Businesses shouldn't run out and buy every freakin product without consulting their own IT staff. Maybe product A does look nice, but the business unit usually gets pissed when it won't integrate into the existing ERP. If IT was consulted BEFORE said money was spent, they could have had input that would have helped.
ALL too often we're asked to integrate crap that was never designed to be integrated. BUY PRODUCTS THAT WORK WITH WHAT YA GOT and you won't have an issue.
Best of breed sounds good until you realize that companies rarely build anything that talks to products other than their own unless it's an operating system.
Hmm....maybe that policy should change with the current regulatory environment? I mean HIPAA, PCI and other items that are vitally important to having a properly functioning hospital would not be easy with all of these departments setting up their own servers.
I work in academia and see what you are saying, but the bank still wants us to pass a PCI audit which means we have to tick people off by telling them how they need to do their job.
The world is changing and academia is no different. They have rules too.
I'm sorry. There's a right way to do things and a wrong way to do things. This guy chose the wrong way. IT CAN help but you got to play the game. Data Security as well as a HIPPA certification is way too important to risk this in the name of customer service.
You don't mind if I take some of that prescription pad to write notes on do you? Oh you do? Well I am going to do it anyway....
Actually....yes. Because then I would point out that it was you sir who authorized these rules and you sir who expect that we follow them. Sure, I'd likely not have a job, but then I would be the loudest opponent of why the CEO is a moron and shouldn't even have a license to practice medicine (if the CEO would and he probably doesn't).
As the head of a clinical department, you should have enough brains to realize: That isn't my job.
I won't practice medicine on my work time. I expect that you don't practice IT on yours.
Dude you probably ALREADY violated several IT policies of the hospital doing this yourself. This is where you should have got with your IT department and asked them what you needed to do to get what you wanted. If that didn't get you far, then you go up the chain.
The problem with these such systems is that people begin to trust them far before they should. I am NOT a fan of single signons for ANYTHING. Yeah it's a pain to know 4 different passwords, but if one of these federated providers is compromised, then EVERY company who uses them is ALSO compromised.
First indicator that this guy may be wrong is he's a CIO. CIO's have staff that probably tell him the kind of crap that he has in this article, but let's look at what he has....a quote of his quotes:
"Coroneos said vendors need to intervene at the network level and need to provide security tools at a multiple levels to help secure people from the multiple levels of threats that are emerging."
I think this means that vendors need to design security as a function of their software and of their networks which gets a big DUH! I don't think he means that the ISP needs to do this necessarily.
"The rise of cloud computing is also adding another dimension to the security problem.
“If you look back 15 years ago we were talking about thin clients and now we are seeing an increase in migrations to the Cloud,” he said.
“However, there are issues with the Cloud, including data protection and security.”"
Ok....cloud computing is NOT inherently insecure, however you DO happen to give up control of the data once it gets moved to the cloud. Cloud Computing is one of trust. Do you trust Amazon's S3 Service? What about Google? Is Cloud Computing really something different? I also dispute that Cloud Computing is a new concept. It's a different way of doing what we already do. You have complete control of a server that is running on the internet instead of sitting in your companies rack and the setup may include data synchronization. Cloud Computing is nothing more than networking with a new spin. Does this add a new dimension? Maybe, but I don't see it as being any different since you have most of the same control over the server in the cloud that you do in your home.
What this all boils down to is trust. If it's something that really needs to be secure, you put multiple layers of Firewalls and endpoint protection on them and then you encrypt the hell out of it and NEVER even think about putting it into the cloud and the regular home user just isn't equipped for this.
With all of that said, there should be walled ISP's as well as unwalled. The experienced use the unwalled and the non experienced don't. There you ALSO enter into another level of trust: you trust your walled ISP to only block the bad stuff and not the good stuff. The question is: who determines what is bad and what is good??
So basically your saying there is no difference?? I don't see any. Public schools have tax payers to answer to and private schools have shareholders to answer to.
It can be a stepping point....if you know WHAT the heck your doing. Certs from ANY vendor mean diddly if you can't do the job. Degrees CAN help....EVEN from DeVry but you must STILL be able to do the job. Nothing is automatic.
With that said, I think ALL colleges....public and private...charge WAY too much. I am going to rack up 30,000+ of debt and then only make 40-50K per year? You kidding me?? Going to Med or Law School is even worse. In those you will rack up close to 500K in debt....before you have your first client!
So, it doesn't matter what school you go to....it's damned expensive and you get little to show for it other then knowledge and even then you may not be able to get a job where you can purchase a house, a car and pay your loans and other living expenses at the same time.
It doesn't matter whether you go to the Ohio State University, Harvard, DeVry, ITT Tech or ANY higher education institution. They ALL want your dollars.....they ALL try and get you in there no matter what including getting you to accept student loans. They ALL do this.....whether they are for profit or not. Anyone who doesn't think so is kidding themselves.
Absolutely. The picture is in the public domain and he has no case. Period. Why? He was an employee if the Federal Government and on the job. The government owns the pic and they released it via their website.
This is why Linux distros had Nasa pics in them for wallpapers until there were enough artists out there.
The crappy thing is Best Buy preloads these things before they hit the SHELVES! Sometimes you just don't have a choice. They do this with EVERYTHING with the Geek Squad.
When we were looking for a laptop for my wife, they had a bunch of stuff that already had Trend Antivirus and other stuff pre-installed and you could NOT avoid paying the extra fee if they didn't have any of the ones with out the stuff on it installed.
I understand charging labor, but 30 dollars is a bit much considering what they pay Geek Squad techs.
If you are expected to have a response and fix things, then you need to be compensated for it. We used to not have a system and boy did it suck. Even with out getting "On Duty Pay", I can still get called. My Mom in Law DIED and I was at a funeral and I sure would hate to have someone call me then. Thank god my boss stopped the director in his tracks....
Slashdot Mirror
WOOOHOO!
This is EXACTLY why IT is the way it is.
Businesses shouldn't run out and buy every freakin product without consulting their own IT staff. Maybe product A does look nice, but the business unit usually gets pissed when it won't integrate into the existing ERP. If IT was consulted BEFORE said money was spent, they could have had input that would have helped.
ALL too often we're asked to integrate crap that was never designed to be integrated. BUY PRODUCTS THAT WORK WITH WHAT YA GOT and you won't have an issue.
Best of breed sounds good until you realize that companies rarely build anything that talks to products other than their own unless it's an operating system.
Heck BUY them lunch! You'd be surprised what they have been testing for months...
And possibly violate the terms of service of your ISP?? OOOK!
Hmm....maybe that policy should change with the current regulatory environment? I mean HIPAA, PCI and other items that are vitally important to having a properly functioning hospital would not be easy with all of these departments setting up their own servers.
I work in academia and see what you are saying, but the bank still wants us to pass a PCI audit which means we have to tick people off by telling them how they need to do their job.
The world is changing and academia is no different. They have rules too.
Except when a fool brings in a rogue server that....oh blah blah blah it's been said 500 times already in this post. This is a BAD idea.
Maybe it should be?
I'm sorry. There's a right way to do things and a wrong way to do things. This guy chose the wrong way. IT CAN help but you got to play the game. Data Security as well as a HIPPA certification is way too important to risk this in the name of customer service.
You don't mind if I take some of that prescription pad to write notes on do you? Oh you do? Well I am going to do it anyway....
Was going to suggest this, but I would try asking the appropriate people before doing this.
Actually....yes. Because then I would point out that it was you sir who authorized these rules and you sir who expect that we follow them. Sure, I'd likely not have a job, but then I would be the loudest opponent of why the CEO is a moron and shouldn't even have a license to practice medicine (if the CEO would and he probably doesn't).
As the head of a clinical department, you should have enough brains to realize: That isn't my job.
I won't practice medicine on my work time. I expect that you don't practice IT on yours.
True....but what if you had a patients name on the calendar??
BINGO! Take it home.
Sorry dude. IT departments would take it in the ass if that server violated HIPPA laws. You JUST don't DO this now. PERIOD.
Dude you probably ALREADY violated several IT policies of the hospital doing this yourself. This is where you should have got with your IT department and asked them what you needed to do to get what you wanted. If that didn't get you far, then you go up the chain.
So what do you do now? Scrap it and take it home.
The problem with these such systems is that people begin to trust them far before they should. I am NOT a fan of single signons for ANYTHING. Yeah it's a pain to know 4 different passwords, but if one of these federated providers is compromised, then EVERY company who uses them is ALSO compromised.
First indicator that this guy may be wrong is he's a CIO. CIO's have staff that probably tell him the kind of crap that he has in this article, but let's look at what he has....a quote of his quotes:
"Coroneos said vendors need to intervene at the network level and need to provide security tools at a multiple levels to help secure people from the multiple levels of threats that are emerging."
I think this means that vendors need to design security as a function of their software and of their networks which gets a big DUH! I don't think he means that the ISP needs to do this necessarily.
"The rise of cloud computing is also adding another dimension to the security problem.
“If you look back 15 years ago we were talking about thin clients and now we are seeing an increase in migrations to the Cloud,” he said.
“However, there are issues with the Cloud, including data protection and security.”"
Ok....cloud computing is NOT inherently insecure, however you DO happen to give up control of the data once it gets moved to the cloud. Cloud Computing is one of trust. Do you trust Amazon's S3 Service? What about Google? Is Cloud Computing really something different? I also dispute that Cloud Computing is a new concept. It's a different way of doing what we already do. You have complete control of a server that is running on the internet instead of sitting in your companies rack and the setup may include data synchronization. Cloud Computing is nothing more than networking with a new spin. Does this add a new dimension? Maybe, but I don't see it as being any different since you have most of the same control over the server in the cloud that you do in your home.
What this all boils down to is trust. If it's something that really needs to be secure, you put multiple layers of Firewalls and endpoint protection on them and then you encrypt the hell out of it and NEVER even think about putting it into the cloud and the regular home user just isn't equipped for this.
With all of that said, there should be walled ISP's as well as unwalled. The experienced use the unwalled and the non experienced don't. There you ALSO enter into another level of trust: you trust your walled ISP to only block the bad stuff and not the good stuff. The question is: who determines what is bad and what is good??
So basically your saying there is no difference?? I don't see any. Public schools have tax payers to answer to and private schools have shareholders to answer to.
It can be a stepping point....if you know WHAT the heck your doing. Certs from ANY vendor mean diddly if you can't do the job. Degrees CAN help....EVEN from DeVry but you must STILL be able to do the job. Nothing is automatic.
With that said, I think ALL colleges....public and private...charge WAY too much. I am going to rack up 30,000+ of debt and then only make 40-50K per year? You kidding me?? Going to Med or Law School is even worse. In those you will rack up close to 500K in debt....before you have your first client!
So, it doesn't matter what school you go to....it's damned expensive and you get little to show for it other then knowledge and even then you may not be able to get a job where you can purchase a house, a car and pay your loans and other living expenses at the same time.
It doesn't matter whether you go to the Ohio State University, Harvard, DeVry, ITT Tech or ANY higher education institution. They ALL want your dollars.....they ALL try and get you in there no matter what including getting you to accept student loans. They ALL do this.....whether they are for profit or not. Anyone who doesn't think so is kidding themselves.
And cheap.
Or keep it in an unencrypted spreadsheet.
Absolutely. The picture is in the public domain and he has no case. Period. Why? He was an employee if the Federal Government and on the job. The government owns the pic and they released it via their website.
This is why Linux distros had Nasa pics in them for wallpapers until there were enough artists out there.
The crappy thing is Best Buy preloads these things before they hit the SHELVES! Sometimes you just don't have a choice. They do this with EVERYTHING with the Geek Squad.
When we were looking for a laptop for my wife, they had a bunch of stuff that already had Trend Antivirus and other stuff pre-installed and you could NOT avoid paying the extra fee if they didn't have any of the ones with out the stuff on it installed.
I understand charging labor, but 30 dollars is a bit much considering what they pay Geek Squad techs.
Whoever wrote this didn't do their work...the smithsonian already owns the Enterprise: http://www.nasm.si.edu/UdvarHazy/
Who cares about KML files and viewing in Google Earth?
I tracked Santa with my son last night WITH LINUX with NO problem. Non story.
If you are expected to have a response and fix things, then you need to be compensated for it. We used to not have a system and boy did it suck. Even with out getting "On Duty Pay", I can still get called. My Mom in Law DIED and I was at a funeral and I sure would hate to have someone call me then. Thank god my boss stopped the director in his tracks....