09:22 · Score: 0
  
  Bah, services are _applications_. Where you run them.. is really quite arbitrary. Or should be, if you're doing it right.
  With Java and VM technology, you're sufficiently abstracted away from the bare metal your other mentions from the OSI model becomes moot.
  Point is, if you aim for perfection at all times, the market outruns you and you bankrupt yourself.
  It's been an evolution the whole time.
11. Re:Is it more difficult? by skids · 2014-12-12 12:42 · Score: 1
  
  I keep getting marketing literature from companies promising that. But it never seems that they can deliver on their claims.
  
  Yeah pretty much it goes like this:
  1) Outsource existing application, burn out your IT staff on the migration effort, lose some IT staff
  2) Try to get new application customized to a new need.
  3) Remaining IT staff tied up in meetings and phone calls delineating the new need to the service provider.
  4) Refresh all progress made in 3) again when your point of contact at the provider moves on to another company.
  5) Eventually end up with consultants from the provider working as many FTEs on premisis as your IT staff did.
  
  --
  Someone had to do it.
12. Re:Is it more difficult? by skids · 2014-12-12 12:55 · Score: 1
  
  I have to agree with GP. SAN and virtual infrastructure isn't cheap, but neither are competent rack monkeys or business quality switchports. As long as you can avoid some of byzantinisms of managing the VMs it's better to have a sysadmin that does VM management part time than waste your network guy's time doubling as a rack monkey when he needs to be plumbing new features on the equipment. You end up with more talent at your disposal.
  
  --
  Someone had to do it.
13. Re:Is it more difficult? by maple_shaft · 2014-12-12 14:29 · Score: 1
  
  It's like IT has become superficial and vacuous, and the decisions are being made by idiots who don't know which parts of technology add value to the business/support core business activities and are necessary.
  I think it is pretty obvious that IT has become superficial and vacuous because the people leading IT in most organizations are superficial and vacuous status seekers. A long long time ago IT departments were typically run by the grey beards that were running network cables and standing up servers before they were promoted to management. Having had a long career of rolling their sleeves up, they were by and large adequately prepared to lead in IT services for the company.
  Today organizations proudly proclaim that they merge business and IT so that the benefits of IT can be greater realized. It sounds good on paper, but what happened in reality is that business folks have dominated the old IT departments. We have MBA's running the show now that do not understand the first thing about upgrading a woefully outdated legacy software package or performing necessary server maintenance.
  Companies that used to promote their people from within no longer do. These departments are now riddled with the same problem people you see in middle management of most companies. Status seeking, brown-nosing, buzz word feeding, cost cutting and blame passing. It is easy to see why the departments they run are also superficial and vacuous.
14. Re:Is it more difficult? by AK+Marc · 2014-12-13 06:50 · Score: 1
  
  I find the reason it's a problem is the people, not the tech. People in IT are conservative. They know that one mistake can cause great loss. So they (personally) are risk averse. This causes the IT staff to be against BYOD and other "obvious" things in a manner that makes IT look dumb. Once they are so conservative that the average user can recognize their stupidity, they lose all credibility. Most IT these days seems to spend more time managing risk, and coming up with excuses to not do things, than just doing them.
  
  I worked for an ISP that was doing a major upgrade and could have easily gone to IPv6 at that time. But IPv6 is still "blocked". The sole reason? The guys working on it haven't used IPv6 before, so rather than learn something new, they spent more time explaining how it "wasn't tested" and "the other guys don't do it yet" and such. In the '80s, people got into IT because it was a place to play and experiment. In the '00s, people got into IT because it was a place with money. The tinkerers are almost all gone. We have high-paid secretaries, and admins who don't do much more than open tickets with manufacturers who dominate IT (at least where I see it from).
  
  But I've seen companies spend a lot of money on systems which add no real value, and which just siphon resources from things which do.
  The rule is the system should be built to support the process. Instead, today I only see people buy a system and assert the process should follow the system. And I've never seen that work.
  
  --
  Learn to love Alaska
15. Re:Is it more difficult? by AK+Marc · 2014-12-13 06:52 · Score: 1
  
  VM is cheap. I've seen retired desktops thrown into the VM pool. It takes a better class of VM admin to manage lots of unreliable hardware to make a reliable infrastructure, but since Google has been doing it for years, others are starting to figure it out.
  
  --
  Learn to love Alaska
Eh.... by erth64net · 2014-12-12 06:57 · Score: 0

Difficult? Eh, only if you've been living under a rock; unable to learn, grow, and change with the times. IT is all about communications, documentation and change...when you stop changing, you stop being part of the solution.
1. Re:Eh.... by Anonymous Coward · 2014-12-12 07:08 · Score: 0
  
  Difficult? Eh, only if you've been living under a rock; unable to learn, grow, and change with the times.
  IT is all about communications, documentation and change...when you stop changing, you stop being part of the solution.
  Changing with the times has little to do with the fact that 30 years ago your corporate data could only live in so many places.
  Today, try and draw a line around your sensitive corporate information. You'll find it's a bit of a bitch when the BYOD crowd is beating down the IT door demanding to real-time sync everything to a device they carry around drunk in a bar.
2. Re:Eh.... by erth64net · 2014-12-12 07:36 · Score: 1
  
  Well, we're talking about enterprises, so it's only fair to bring up PCoIP. Even Amazon is on that bandwagon, with their Workspaces service (which we're building out an entire medical clinic with next month).
  
  Where's your enterprise data now?
I'm even older. by xxxJonBoyxxx · 2014-12-12 07:05 · Score: 1

>> Who's old enough to remember when the best technology was found at work, while at home we got by with clunky home computers and pokey dial-up modems?
I'm even older. I remember when the best technology was at home, on our personal computers. From there, PCs started invading the workplace...finally breaking up a lot of the control held by an iron-fisted, non-innovative, mainframe-based IT department.
1. Re:I'm even older. by kbrannen · 2014-12-12 07:50 · Score: 1
  
  I joined the profession just after PCs were moving into the coporate world. At that time where I worked, the really good stuff ran on expensive "workstations" I couldn't possibly afford, personally. Now days, the equipment is so affordable that the computer setup I have at home is better than my desktop setup at work. That creates it's own kind of stress, for me in having to use "lesser stuff" and for the IT department when I keep asking for something better ... not a problem we had in "the old days".
2. Re:I'm even older. by jbolden · 2014-12-13 02:02 · Score: 1
  
  Well said. We've been through this cycle before. The mainframe guys had the same pessimistic can't do attitude as the younger IT guys often have today. I thought it was youth but it seems to be the environment you came up in. They can't do IPv6 because it is backwards incompatible. We ripped out DECNet and IPX to put TCP/IP in months.
3. Re:I'm even older. by jbolden · 2014-12-13 02:06 · Score: 1
  
  The issue isn't that. Ask yourself why aren't you using a $30k workstation class computer running software you couldn't possibly afford at work? The workplace software has partially stagnated to the point it doesn't take advantage of faster hardware.
  The faster stuff at home is the result of a cycle of failure due to post 2001 budget cuts and year after year IT departments trying to just keep the lights on.
Question doesn't match by nine-times · 2014-12-12 07:08 · Score: 3, Insightful

It seems to me that the question asked in the headline doesn't quite match the summary:
"Is managing IT harder now than it used to be? I think it is, and I offer as my support that IT executives are not as influential as marketing executives!"
In a lot of ways, IT management is probably easier. The technology is better and more reliable. We have a new generation of cloud management and MDM for all kinds of things. Managing an IT department is hard, but it's always been hard.
But I think what you're really getting at is, businesses don't want to spend money in IT. The reality is, they never did. I've been working in IT for a couple decades now, and the whole time, there's always been budget issues where upper management is saying, "Do we really need to buy new workstations? Didn't we just buy new workstations 7 years ago?" Sure, a couple decades ago, they were saying, "Didn't we just install the terminals 7 years ago?" but the concept was the same. I doubt it was new then, either. Businesses don't like to spend money, and IT gets classified as a cost center.
Sure, "the cloud" makes it all a bit worse, since now clueless executives can say, "It's all this stuff supposed to be free now? I have a Dropbox account that I use for personal stuff, and it works great, and it's free. Can't we just put all of our servers in the Cloud like Dropbox is?" But is it new that marketing is driving business decisions more than the IT department is, or that clueless executives want to replace everything with whichever buzzword-heavy technology that they've recently heard about? Nope. That's pretty much the deal.
1. Re:Question doesn't match by hax4bux · 2014-12-12 07:33 · Score: 1
  
  My favorite conversations always happen after the executives have a nice lunch w/a vendor.
2. Re:Question doesn't match by afidel · 2014-12-12 08:26 · Score: 1
  
  I doubt it was new then, either. Businesses don't like to spend money, and IT gets classified as a cost center.
  Then your IT department needs to become a business partner and enabler. That's the tact we've taken, the vast majority of our costs are in projects, and we let the business drive those with us helping to steer them, if someone complains about IT spending we ask them which of their projects they want us to defund. We recently completed an acquisition equal to about 40% of the size of the company, without adding any significant headcount, all because our IT systems have gotten to the point where the business can absorb that many extra units without adding significantly to their workload and the work around the new assets is mostly loading the data into the system which we do for them. Since we've taken this approach our budget issues have become almost non-existent and our interaction with the business have become much less adversarial.
  
  --
  There are 4 boxes to use in the defense of liberty: soap, ballot, jury, ammo. Use in that order. Starting now.
3. Re:Question doesn't match by skids · 2014-12-12 13:11 · Score: 1
  
  The technology is better and more reliable.
  ...but balefully less well documented, and full of feature sets that managers want to turn on that make it less reliable than the old gear/ware.
  Really, if equipment and software providers would spend even 10% of what they do on sales on good documentation written by technical writers with priority access to engineers, IT would be 5 times simpler, and the presence of the documentation would more than make up for the lack of a few powerpoint slides and SE visits. Almost ALL my time is wasted trying to either figure out product behavior on my own or rub elbows with enough people until I find someone who can offer proper technical answers.
  
  --
  Someone had to do it.
4. Re:Question doesn't match by Anonymous Coward · 2014-12-12 13:25 · Score: 0
  
  Get better vendors. Stop supporting Microsoft, Oracle and VMware. They fucking blow.
5. Re:Question doesn't match by Jack+Griffin · 2014-12-13 21:50 · Score: 1
  
  The clueless executive in your example is usually the CIO. I've worked for both types, and a good one will ensure the CEO commits and signs off on the CIO strategy for the course of the next x years. Server/Desktop refreshes committed, Application projects committed. A budget for new & unknown upcoming tech committed. A good CIO should know what is required to run an IT dept, and should be able to sell this up the chain. This is what allows the IT Dept to do its job.
6. Re:Question doesn't match by Anonymous Coward · 2014-12-15 05:44 · Score: 0
  
  In what world should an IT executive be as influential as a marketing executive? Are you honestly suggesting that internal business operations take priority over revenue/mission? That probably sounds logical to an IT guy, but in the real world its crazy talk. The business is there to make money, not to do IT. (unless it's an IT company) Corporations/organizations have invested gajillions of dollars in IT over the last few decades, and a huge chunk of it was a total waste, paying for things that had huge sustainment costs that are today easily outsourced. The concept of corporately managed infrastructure is a slowly dying dinosaur, and over time the rest of the stack will crumble as well.
  Bottom Line - Corporate leaders understand that stuff costs money, but it shouldn't cost the money they have historically spent.
I don't care what the user has at home by Anonymous Coward · 2014-12-12 07:11 · Score: 0

We're (IT and the company they work for, in general) not here to provide them with all the comforts of their home PC. I'm sorry, it's a job. Would I rather be working from my slick new laptop with the solid state drive and no security concerns? Sure, but that's not a reality on many different levels. On top of that I don't write the policy and I don't set the budget. Maybe they can land one of those "work from home for 2000 a week" jobs, Good luck.
1. Re:I don't care what the user has at home by FictionPimp · 2014-12-12 07:15 · Score: 1
  
  We say things like that, but then we also say things like "We can't seem to attract talent."
  I wonder if forcing our staff to use 8 year old locked down computers, blackberries from 2005, and draconian email access/other rules are related.
2. Re:I don't care what the user has at home by Anonymous Coward · 2014-12-12 07:23 · Score: 0
  
  I don't know where you're at but we have no problem getting the people we need through our doors. If you're honestly going to turn down a position because your home hardware is better than what you get at work then you must not be too serious about the real reason to have a job; results. Not to say that every policy is reasonable but it's not like we're asking people to turn big rocks into smaller rocks with a sledgehammer for 16 hours a day. This stuff isn't hard, let's not get out of hand about what having a job really means.
3. Re:I don't care what the user has at home by Anonymous Coward · 2014-12-12 07:47 · Score: 0
  
  Tell that to a creative who's debating between freelancing on his own or taking a steady job. Crap hardware at work means less productivity which means a smaller portfolio for future work. And that's the first industry I thought of.
4. Re:I don't care what the user has at home by enjar · 2014-12-12 07:58 · Score: 1
  
  the real reason to have a job; results. Not to say that every policy is reasonable ... let's not get out of hand about what having a job really means.
  I did pass up a job opportunity when I discovered that everything was proprietary, everything was locked down and it was all "policy". It honestly sounded like getting the simplest things done were going to be a nightmare of request forms, meetings, etc. It's hard to get results when you aren't granted some level of autonomy as a professional, and being able to try things out and prototype.
  Also keep in mind with the unemployment numbers where they are, anyone isn't going to have much of a problem filling a vacancy. The problem is going to be when the job market frees up again or when that hire gains enough experience, are they going to be out the door to somewhere with less administrative crap and bureaucratic oversight, taking their experience and institutional knowledge with them? In my office, it can easily take 3-6 months to being a new person up to speed to where they can start contributing -- not because they are an idiot but because they need to learn the codebase, the tools, the review process, the bug system, who does what, who knows what, etc. After they learn all that they become a lot more valuable, and after they have been doing it a few years, they are really valuable because of the human connections they make -- in addition to technical knowledge.
5. Re:I don't care what the user has at home by __aaclcg7560 · 2014-12-12 08:01 · Score: 2
  
  I turned a down job offer from a MULTI-BILLION-DOLLAR MEGACORPORATION (the hiring manager emphasized this point a half-dozen times during the interview) that refused to use an effective anti-spyware program because the smaller company made ONLY several million-dollars in yearly revenue, forcing their IT technicians to spend hours manually removing rootkits, viruii and other crap. If IBM made the anti-spyware program, no problem. Little company, forget about it. I've never seen a more elitist form of corporate dysfunction.
6. Re:I don't care what the user has at home by armanox · 2014-12-12 08:07 · Score: 1
  
  We cycle users systems on a 3-4 year basis. Do most of our users have home systems that are far more impressive? Yes, and some of our users have a server rack of their own equipment at home too. That i5 Dell laptop with 8GB RAM, encrypted HDD/SSD, AV, log monitoring and reporting, etc; isn't likely going to perform as fast as the six core w/HT i7 you're running at home with a RAID 0 of new SSDs and a GTX 770, but it works well enough to get the job done. If your users are still using 8 year old hardware, there are probably other issues at play too.
  
  --
  I'm starting to think GNU is the problem with "GNU/Linux" these days.
7. Re:I don't care what the user has at home by pete6677 · 2014-12-12 08:22 · Score: 1
  
  These are the type of companies that buy BMC products. Bloated and expensive must mean it's better, right?
8. Re:I don't care what the user has at home by ranton · 2014-12-12 08:34 · Score: 1
  
  I don't know where you're at but we have no problem getting the people we need through our doors. If you're honestly going to turn down a position because your home hardware is better than what you get at work then you must not be too serious about the real reason to have a job; results.
  
  I will absolutely turn down a position if they care so little about their employees and their productivity to give them substandard equipment. I am never going to sit around for a spinning disk hard drive to load my applications again, or deal with a computer with under 16 GB of RAM. If a company is going to complain about $1000 in yearly hardware purchases so I can have a new laptop every three years, two decent monitors, and noise cancelling headphones, how are they going to treat me as an employee? When I am approached for a job I take effort to notice the quality of the equipment I see their current employees using. I have never seen an employee with bad equipment treated well by their employer, and rarely see employees with amazing equipment treated poorly.
  Perhaps you don't have trouble attracting employees, but if you treat your employees poorly you will have trouble attracting good employees. Most people have never worked at a company where almost all their coworkers are top notch, so they don't even know what they are missing.
  And regardless of a company's respect of their employees, it is simply unproductive to give people slow hardware. Shaving $500 per year in hardware costs per employee is less than 1% of even a low paid IT worker. I have seen the result of 4 year old laptops that weren't even top of the line when they were new. It involves a lot of wasted time waiting for apps to load and dealing with constant crashes or reboots.
  
  --
  -- All that is necessary for the triumph of evil is that good men do nothing. -- Edmund Burke
9. Re:I don't care what the user has at home by FictionPimp · 2014-12-12 08:35 · Score: 1
  
  Imagine being a project manager who can't access her calendar on her phone. Instead she has to VPN in and use OWA. Imagine being forced to use 17 inch 3:4 displays.
  I wouldn't take an IT job where the environment was old and busted. Why would anyone want to be a programmer for us knowing they have to use slow computers, work in a cramped cube, on a slow VM, with no support for their devices and no thought put into how they would like to work?
  I don't expect a brand new PC every 2 years. I expect to use modern technology. That means I can get my email via activesync on my cell phone and not carry around a blackberry and my cell phone. That means having an IT department that rather than dictate, meets with it's customers (the employees) and finds out what they need to do their job. Then they figure out who to safely give them those needs within the policy defined by management. That means having management that is reasonable and listens to the needs of it's staff and IT.
  So yes, I am going to spend 40+ (Let's be realistic more like 60+) hours a week working. I want that time to be enjoyable. If I don't get a nice workspace, nice computer, nice tools to do my job, etc then I'm going to find a job that gives me those things.
10. Re:I don't care what the user has at home by Anonymous Coward · 2014-12-12 08:38 · Score: 0
  
  Tell that to a creative who's debating between freelancing on his own or taking a steady job.
  What the hell is a "creative"? Is it anything like a "grammatically correct"?
11. Re:I don't care what the user has at home by ranton · 2014-12-12 09:02 · Score: 1
  
  Tell that to a creative who's debating between freelancing on his own or taking a steady job.
  What the hell is a "creative"? Is it anything like a "grammatically correct"?
  Well, since you can't read a dictionary, here you go:
  Creative (noun)
  1) one who is creative; especially : one involved in the creation of advertisements
  2) creative activity or the material produced by it especially in advertising
  I assume he was going with the first meaning.
  
  --
  -- All that is necessary for the triumph of evil is that good men do nothing. -- Edmund Burke
12. Re:I don't care what the user has at home by Anonymous Coward · 2014-12-12 11:18 · Score: 0
  
  "Creative" = designers, copywriters, advertisers, etc.
13. Re:I don't care what the user has at home by Anonymous Coward · 2014-12-12 11:23 · Score: 0
  
  I've never used a computer with over 4 GB of RAM. Is there really a difference? What kind of malware are you running?
14. Re:I don't care what the user has at home by skids · 2014-12-12 13:17 · Score: 1
  
  No, he's definitely right. Work/life balance is definitely a factor in retention. If you can't check into your home security cam to see if your dog is chewing on the sofa, that may be worth a couple hundred in salary to you, and tens of those little things add up.
  
  --
  Someone had to do it.
15. Re:I don't care what the user has at home by jbolden · 2014-12-13 02:12 · Score: 1
  
  A multi-billion dollar megacorporation can handle this at the network level, via. the systems group... I can understand them not being interested in a product from a small company. That small company is uncontrollable with only several million dollars in revenue that means one guy's interests control the company who is just now finding financial success. Does he decide to roll it into a life at a ski resort or does he decide to keep innovating? That's not dysfunction.
  That being said there are plenty of large company anti-spyware, ... products including from vendors like Symantec, CA... And there are network security and monitoring tools which trap those sorts of things, by yes IBM.
16. Re:I don't care what the user has at home by Anonymous Coward · 2014-12-13 03:17 · Score: 0
  
  I expect to use modern technology. That means I can get my email via activesync on my cell phone and not carry around a blackberry and my cell phone.
  Ummm, you do know that blackberries have been using activesync for a couple years now, right?
17. Re:I don't care what the user has at home by ConceptJunkie · 2014-12-13 03:23 · Score: 1
  
  Perhaps the person is a developer. I normally running a VM, sometimes two or three. My machine has 20GB of RAM and it gets used.
  
  --
  You are in a maze of twisty little passages, all alike.
18. Re:I don't care what the user has at home by Culture20 · 2014-12-13 05:42 · Score: 1
  
  Quit nouning adjectives. It's as annoying as verbing nouns.
19. Re:I don't care what the user has at home by __aaclcg7560 · 2014-12-13 05:49 · Score: 2
  
  The hiring manager told me that 90% of the job would be manually removing the crud from systems because anti-spyware and virus infections were frequent events. The last Fortune 500 company I worked for that had a virus outbreak was back in the 1990's. I guess Microsoft Defender isn't that good. I've never seen an IT shop so screwed up before.
  The hiring manager also told me that the companies I worked for before -- Cisco, eBay, Fujitsu, Google, Intuit, Sony, and many smaller companies in between -- weren't real companies. This smug arrogance got on my nerves. He was shocked when I rejected his job offer. The job I did accept paid $8/hr more with benefits and has a network that's 20X larger than the "real" megacorporation.
20. Re:I don't care what the user has at home by Anonymous Coward · 2014-12-13 06:00 · Score: 0
  
  I turned a down job offer from a MULTI-BILLION-DOLLAR MEGACORPORATION (the hiring manager emphasized this point a half-dozen times during the interview) that refused to use an effective anti-spyware program because the smaller company made ONLY several million-dollars in yearly revenue, forcing their IT technicians to spend hours manually removing rootkits, viruii and other crap.
  This is ridiculous. The correct steps for spyware removal at MB$MC IT are:
  1. Spyware detected
  2. Replace computer with identical pre-imaged computer.
  3. Ask user whether any data on the computer is unique and necessary (probably not if good practices are used)
  4 Take computer to information security group to see if they want to investigate (they probably noticed the infection first)
  5 Upon receipt of computer back from information security, optionally copy data for user
  6 reimage computer
  7 put computer in pool of "to be used for replacements" computers
  
  Very little time spent fiddling with anything. User gets back to work in minimal time.
21. Re:I don't care what the user has at home by __aaclcg7560 · 2014-12-13 06:35 · Score: 1
  
  2. Replace computer with identical pre-imaged computer.
  This megacorporation doesn't have any extra pre-imaged computers. They do have a couple of loaner laptops for the executives. Everyone else has to wait two- to four-hours for the technician to clean up their system. Re-imaging a system is only allowed if Windows can't boot up and the data can't be recovered. The hiring manager conceded that an anti-spyware tool would fix many of these systems in 15 minutes. But that wasn't megacorporate policy.
22. Re: I don't care what the user has at home by Anonymous Coward · 2014-12-13 06:59 · Score: 0
  
  You've worked for Cisco, eBay, Fujitsu, Google, Intuit, Sony, and now a company that has a network 20x larger than mega-corporations? Jesus, do you give private tutoring lessons?
23. Re:I don't care what the user has at home by jbolden · 2014-12-13 07:48 · Score: 1
  
  The hiring manager told me that 90% of the job would be manually removing the crud from systems because anti-spyware and virus infections were frequent events.
  
  I think you need to break apart 3 issues:
  a) The manager not handling a problem well and using labor where they shouldn't.
  b) What the best solution is for anti-virus
  c) Why big companies can be reluctant to engage smaller companies
  I'm defending (c) not (a).
  
  The hiring manager also told me that the companies I worked for before -- Cisco, eBay, Fujitsu, Google, Intuit, Sony, and many smaller companies in between -- weren't real companies.
  
  Sony? They are like $60b a year in revenue and global across a ton of industries. The guy seems like an idiot.
24. Re: I don't care what the user has at home by __aaclcg7560 · 2014-12-13 09:25 · Score: 1
  
  I used to teach Sunday school. Need some lessons?
25. Re:I don't care what the user has at home by FictionPimp · 2014-12-15 01:26 · Score: 1
  
  I know that. I was apparently not clear.
  I have two choices.
  1) Carry around my personal cell phone (nexus 5) and a blackberry that is 5+ years old (for work email).
  2) Carry around my personal cell phone, and check my email via webmail because my boss will not allow activesync on personal devices.
  3) Find a new job.
  3 was a good answer.
Well duh by Krishnoid · 2014-12-12 07:14 · Score: 1

You would have problems managing a distributed, literally mission-critical computing infrastructure too, if it was constantly getting hit by phaser, photon torpedo, and 'weapon of the week' fire, not to mention entities that don't respect fire/air/vacuum-walls. Seriously, do they even have an IT group?
1. Re:Well duh by Sez+Zero · 2014-12-12 07:30 · Score: 1
  
  Seriously, do they even have an IT group?
  Yes, they wear the red shirts of Engineering.
2. Re:Well duh by armanox · 2014-12-12 07:52 · Score: 1
  
  Actually, I am more interested in their network security. All of their data leaks seem to be inside people more so then the network itself was compromised.
  
  --
  I'm starting to think GNU is the problem with "GNU/Linux" these days.
CIOs are reaping what they've sowed by david.emery · 2014-12-12 07:14 · Score: 1

After years of insisting that the rest of the organization exists to make the CIO's job easier, it's great to see the 'revolt of the masses' moving away from the one-size-fits-all/everything-Microsoft-regardless-of-the-security-cost solution to stuff that makes the individual more productive.
The complexity of everything makes the IT job harder, but "I can't be bothered to learn new things" response to the user demand for alternatives is ultimately self-defeating.
As a side observation over the last 35 years in the business, systems that support multiple platforms/clients/etc tend to be a lot more reliable than those that support a single configuration. The unwritten and often unknown assumptions about the execution environment (client or server, etc) are latent bugs even in a monoculture. (I'm certainly old enough to remember how much software broke in the move from 32 bit to 64 bit; anyone who coded as if integers and pointers are same size/interoperable got all the problems s/he deserved!)
I feel old-school by Anonymous Coward · 2014-12-12 07:16 · Score: 0

I've had many (not too happy) confrontations with marketing lately, which I believe basically thinks our ~10-ppl company could do without any competence in IT.
It's funny because I've always thought of my job as being modern, cutting-edge, you know doing technology and all. Never before had I realized I was on the conservative side of things.
But it's true. Maybe it's changed or it has always been. While marketing will put forth a hundred short-lived ideas I do strive for stability, for things to be scalable and durable.
And maybe those marketing guys are right. They could kill IT in that 10-ppl company and might well get away with it. They probably would recreate an "online-app-maintenance" guy with much lesser influence and be done with internal IT with in-house developpers.
It's been 8 years since I started working. It's not quite like I've spent a whole 30+ year career in IT.
1. Re:I feel old-school by Culture20 · 2014-12-12 10:43 · Score: 1
  
  They could kill IT in that 10-ppl company and might well get away with it. They probably would recreate an "online-app-maintenance" guy with much lesser influence and be done with internal IT with in-house developpers.
  And in 2-3 years, they'll have removed all redundancy thinking it's bloat. They'll even have switched the one server from your RAID 10 setup that you started them with to be a RAID 0 with four drives because that's how the "online-app-maintenance" guy runs his home gaming rig. After 4 years, the company will lose everything.
  
  While marketing will put forth a hundred short-lived ideas I do strive for stability, for things to be scalable and durable.
  You're not a fuddy-duddy. You know what these ideas are that marketing is putting forth, and you know that they'd be good for a short time, but your job is to think long-term. You're protecting the company from baring its rear.
tools are better by paulpach · 2014-12-12 07:17 · Score: 1

Perhaps requirements have increased. Your users in your enterprise might demand mobile support and whatnot, but at the same time, the tools are getting better and better.
For example: you need a server? well, it used to take months to get your server in the datacenter up and functional. Now, it is a matter of instantiating a new VM in your private cloud.
The impact is even more dramatic for small companies. Want to make a web application? create an account in azure or amazon or any other cloud provider, and just deploy your app in a few minutes. Email, storage, databases, backups, version control systems, project planning tools, ecommerce sites, you can set any of that stuff up in a few minutes with a few clicks, often for free.
If anything IT, particularly for small businesses, has been simplified to where it is a cheap commodity and just a few clicks away.
Corporate is a Captive Audience by PPH · 2014-12-12 07:18 · Score: 2

And as such is a juicy target for all the hucksters. Home users can switch if they get pissed off at one brand. And nobody really needs Facebook anyway. But sitting at your desk at work, you will use what they tell you to. And when the people selling crap to corporate IT discovered this, it was game on for thousands of dollars per seat for licenses. And then there was the blow-back. Many BODs looked at the IT spending and realized that they were getting screwed by travelling salesmen. And they tightened the purse strings.
I worked in and around a few IT projects at Boeing back in the 1990s. Back when "The Web" was becoming viable for enterprise applications. But before vendors caught on that their precious "green screen" mainframe apps could be replaced for pennies on the dollar by a couple of smart people. But once they caught on, they convinced the (newly created position of) CIO that the only way to maintain corporate credibility was to be juggling a bunch of billion dollar development and procurement projects. You are measured by the budget that you consume. Finally, when the non IT management types started seeing the TV ads with the empty data centers, except for that one tiny rack in the corner that replaced it all, they cut off the blank checks, cocaine and hookers.

--
Have gnu, will travel.
1. Re:Corporate is a Captive Audience by david.emery · 2014-12-12 10:37 · Score: 1
  
  ... You are measured by the budget that you consume. ....
  Mod parent up insightful!
Magical by puddingebola · 2014-12-12 07:25 · Score: 2

I have found the Cloud to be a magical place. Come, come and join me in... "the Cloud."
There are many more good questions now by enjar · 2014-12-12 07:26 · Score: 2

Back in the days of dial up modems, green screen terminals and WordPerfect, there were not as many questions and difficulties because there were just so few valid answers. As technology grew to answer those questions, of course it became more difficult to manage simply because things got better. I recall connecting to some places at 300 baud -- when you can watch text download in real-time, of course you want a faster connection. With green screens and non WYSIWIG computing, you wondered why it was such a pain in the ass to get a document to look right and why the computer couldn't just show you what it would look like so you could not have to waste reams of paper.
Nowadays, when you can get a decently fast Internet connection that delivers realtime HD video for less than a hundred bucks a month, is it so weird to ask why bandwidth is limited at work? When many providers will give you gigabytes (or unlimited -- services like CrashPlan) storage space for free for something around $10/month, is it odd to ask why there is a storage quota measured in megabytes? When you see commercial websites that regularly update their UI, why is it so weird that people want to know why no effort is being expended to update some godawful internal tool that hasn't been touched in more than a decade?
Of course, there can be valid answers to the above -- your industry may have reporting requirements, retention requirements, backup requirements, regulatory requirements and/or a grab bag of other things (reliability, testing, etc) that make your costs for providing services very high, and the change process rather onerous. But it doesn't make the questions wrong, you just can't say "we are IT and we control" any more -- you likely need to be more well versed in your industry, or be able to communicate clearly why you still have legacy systems or how much an upgrade would cost, or how much a decent storage array and backup system costs to run.
A lot of these changes also show that IT is fairly well integrated into our daily lives, and it's no longer a "mystery" to a lot of people -- which is good because it opens the opportunity for better partnerships with company departments to do cool stuff. Rather than sit around waiting for someone to suggest a project, why not get out there and ask the departments in your organization what you can do to help them be better? Projects that are co-sponsored by departments that make the money or make the product you sell are much more likely to get funded, and far more likely to be recognized as "strategic" and "revenue positive".
1. Re:There are many more good questions now by rickb928 · 2014-12-12 07:58 · Score: 1
  
  Our worksite bandwidth isn't constrained by the circuit, it's the firewalling. We are one of the top ten targets in the universe. Given that, I'm not slowed down by external access, but by internal firewalls. We have to protect against internal threats also.
  A production server requires three instances - production, test, and development. Days to implement, weeks to approve. We have to actually know what it will be expected to do before we can request it.
  I'm currently using around 120GB of storage, of which 40GB is purely redundant. I'm limited only by the shared volumes, and I see about 16TB available. Our tech now knows that this storage is cheap.
  Our website managers, however, believe we need a world-class presence, so we are now engaged in rapid releases, monthly. This is a reporting site our customers use to get statements, details, and resolve complaints. I'm not sure we need to team the site so often, but I'll let our customers make that point.
  Not all corporate IT is lost and dysfunctional.
  
  --
  deleting the extra space after periods so i can stay relevant, yeah.
2. Re:There are many more good questions now by enjar · 2014-12-12 08:02 · Score: 1
  
  I'm not saying that all corporate IT is dysfunctional, just that you can't pull the "Oz sitting behind the curtain and terrify the locals with your awesomeness" crap any longer. You need to have real answers to the very legitimate questions that are brought in by the commoditization and democratization of technology.
3. Re:There are many more good questions now by Anonymous Coward · 2014-12-12 08:51 · Score: 0
  
  A lot of these changes also show that IT is fairly well integrated into our daily lives, and it's no longer a "mystery" to a lot of people
  Absolutely, and it can have some positive effect. Unfortunately, something not being a mystery to someone doesn't make that person an expert. Sure, sometimes the increased familiarity promotes a dialog where issues of business efficiency are addressed and everyone walks hand in hand. More often, the end users become to IT what hypochondriac Wikipedia readers are to their doctors.
4. Re:There are many more good questions now by jbolden · 2014-12-13 02:24 · Score: 1
  
  Our worksite bandwidth isn't constrained by the circuit, it's the firewalling. We are one of the top ten targets in the universe. Given that, I'm not slowed down by external access, but by internal firewalls. We have to protect against internal threats also.
  1) That should impact latency not bandwidth. If it is slowing the network down in general you just have to increase the firewall horsepower
  2) Traffic can be segregated into what requires low latency and what traffic is OK with high latency. That's called Quality of Service (QoS). Your gear likely already supports this it is just a configuration thing.
  3) The whole idea of SDN is to have your network automatically allocate resources and reconfigure the network so that this sort of nonsense isn't happening. That sounds like what you need.
  
  A production server requires three instances - production, test, and development. Days to implement, weeks to approve. We have to actually know what it will be expected to do before we can request it.
  
  Yes provisioning slows you down. Which is why you need an internal cloud. This is part of the DevOps cultural change, you can get provisioning down to 0.
  _____
  Do you want to talk offline about this sort of thing?
5. Re: There are many more good questions now by rickb928 · 2014-12-13 04:51 · Score: 1
  
  In generalities, yes. Specifics, no, sadly.
  
  --
  deleting the extra space after periods so i can stay relevant, yeah.
"cloud" = "someone else's computer" by khasim · 2014-12-12 07:32 · Score: 3, Insightful

The main problem is that most of the people making "IT decisions" do not understand the full impact of those decisions (or believe that they will not be held responsible).
Moving anything "to the cloud" simply means moving it "to someone else's computer". How do you judge their security?
What happens when one of their other clients is arrested for something illegal and the "cloud" computers get confiscated?
Anyway, from TFA:

If IT wants to stay relevant, weâ(TM)re going to have to find a way to leverage our deep understanding of technology to a new environment, working with other parts of the organization and relying on influence and expertise instead of gatekeeping and rigid rules.
Which will NEVER work. Spend some time reading up on the latest cracks that leaked credit card info. If you have to rely on "influence" you should look for another job. There will always be someone with more "influence" than you.
1. Re:"cloud" = "someone else's computer" by armanox · 2014-12-12 07:55 · Score: 1
  
  If you're smart, you don't assume the cloud is secure, and you don't store anything that's sensitive there. But that assumes the people making decisions are smart. I'm not saying the cloud providers shouldn't care about security, on the contrary, since users should be watching for breaches they should be trying that much harder.
  
  --
  I'm starting to think GNU is the problem with "GNU/Linux" these days.
2. Re:"cloud" = "someone else's computer" by Archangel+Michael · 2014-12-12 08:17 · Score: 3, Insightful
  
  I'm in IT, but not in a CIO type level. However, I take the view that our data is NOT secure, even after I have made painstaking effort to assure that it is actually secure. Why? Because invariably, I am wrong whenever I assume that I am secure.
  The result is that I am always securing, making more secure, ensuring existing policies and procedures are up to industry best. I also realize that is never good enough. The weakest link in all of the security I employ is always the people. Always.
  
  --
  Agent K: A *person* is smart. People are dumb, stupid, panicky animals, and you know it.
3. Re:"cloud" = "someone else's computer" by Miser · 2014-12-12 08:32 · Score: 1
  
  Which will NEVER work. Spend some time reading up on the latest cracks that leaked credit card info. If you have to rely on "influence" you should look for another job. There will always be someone with more "influence" than you.
  100 percent correct. With all the recent breaches, I'm sure there was someone higher up with more "influence" that thought it wasn't worth it to upgrade systems, policies, or processes to make sure these breaches wouldn't happen - despite the fact that the lower on the totem IT folks were letting them know that it was time to upgrade/etc.
4. Re:"cloud" = "someone else's computer" by khasim · 2014-12-12 08:36 · Score: 1
  
  As always, security is not a line-item. You cannot purchase "security".
  I prefer to measure "security" as "how many people can successfully attack X".
  If fewer people can successfully attack X after a change then that change has made X more secure.
  If more people can successfully attack X after a change then that change has made X less secure.
  So moving anything to "the cloud" will result in it being less secure. In almost every instance.
5. Re:"cloud" = "someone else's computer" by Noah+Haders · 2014-12-12 13:11 · Score: 1
  
  I measure security as "is my shizz secure??" If yes, then it's secure. if no, then it's not secure. security is like death. you can't be mostly dead or somewhat dead.
6. Re:"cloud" = "someone else's computer" by jbolden · 2014-12-12 14:41 · Score: 1
  
  What happens when one of their other clients is arrested for something illegal and the "cloud" computers get confiscated?
  
  Nothing. If it is hybrid or private cloud the boxes are isolated between customers. If it is a public cloud the instances move constantly and they can replicate them for the law enforcement official. There is no point in taking physical units because the data moves between them. Moreover your instances can also be replicated so they just move to another copy in the local site, or if the site is complete taken to a backup site.
7. Re:"cloud" = "someone else's computer" by jbolden · 2014-12-12 14:44 · Score: 1
  
  I prefer to measure "security" as "how many people can successfully attack X"...
  So moving anything to "the cloud" will result in it being less secure. In almost every instance.
  
  I doubt it. How tough with someone with a gun to get into your data center. There are data centers setup for that. I have a datacenter in Maine built on a military base that can handle a cruise missile.
  You want to ignore physical talk network. You don't think Verizon, CenturyLink, Navisite know networking better than your inhouse team?
  etc...
8. Re:"cloud" = "someone else's computer" by Anonymous Coward · 2014-12-13 01:51 · Score: 0
  
  What happens when one of their other clients is arrested for something illegal and the "cloud" computers get confiscated?
  Nothing. If it is hybrid or private cloud the boxes are isolated between customers. If it is a public cloud the instances move constantly and they can replicate them for the law enforcement official. There is no point in taking physical units because the data moves between them. Moreover your instances can also be replicated so they just move to another copy in the local site, or if the site is complete taken to a backup site.
  History is not on your side.
  Past police raids on hosting services have resulted in indiscriminate confiscation of viirtually everything, often by removing the equipment it runs on.
  They aren't interested in sorting through stuff any more than they absolutely have to. First impulse is to grab it all and sort it back at the office.
  And too bad if that puts the hosting company offline in the mean time.
9. Re:"cloud" = "someone else's computer" by jbolden · 2014-12-13 03:01 · Score: 1
  
  Past police raids on hosting services have resulted in indiscriminate confiscation of viirtually everything, often by removing the equipment it runs on.
  
  That's fine for a cloud company. They are fine if they lose an entire datacenter. The images just move. Similarly for private cloud. Hosting / colo is just someone else providing real estate, power and network for single instances boxes. You need layers on top of that for replication outside of one physical colo.
10. Re:"cloud" = "someone else's computer" by uniquegeek · 2014-12-13 06:50 · Score: 2
  
  To add on this, even if I did everything right with my infrastructure, I know our data is not secure because my users aren't.
  I mean, 40% of them have a hard time finding a file they've been working on unless it's on the top of Excel's or Word's "Recent Documents" list. A lot of people don't even know where they're putting stuff.
  Tons of them do the "I'll just email this file all over the place" instead of working on the one on the network. Same goes for USB sticks and personal devices, etc. People who know (or kinda know) where they're putting stuff don't know or don't care about the implications.
  Add on top of that that the top tier of the organization dictating what they want for IT infrastructure when they have no idea what they're talking about (to the point they they're telling the IT director to throw out basic security principles). Enforcing a basic password policy? Let's argue about it for six months. And then next year, bring it up for six months again. Let's tell the IT director that "we know better" about all manners of what's needed for computer needs and security.
  But guess who's held accountable if there's a breach?
11. Re:"cloud" = "someone else's computer" by Jack+Griffin · 2014-12-13 21:41 · Score: 1
  
  Moving anything "to the cloud" simply means moving it "to someone else's computer". How do you judge their security?
  How do you trust your employees who have access to the same privileged information? Employees are bound by contracts and relevant laws, so are service providers. None of this is rocket science. Security is merely managing risk, both options (on-premise vs cloud) have risk, but generally one option costs a whole lot more than the other.
12. Re:"cloud" = "someone else's computer" by goarilla · 2014-12-14 09:09 · Score: 1
  
  I measure security as "is my shizz secure??" If yes, then it's secure. if no, then it's not secure. security is like death. you can't be mostly dead or somewhat dead.
  
  Jezus, nothing is perfectly secure. It's a process.
  That adage gets repeated all the time because it's absolutely true.
13. Re:"cloud" = "someone else's computer" by Noah+Haders · 2014-12-14 10:24 · Score: 1
  
  if you put a huge deadbolt on your door but leave your window open, its hard to argue that your house is more secure.
Sony ... by jamesl · 2014-12-12 07:33 · Score: 1

... thinks it is.
No. Sony knows it is.
The best technology has been at home for years by hawguy · 2014-12-12 07:45 · Score: 1

Who's old enough to remember when the best technology was found at work
For as long as I've used a personal computer (as opposed to dialing in to the school/work mainframe), I've had a better computer at home than at work. I had a color monitor at home while still using monochrome at work, I've had fast graphics cards (sometimes dual) at home while my work computer was using a cheap integrated card, I had an SSD in my home computer long before I got one in my work computer. There was a brief time when work had a better internet connection than my 56kbs modem, but ever since I got DSL and then a faster cable connection, I've had a better connection at home than at work. Instead of a fractional T1 shared among the office, I had 768 or 1.5mbit DSL... instead of a 10mbit dedicated internet connection at the office, I had a 25mbit cable modem connection.
It's only quite recently that work has surpassed what I'm willing to pay for at home -- now my office has a gigabit pipe to the internet and on my desk I have a 27" iMac (maxed out on CPU and RAM with a 1TB SSD) and two 27" monitors (in addition to the iMac display). My home environment is not even close to my work environment.
CIOs need to learn... by gestalt_n_pepper · 2014-12-12 07:52 · Score: 2

1) No computer ever be 100% secure. If it is, it's a brick with a power cord and a monitor.
2) One size NEVER fits all. A secretary, a programmer, a salesperson, a testing lab and a configuration management department all need wildly different configurations for security, login, admin privileges, et. al. As a CIO, your job, frankly, is to suck it up and give it to them. If you can't, you fail.
3) If you let the bean counters run the IT department, it's an automatic fail. This fail can be hidden for some years by the bean counters and they engage in the standard self-congratulatory circle jerks and self-defined measures of "productivity," but the lack of reality orientation *will* kill your organization eventually.
4) Never trust a newly minted MBA or anything they say, think or do. Ever. It's like putting a philosophy major in charge of line production on a factory floor. It's a *lot* like that. Good luck with getting anything done on budget and on schedule.

--
Please do not read this sig. Thank you.
Meh... the more things change... by sirwired · 2014-12-12 08:00 · Score: 1

The More Things Change, the More They Stay The Same.
It's my general impression that the cost of any given IT resource has gone down at roughly the same rate the consumption of said resource has risen. This means that IT capabilities rise at the same rate as advances in storage/programming/processing power/etc., but the total complexity (and amount of IT resource to manage that complexity) has stayed roughly level.
I remember fifteen years ago, the "rule of thumb" for managing Enterprise Storage was approx. two administrators per Terabyte. (This was when a terabyte storage array was about the size of a pair of commercial refrigerators and took 4 3-phase power feeds.) Nowadays, the company still has two administrators, but they now have a Petabyte to manage, and their company makes productive use of every last scrap of that Petabyte.
Wrong premise by Lab+Rat+Jason · 2014-12-12 08:02 · Score: 1

Companies need to take advantage of the same externally available technology that consumers do... it's not rocket science. The idea that a company MUST provide it's own infrastructure the same way it did 20 years ago is stupid. My company just last week turned off access to all dropbox type providers, and there's practically a line out their door of people asking for exceptions. To excel in business, you have to adopt good ideas, regardless of where they come from.

--
Which has more power: the hammer, or the anvil?
But ... by Gription · 2014-12-12 08:06 · Score: 1

All of this is missing a major point about the posted article:
- Is this news or a posted question to the readers?
Everyone knows that IT has become a huge house of cards and it isn't possible to give a real solid level of protection while using modern features and technology. The comments echo this fact.

So where is the news and/or where is the useful question?

---------------
SlashDot should be so much better then this.
1. Re:But ... by goarilla · 2014-12-12 08:23 · Score: 3, Insightful
  
  This is just another post for us to vent our increasing frustations with the way IT is being more and more undervalued.
  We used to be called experts. Now we're virtual janitors.
2. Re:But ... by Anonymous Coward · 2014-12-12 09:06 · Score: 0
  
  People have spoken of a cycle where corporate environments go back and forth between thin clients and desktops as they rediscover the advantages of each (and forget the downsides of the previous). Could this be a similar cycle where, eventually, people will remember "maintaining these things take a lot of time and knowledge, we should have a guy to handle this for us?"
3. Re:But ... by AK+Marc · 2014-12-13 06:27 · Score: 1
  
  And because the worker's phones are more powerful than their computers, often with better resolution on a 5" than their 19" computer monitor, the workers consider themselves IT experts, and we are back to decentralized IT, and that doesn't work well.
  
  --
  Learn to love Alaska
4. Re:But ... by Jack+Griffin · 2014-12-13 19:09 · Score: 1
  
  I've been in this game for 20 years and have always been a janitor. Janitors are still needed, so as long as you learn to be good at it, you'll always have a job.
5. Re:But ... by q4Fry · 2014-12-15 05:49 · Score: 1
  
  Mod parent Insightful.
My take on this... by dremspider · 2014-12-12 08:06 · Score: 5, Insightful

I have been in IT for about 10 years, so I am not sure I am completely qualified to say since forever, but I would say that the issue is we are now competing with cloud providers as to the expectation of our customers. For example, Gmail offers you 15 GBs for free and IT customers wonder why they only have 2GBs at work. Most cloud services have pretty amazing up times, and people wonder why your IT dept. can't do the same thing (no matter how well staffed it is). People are seeing the consuming of resources as free and then trying to IT accordingly.
1. Re:My take on this... by __aaclcg7560 · 2014-12-12 08:26 · Score: 0
  
  Gmail offers you 15 GBs for free and IT customers wonder why they only have 2GBs at work.
  A 2GB limit on corporate email has more to do with older versions of Outlook and Outlook Exchange being limited a 2GB file size. Getting users to delete old emails and move emails to archive files was a PITA back in the day.
2. Re:My take on this... by HaeMaker · 2014-12-12 08:59 · Score: 1
  
  Then stop arguing and go to Google at Work or Office365 and give them unlimited data. I guarantee it's cheaper.
3. Re:My take on this... by Anonymous Coward · 2014-12-12 09:02 · Score: 0
  
  Most cloud services have pretty amazing up times, and people wonder why your IT dept. can't do the same thing (no matter how well staffed it is).
  
  When the definition of "up" is "most users can work normally", it's not really so amazing. I'll let you know when I figure out how to get companies to adopt that definition internally.
4. Re:My take on this... by Anonymous Coward · 2014-12-12 09:16 · Score: 1
  
  Gmail offers you 15 GBs for free and IT customers wonder why they only have 2GBs at work.
  A 2GB limit on corporate email has more to do with older versions of Outlook and Outlook Exchange being limited a 2GB file size. Getting users to delete old emails and move emails to archive files was a PITA back in the day.
  Nah. The small limit on corporate email mostly has to do with reducing discovery (costs) when they get served with a lawsuit.
5. Re:My take on this... by Anonymous Coward · 2014-12-12 09:36 · Score: 0
  
  Office 365 is more office 320ish, as they can't seem to avoid random downtime.
6. Re:My take on this... by jbolden · 2014-12-13 02:27 · Score: 1
  
  How does this example not prove the point? It is a policy still in effect based on an old version of Outlook that shouldn't apply anymore. The reason the original policy was in place was because you were exposing to end users an IT related issue: what should be in archive rather than what should be active; the sort of thing ECM is designed to do for them.
  Exactly that's what they are rebelling against. And good for them.
7. Re:My take on this... by __aaclcg7560 · 2014-12-13 06:25 · Score: 1
  
  If the email limit is 2GB, and the company has 30,000 employees, it's 60TB of storage. If the email limit is jacked up to 15GB, then it becomes 450TB of storage. The cost of implementing new storage on the IT side and supporting larger email files on the help desk side might make some companies stick with the legacy 2GB email limit.Especially if a bean counter sends out emails to remind everyone that each "reply all" email cost the company in $800 in lost productivity.
8. Re:My take on this... by jbolden · 2014-12-13 07:35 · Score: 1
  
  If the email limit is 2GB, and the company has 30,000 employees, it's 60TB of storage. If the email limit is jacked up to 15GB, then it becomes 450TB of storage.
  
  And assuming they use every bit of it that 450T of storage with replication and DR should run about $150k or about 2 fully loaded employees worth in your 30k company. If 1% of the employees save 1% of their time because of that increased storage you've just earned a 150% return for the cost storage. Any added bonus to anyone else is gravy. I'm not seeing the problem.
  
  .Especially if a bean counter sends out emails to remind everyone that each "reply all" email cost the company in $800 in lost productivity.
  
  That's a different issue. That's the issue of why email is a bad collaboration tool not the issue of why email storage is bad.
9. Re:My take on this... by bhiestand · 2014-12-19 07:49 · Score: 1
  
  While I get your broader point... $150k for 450 TB of higher tier storage? Properly replicated, regularly backed up, with enough IOPS and networking for a busy Exchange server? $150k is low. Very low. And don't forget you'll need a second one for that DR site.
  
  --
  SWM seeks new sig for a brief fling
IT has to accept new realities by unimacs · 2014-12-12 08:07 · Score: 1

If IT were easy and things never changed then anybody could do it. If you expect long term stability then you are in the wrong field.
1. Re:IT has to accept new realities by sysrammer · 2014-12-12 13:29 · Score: 1
  
  If IT were easy and things never changed then anybody could do it. If you expect long term stability then you are in the wrong field.
  Yep. Job security.
  
  --
  His ignorance covered the whole earth like a blanket, and there was hardly a hole in it anywhere. - Mark Twain
It is as complicated as you make it. by Shinare · 2014-12-12 08:25 · Score: 1

File and printer sharing is easy. How much more complicated than that is up to you.
1. Re:It is as complicated as you make it. by __aaclcg7560 · 2014-12-12 09:43 · Score: 1
  
  Windows for Workgroups was so old school.
Not in my experience ... by CaptainDork · 2014-12-12 08:30 · Score: 4, Interesting

... at all.
My management started saying, "THE CLOUD," over and over again, like consumers were saying, "iPad!."
I made damn sure that my objections were documented via email at every step as I cheerfully participated in assisted suicide.
Sure enough, about 8 months later (after management got a hands-on physics lesson about propagation delay), the cloud wasn't there. People were on my ass big time.
I called the cloud center and told them to, "Do that fail-over thing to the backup site in Oklahoma and stuff," and they said that the switch-over was included in the catastrophic failure.
I got myself a cup of coffee and one of the managers got in my face and demanded that we implement the backup plan.
I told him, "Sir ... our Plan B is Plan A."
So, they bought me some servers and stuff and I'm running things from my fucking computer room.

--
It little behooves the best of us to comment on the rest of us.
1. Re:Not in my experience ... by Falconhell · 2014-12-12 19:19 · Score: 1
  
  Postin to undo wrong mod.
2. Re:Not in my experience ... by Jack+Griffin · 2014-12-13 21:37 · Score: 1
  
  Your story seems to miss a few key elements. How exactly did "propagation delay" cause a disaster?(no need to dumb it down - this is a site for nerds remember) Are you saying the cloud provider went offline along with your second site? With the limited information provided, I see no problem with the cloud as a concept merely your implementation of it which seems to lack even the fundamentals of a cloud migration, ie proof-of-concept and DR testing. Having done many successful cloud migrations myself, I still struggle to justify why you would waste time and effort with On-premise other than job security.
3. Re:Not in my experience ... by CaptainDork · 2014-12-14 02:52 · Score: 1
  
  The propagation issue was parenthetical to indicate that it was a side effect of working long haul. Print jobs, no matter how finely tuned, are not completed nearly as fast as on the ground. You know that. Also, when the Internet bogs down, there are data entry delays. The vendor told my management that response time would be much faster when working with the cloud. You and I know that's not possible.
  It was not MY implementation. We ran the cloud in parallel with the ground and, after proof of concept, took the leap.
  You are correct that the implementation was bad. Our situation would have been much worse had I not been on the ground with my firm. I pity the po foo hoo cloud-jump without hep,
  
  I still struggle to justify why you would waste time and effort with On-premise other than job security.
  I am not wasting my time and effort operating locally. I'm the IT guy and it's how I make my living. My management sure wasted their time and effort (and money). As for job security, I didn't have to worry about that. I can get a job elsewhere, right?
  Did you read the part bout how the cloud did not work out well for us? Doesn't that explain to you why we're not wasting our time and effort pulling everything down?
  Your successful migrations from ground to cloud have nothing to do with my firm.
  
  --
  It little behooves the best of us to comment on the rest of us.
4. Re:Not in my experience ... by Anonymous Coward · 2014-12-20 06:37 · Score: 0
  
  You could have chosen to engage the poster regarding the specific use case (print jobs was noted, but I'm not sure why) that caused so much trouble.
  At my company, we do not use cloud servers because we need the lowest latency possible for batch script runs. We have many usages of looped database queries (poor design) in the application, and the cloud cannot keep up _as the app is written_. However, our long term plan is both to optimize the database activity of the application as well as generate a batch script manager that creates as many parallel batch script processing nodes as it needs for a given batch (node including necessary data). Once we have that, we can move our batch processing to the cloud and be able to support ongoing growth more easily.
IT is a vaccine by melchoir55 · 2014-12-12 08:47 · Score: 1

The situation IT faces has some interesting parallels with that of vaccines, but multiplied to be exponentially worse. An ignorant subset of our society is convinced that vaccines are a Bad Idea. There are a lot of reasons for this we don't need to get into, but similarly to IT, one of the reasons is that vaccines became so ubiquitous and effective that what they save us from has become invisible. These days we are seeing spikes in horrible and preventable diseases because some people have an overriding "out of sight out of mind" component to their cognitive life. The same is true of IT.
IT is critical to any organization. It doesn't matter what organization you're talking about. Efficiency of IT can improve the productivity of every industry. It has permeated them all. I had lunch last week with a nice lady who works in a very large insurance company. This company has a fair number of employees devoted to answering certain kinds of email (negative ones) and a lot of time gets spent forwarding emails to the right person. She was lamenting that there is no way to do that automatically. "There is.." I pointed out, "It is called sentiment analysis and is a branch of NLP. It can probably do what you want with at least 80% accuracy. You would have to hire a computational linguist and pay them 95k a year to make it happen."
And that's the rub. It costs money. People who run large organizations rarely understand technology. That means they need to completely trust the CTO/CIO on every recommendation, because the CEO is entirely unequipped to themselves evaluate any such proposal. It's also the case that large corporations are under the laughably inaccurate opinion that people work harder to make up for being unproductive. That is to say, many think "well it has to get done, they are paid to do it, and it does get done, so why do we need to spend more money on tech"?
The application of technology is nuanced. It is not possible to directly quantify the gains in all circumstances, though the gains could mean an order of magnitude difference in productivity. It doesn't fit easily into a spreadsheet, a sharepoint page, or a powerpoint presentation. Thus, the pointy haired boss will remain impossible to convince.
YES, but it's not the devices, it's the cloud. by HaeMaker · 2014-12-12 08:58 · Score: 1

Anyone with a credit card can buy IT services, throw a bunch of corporate data into them, and no one knows they did it. When that person leaves, and the boss suddenly wants that data, or legal needs it for eDiscovery, or IA needs data for the quarterly report only to discover all the data is in an non-SOX approved app with un-approved, undocumented access to a random collection of employees who all had read/write access...GAH! Need the revenue report for Q3? Okay, here, go to mega.nz...
1. Re:YES, but it's not the devices, it's the cloud. by jbolden · 2014-12-13 02:32 · Score: 1
  
  Absolutely. So the traditional solution is to tell the employee no. Rather than delivering the functionality they want while having the monitoring and controls. There are excellent solutions for enterprise that do all this work. Employees have to see the benefits though.
  A system that makes e-discovery easy also makes finding documents from other branches on related topics easy. If the employees see those gains then they see what you are doing for them.
Diffused decision making by LessThanObvious · 2014-12-12 09:13 · Score: 1

A lot of the technology itself has gotten easier, the products available are robust and fully developed. The difficulty is often as it always has been in the human side of the business. People in the past didn't have options outside of IT and we used to actually be able to say no when someone wanted to bring in their own device or use some outside service. IT didn't used to have much power, but now we have almost none. Businesses pay us because we are experts in our field, but then constantly make decisions that contradict our input. So what if marketing wants some cloud thing, since when should their desires matter in the equation? I long for management that says "I don't give a fuck what you want. Tell us what you need, we can define the solution if one is warranted." My job got easier when I stopped fighting the businesses on decisions, but now I know I'm not actually doing what I think is in the interests of the companies I work for, rather just bending with the wind so nobody actually has to deal with conflict.
Not worried by asciiRider · 2014-12-12 09:20 · Score: 1

I'll start worrying when the users can figure out how to automate a file copy on their own.
Yes it is. by hey! · 2014-12-12 10:14 · Score: 2

LCARS 3.0 was a disaster.

--
Post may contain irony: discontinue use if experiencing mood swings, nausea or elevated blood pressure.
Re:I don't care what the user has at homeFTFY by Anonymous Coward · 2014-12-12 10:57 · Score: 0

Creative (noun)
ABE blocked
IT has management? by pigoon · 2014-12-12 10:58 · Score: 1

No, it's not harder manage. Just the hiring/promotion criteria for management in IT is largely based on your skills as a... programmer.

It's also hard for Tennis players to play Football.

Oh and all the bro-mance, patriarchy, social ineptitude left over from the last 30 years doesn't help much either.
This is plan B! by mveloso · 2014-12-12 12:02 · Score: 1

"I'm going to sit here and drink my coffee."
1. Re: This is plan B! by Anonymous Coward · 2014-12-12 13:29 · Score: 0
  
  "I'm stayin. Drinking my coffee."
How big is your network ? by nehumanuscrede · 2014-12-12 12:56 · Score: 1

Assuming, by Enterprise, you mean Godzilla sized network, then it is a royal pain in the ass to maintain.

Take the internal networks of a well known ( and very much hated ) telecommunications company. Depending on which data center you're visiting, you can have absolute bleeding edge state of the art money is no object hardware in one corner and state of the art circa 1975 banks of modems sitting across from it. Stuff that was manufacture discontinued before most here were even BORN. :|

It's so damn big it takes entire organizations to mange portions of it. The sheer amount of money required to update it to current standards would be staggering. Anyone remember Datakit ? Hahahahaha. . . . Still in use. Very much in use.

So, for now, while all your super high tech skills are handy, knowing the old school is still very much in demand.

Viva la X.25 !!!! lol
It's simple by Anonymous Coward · 2014-12-12 14:12 · Score: 0

Working for one of the world's largest company's, and seeing what they're doing, that's working, the answer is simple.
Stop trying to manage, start trying to educate. Give users full control over their computer, and educate them on the risks. Make it clear that if they perform certain actions after educating them on why they shouldn't do them is going to get them fired.
Enterprise IT is terrible by Anonymous Coward · 2014-12-12 16:23 · Score: 0

It's probably been said already but, you know. The Enterprise is famous for its security flaws, ranging from a lack of seatbelts to cope with its gravely-disfunctional artificial gravity system to computer passwords you can guess or bypass in ten seconds to... oh, don't even start me on the flaws in the holodecks. This is what you get for taking the cheapest bids. Naturally, Microsoft won everywhere and insisted that the holodecks needed to support Word and Excel plug-ins, then there was this deal with Adobe, and... dude. There may be Extraterrestrial Intelligence, but Enterprise Intelligence is just not even. Don't make my cry. Those poor ensigns.
What? by symbolset · 2014-12-12 18:41 · Score: 1

Slashdot Beta sucks.
It is an acknowledged fact that the operating systems we use cannot be made secure even without end user interaction. They are just too complex. And yet we must trust them to do business. Even without the acknowledgement the proof comes weekly. Despite this we still use them, and worse - old versions of them that are a parody of secure code and known to be exploited.
We spend the end user's trust too readily. And we let them spend it greedily.
If I were the man I was five years ago, I'd take a FLAMETHROWER to this place! *
I don't post here much any more.
The problem with firewalls and antivirus is they all locking the door after the cattle are fled.
Your data will never be secure.
*Scent of a woman Great movie.

--
Help stamp out iliturcy.
The problem has never changed by msobkow · 2014-12-12 23:09 · Score: 2

The problem has been the same since the PC first came out: users can "do things" with a PC/laptop/smartphone/tablet and think that "doing things" makes them an expert on IT. So when they come up with a "great idea for a new application", they can not and will not fathom the fact that it can take months or years to implement, is going to cost hundreds of thousands if not millions of dollars, and will be obsolete before it ever hits production due to changing business needs.
There is no cure for the "wisdom" of people who tell you how to do your job, or how their 14 year old nephew could write the application in a few weeks. They've made up their mind that you're just a lazy SOB trying to milk the company for money and a cushy job, and will never, ever, ever understand just how much effort goes into security, design, testing, porting, etc. To them, everything is "easy."
The real problem is that companies let such users and managers make business decisions based on "their gut instinct" instead of properly planned and projected schedules. Because heaven forbid you should ever tell the marketting manager that he can't have his shiny Sharepoint solution because it doesn't provide anything useful to the company that can't be accomplished with a properly organized set of folders on a shared drive/server somewhere.
No, they're the ones who sign for the budgets, and they're the ones who like the "shiny", so you're the one who gets stuck trying to make the shiny work with all the line of business systems that are actually important to the operation of the business.
And if you even hint that you can't do it, well, there's a company overseas that's promising to do it in a month as an offshore service, so you're fired.
Which, in a nutshell, is how the bean counters and their ilk get away with their bad business decisions: they constantly hold the threat of offshoring and termination over your head to beat Mr. IT into submission.

--
I do not fail; I succeed at finding out what does not work.
I have been in IT for about 10 year by Anonymous Coward · 2014-12-13 03:48 · Score: 0

I have been in IT for about 10 years, so I am not sure I am completely qualified to say since forever, but I would say that the issue is we are now competing with cloud providers as to the expectation of our customers. For example, Gmail offers you 15 GBs for free and IT customers wonder why they only have 2GBs at work. Most cloud services have pretty amazing up times, and people wonder why your IT dept. can't do the same thing (no matter how well staffed it is). People are seeing the consuming of resources as free and then trying to IT accordingly.
http://freedownloadsofts274.blogspot.com/
http://softwarescollectionawesome.blogspot.com/
No. Just buy LANDESK by Anonymous Coward · 2014-12-13 06:12 · Score: 0

No. Just buy LANDESK. Then learn to use it. It will make enterprise IT quite straight forward.