Skip to content This page will be automatically closed in 6 seconds.

Hot News:

Spring World 2017

Conference & Exhibit

Attend The #1 BC/DR Event!

Bonus Journal

Volume 29, Issue 5

Full Contents Now Available!

Jon Seals

Jon Seals

Tuesday, 17 January 2017 21:33

Making Shadow IT Work for the Enterprise

DRJ LogoWhen it comes to shadow IT, the enterprise has three choices: It can accept it, fight it or ignore it. All too often, however, organizations choose the third option, which in most cases not only fails to satisfy individual or organizational needs but can place systems and data at risk.

Fortunately, new practices and new technologies are making it easier to accommodate shadow IT, and even use it to gain an advantage in today’s digital economy.

According to a recent report by cloud security expert Netskope, shadow IT can creep into the enterprise even when service deployment and usage policies are in place to prevent it. In its latest quarterly assessment, the company reports that half of all Box and Dropbox users maintain personal instances on these platforms along with the sanctioned presences established by their employer. This makes it extremely difficult to detect and mitigate practices like data exfiltration and file sharing between the enterprise and private instances. At the same time, the company says that upwards of 95 percent of services employed in the cloud are not enterprise-ready, with particular deficiencies when it comes to compliance with government mandates like the EU’s General Data Protection Regulation.

...

http://www.itbusinessedge.com/blogs/infrastructure/making-shadow-it-work-for-the-enterprise.html

DRJ LogoWordfence researchers are warning of a new and unusually effective phishing scam designed to steal login credentials from Gmail users, though it's also been seen targeting users of other services (h/t The Register).

An email is sent to a target's Gmail account, often from someone they know whose account has been hacked using the same technique, including an image of an attachment the recipient will likely recognize from the sender.

"You click on the image, expecting Gmail to give you a preview of the attachment," Wordfence CEO Mark Maunder explains in a blog post describing the attack. "You glance at the location bar and see you accounts.google.com in there."

...

http://www.esecurityplanet.com/network-security/researchers-warn-of-highly-effective-new-gmail-phishing-scam.html

DRJ LogoDo you know how to actually execute a recovery using your defined disaster recovery strategy, or will your team have to figure it out? We’ve discussed developing a disaster recovery strategy at length, but what happens when it’s time to execute your strategy?

In his poem, To a Mouse, Robert Burns provides a well-known and insightful thought, “the best-laid plans of mice and men sometimes go awry.” We’ve seen how true this can be when we must perform an actual recovery that doesn’t go as smoothly as we might have hoped, even with all of our planning and document development.

Here are some ideas on providing training and validation of the execution of your DR strategy and plans.

...

https://www.mha-it.com/2017/01/disaster-recovery-strategy-execution/

SBCP LogoBuying a system that provides built-in intelligence reduces both deployment time and total cost of ownership. This results in a program that aligns with proven best practices, industry standards, and governing regulations to exceed your program’s resiliency goals.

Why try to reinvent the wheel? Why spend your time building an untested, unproven solution? The smart answer is to embrace the built-in intelligence of a tested software product. Spend your valuable time elevating your Business Continuity/Disaster Recovery (BCDR) program instead. Unlike software that you build from scratch with your vendor over the course of months or years, ResilienceONE® from Strategic BCP® provides a Business Continuity Management (BCM) solution that is ready right out of the box and instantly provides users with the following:

...

http://www.strategicbcp.com/blog/bcm-software-built-in-intelligence-vs-building-it-with-your-vendor/

Florida County makes the move to NG9-1-1 with new call handling solution and IP network

DRJ LogoHillsborough County 9-1-1 Administration has selected Airbus DS Communications’ VESTA®9-1-1 solution to put the Florida county on the path to implementing Next-Generation 9-1-1. Airbus DS Communications also will install an IP network that will allow for greater redundancy and resiliency and serve as the foundation for the next generation of Hillsborough County’s public safety communications.

An Airbus DS Communications customer for more than 20 years, Hillsborough County is the fourth most populous county in Florida with more than 1.3 million residents. It answers more than 900,000 emergency calls per year. The county is comprised of 10 public safety answering points (PSAPs) that will have 100 call taking positions once the upgrade to the VESTA 9-1-1 solution and the new IP network is complete. The full transition to the new system is estimated to take place by October 2017.

“We are honored that Hillsborough County has chosen to work with Airbus DS Communications to upgrade to our latest VESTA 9-1-1 solution,” said Bob Freinberg, CEO of Airbus DS Communications. “With the new call-handling solution and IP network infrastructure, Hillsborough County will have the flexibility to take on next-generation features such as text-to-9-1-1 and multimedia calls in the future.”

The VESTA 9-1-1 solution will provide Hillsborough County with a geodiverse infrastructure that interconnects the 10 PSAPs. This will allow the agency to establish back-up scenarios so that if one PSAP goes down, its 9-1-1 calls are routed to another. The county also will have access to the VESTA® Analytics solution which provides powerful reporting tools such as the ability to review individual PSAP performance to strengthen response times and better manage resources. Additionally, the VESTA 9-1-1 system provides a user-friendly interface for Calltakers that can be personalized to match their needs.

For more information on Airbus DS Communications and its portfolio of public safety solutions, visit www.airbus-dscomm.com.

Airbus Defense and Space

Airbus DS Communications, Inc., an Airbus Defense and Space Inc. company, is a global leader and trusted source for mission-critical communications technologies. The VESTA® product suite provides Next Generation 9-1-1 call processing systems, land mobile radio solutions and emergency notification applications, creating smarter ways to keep all our communities safe. The company received the Frost and Sullivan 2016 Best Practices award as the NG9-1-1 Company of the Year. www.airbus-dscomm.com.

SOCs forgo security basics, leaving 82 percent of organizations below target maturity levels and vulnerable

DRJ LogoPALO ALTO, Calif. – Hewlett Packard Enterprise (HPE) (NYSE: HPE) today published its fourth annual State of Security Operations Report 2017, which provides deep analysis on the effectiveness of organizations' security operations centers (SOCs), and best practices for mitigating risk in the evolving cybersecurity landscape. With increased pressure to rapidly innovate and align security initiatives with business goals, a SOC provides the foundation for how organizations protect their most sensitive assets, and detect and respond to threats. However, findings from this year's report show that the majority of SOCs are falling below target maturity levels, leaving organizations vulnerable in the event of an attack. 

Published by HPE Security Intelligence and Operations Consulting (SIOC), the report examines nearly 140 SOCs in more than 180 assessments around the globe. Each SOC is measured on the HPE Security Operations Maturity Model (SOMM) scale that evaluates the people, processes, technology and business capabilities that comprise a security operations center. A SOC that is well-defined, subjectively evaluated and flexible is recommended for the modern enterprise to effectively monitor existing and emerging threats; however, 82 percent of SOCs are failing to meet this criteria and falling below the optimal maturity level.1 While this is a 3 percent improvement year-over-year, the majority of organizations are still struggling with a lack of skilled resources, as well as implementing and documenting the most effective processes.

"This year's report showcases that while organizations are investing heavily in security capabilities, they often chase new processes and technologies, rather than looking at the bigger picture leaving them vulnerable to the sophistication and speed of today's attackers," said Matthew Shriner, Vice President, Security Professional Services, Hewlett Packard Enterprise. "Successful security operations centers are excelling by taking a balanced approach to cybersecurity that incorporates the right people, processes and technologies, as well as correctly leverages automation, analytics, real-time monitoring, and hybrid staffing models to develop a mature and repeatable cyber defense program."

Key Observations

  • SOC maturity decreases with hunt-only programs. The implementation of hunt teams to search for unknown threats has become a major trend in the security industry. While organizations that added hunt teams to their existing real-time monitoring capabilities increased their maturity levels, programs that focused solely on hunt teams had an adverse effect.1
  • Complete automation is an unrealistic goal. A shortage of security talent remains the number one concern for security operations, making automation a critical component for any successful SOC. However, advanced threats still require human investigation and risk assessments need human reasoning, making it imperative that organizations strike a balance between automation and staffing.1
  • Focus and goals are more important than size of organization. There is no link between the size of a business and maturity of its cyber defense center. Instead, organizations that use security as a competitive differentiator, for market leadership, or to create alignment with their industry are better predictors of mature SOCs.1
  • Hybrid solutions and staffing models provide increased capabilities. Organizations that keep risk management in-house, and scale with external resources, such as leveraging managed security services providers (MSSPs) for co-staffing or in-sourcing, can boost their maturity and address the skills gap.1

Implications & Recommendations
As organizations continue to build and advance SOC deployments alongside the evolving adversary landscape, a solid foundation based on the right combination of people, processes and technology is essential. To help organizations achieve this balance, HPE recommends:

  • Mastering the basics of risk identification, incident detection, and response, which are the foundation to any effective security operations program, before leveraging new methodologies such as hunt teams.
  • Automating tasks where possible, such as response automation, data collection, and correlation to help mitigate the skills gap, but also understanding the processes that require human interaction and staffing accordingly. 
  • Periodic assessment of organizations' risk management, security and compliance objectives to help define security strategy and resource allocation.
  • Organizations that need to augment their security capabilities, but are unable to add staff should consider adopting a hybrid staffing or operational solution strategy that leverages both internal resources and outsourcing to a MSSP. 

Methodology
The methodology for assessments is based on HPE's Security Operations Maturity Model (SOMM), which focuses on multiple aspects of a successful and mature security intelligence and monitoring capability including people, process, technology, and business functions. The SOMM uses a five-point scale -- a score of "0" is given for a complete lack of capability while a "5" is given for a capability that is consistent, repeatable, documented, measured, tracked, and continually improved upon. The ideal composite maturity score for a modern enterprise is "3", while managed security service providers (MSSPs) should target a maturity level between "3" and "4". The reliable detection of malicious activity and threats to the organization, and a systematic approach to manage those threats are the most important success criteria for a mature cyber defense capability.

The full methodology is detailed in the report.

About HPE Security
HPE Security helps organizations detect and respond to cyber threats while safeguarding continuity and compliance to effectively mitigate risk and incident impact. Delivering an integrated suite of market-leading products, services, threat intelligence and security research, HPE Security helps customers proactively protect the interactions among users, applications and data, regardless of location or device. With a global network of security operations centers and more than 5,000 IT security experts, HPE Security empowers customers and partners to safely operate and innovate while keeping pace with the speed of today's idea economy. Find out more about HPE Security at https://www.hpe.com/us/en/solutions/security.

Join HPE Software on LinkedIn and follow @HPE_Software on Twitter. To learn more about HPE Enterprise Security products and services on Twitter, please follow @HPE_Security and join HPE Enterprise Security on LinkedIn.

About Hewlett Packard Enterprise
Hewlett Packard Enterprise is an industry leading technology company that enables customers to go further, faster. With the industry's most comprehensive portfolio, spanning the cloud to the data center to workplace applications, our technology and services help customers around the world make IT more efficient, more productive and more secure.

1 "State of Security Operations Report 2017" HPE Security Intelligence and Operations Consulting (SIOC), January 2017.

Forward-Looking Statements
This document contains forward-looking statements within the meaning of the safe harbor provisions of the Private Securities Litigation Reform Act of 1995. Such statements involve risks, uncertainties and assumptions. If such risks or uncertainties materialize or such assumptions prove incorrect, the results of Hewlett Packard Enterprise could differ materially from those expressed or implied by such forward-looking statements and assumptions. All statements other than statements of historical fact are statements that could be deemed forward-looking statements, including any statements of the plans, strategies and objectives of Hewlett Packard Enterprise for future operations; other statements of expectation or belief; and any statements of assumptions underlying any of the foregoing. Risks, uncertainties and assumptions include the possibility that expected benefits may not materialize as expected and other risks that are described in Hewlett Packard Enterprise's filings with the Securities and Exchange Commission, including but not limited to the risks described in Hewlett Packard Enterprise's Registration Statement on Form 10 dated July 1, 2015, as amended August 10, 2015, September 4, 2015, September 15, 2015, September 28, 2015 and October 7, 2015. Hewlett Packard Enterprise assumes no obligation and does not intend to update these forward-looking statements.

Google Cloud Platform Users to Benefit from Infrascale's Cloud Backup and Disaster Recovery Solutions to Combat Ransomware, Data Loss, and Downtime

DRJ LogoLOS ANGELES, Calif. – Infrascale, a leading provider of cloud backup and disaster recovery solutions, today announced it is now a Google Cloud Platform Technology Partner, providing a fully-managed cloud backup and disaster recovery service that provides guaranteed 15-minute failover of critical business applications in the event of a ransomware attack, server crash or site-wide disaster.

The collaboration between Infrascale and Google Cloud Platform enables organizations to better protect their data, uptime, and operational resiliency with a pay-as-you-go model, eliminating the upfront investment for organizations to procure and maintain secondary site infrastructure.

Backup to the Google Cloud

Infrascale offers a direct-to-cloud backup solution that protects laptops, desktops, and servers: Google Cloud Platform lets customers focus on what's next for their business and frees them from the overhead of managing on-premise infrastructure, provisioning servers and configuring networks. They don't have to worry about scaling; Google's built-in load balancer is part of a worldwide distributed system, the same global system that supports products like Google Maps, Gmail, and YouTube. This infrastructure and scale dramatically improves the performance of backup and recovery from Google Cloud Platform. 

Disaster Recovery with the Google Cloud

Infrascale Disaster Recovery protects organizations from the crippling downtime associated with server failures, site-wide disasters, or ransomware attacks and guarantees 15-minute failover of mission-critical applications. How can a public cloud deliver that kind of failover performance? The Google Cloud takes advantage of proprietary networking innovations and software defined networking that deliver significantly higher levels of performance than other public clouds. Early DR tests with the Google Cloud Platform demonstrate industry-leading boot speeds of virtual machines (measured in seconds, not hours) which translates to dramatically less downtime.

Tweet this: @Infrascale adds @GoogleCloud Platform as new target for its #cloudbackup and #DRaaS solutions http://bit.ly/2ipB0zn

"The reality is that every modern company depends on data and operational uptime for survival. There are no exceptions," said Chris Sterbenc, Channel Chief at Infrascale. "Infrascale is committed to expanding its disaster recovery as a service offering to all major cloud providers and we are excited to add Google Cloud to our existing lineup of Microsoft Azure and Amazon EC2 offerings."

System downtime costs U.S. businesses more than $100 billion annually. Traditional client-server backup and disaster recovery solutions were built to run on local area networks, not in today's distributed enterprise, and require considerable hardware on-premise. In stark contrast, Infrascale takes a cloud-centric approach to failover and eliminates the expensive infrastructure costs and resources needed to deliver push-button failover and business continuity.

To learn more about Infrascale's Google Cloud Platform integration, visit www.infrascale.com/google-cloud.

Availability
Infrascale's Cloud Backup and Disaster Recovery solutions are immediately available to Google Cloud Platform users. Please contact Infrascale at This email address is being protected from spambots. You need JavaScript enabled to view it. for more information.

About Infrascale
Infrascale provides the most powerful disaster recovery and cloud backup solutions in the world. Founded in 2011, the company aims to give every organization the ability to recover from a disaster -- quickly, easily and affordably. Combining intelligent software with the power of the cloud, Infrascale cracks the disaster recovery cost barrier by removing the complexity and cost of standby infrastructure to restore operations in minutes with a push of a button. Infrascale equips businesses with the confidence to handle the unexpected by providing less downtime, greater security, and always-on availability.

Visit www.infrascale.com or follow us on Twitter at @Infrascale for more information.

DRJ LogoEDEN PRAIRIE, Minn. – Power management company Eaton today announced the launch of its new Circuit Design Software Studio, an easy-to-use platform that streamlines the process of designing custom manifolds. The software tool offers new 3D design capabilities along with an updated product library featuring Eaton’s extensive portfolio of cartridge valve solutions, allowing customers to shorten design cycles while increasing efficiency for quicker communication and manifold display.

“The Circuit Design Software Studio was developed in response to our customers’ growing need for speed, providing a platform for them to easily position design components and communicate quickly with their clients,” said Todd McIntyre, product manager, global planning and strategy, Eaton’s Hydraulics Group. “From gathering customer requirements and selecting the right valve, to packaging solutions in a custom manifold, Eaton's Circuit Design Software Studio helps users to do it more quickly, cost-effectively and efficiently than ever before.”

Eaton Circuit Design Software Studio users can incorporate a variety of solutions into their 3D design, including surface mount valves, fittings, plugs and other components to ensure the manifold fits their project needs. Additionally, Eaton's new software tool offers a simple way to identify cartridge valve lead times and match valve pressures with specific system requirements for fast and efficient configuration. With the Circuit Design Software Studio tool, users can also stay up-to-date on pricing and lead-time adjustments by utilizing the updated valve library.

Information from the Circuit Design Software Studio tool can be accessed from a PC without requiring internet access for better ease-of-use. The platform also makes it easy for designers to export with a variety of formatting options, including STP, DWG, PDF, CDSX and XML. Step-by-step training modules are available from Eaton online 24/7 to guide users through each phase of their manifold design project.

To request a copy of Eaton’s Circuit Design Software Studio or learn more about the platform, visit www.Eaton.com/cdss.

Eaton is a power management company with 2015 sales of $20.9 billion. Eaton provides energy-efficient solutions that help our customers effectively manage electrical, hydraulic and mechanical power more efficiently, safely and sustainably. Eaton has approximately 95,000 employees and sells products to customers in more than 175 countries. For more information, visit www.eaton.com.

DRJ LogoDALLAS, Texas – DataBank, Ltd., a Digital Bridge portfolio company, has signed a definitive agreement to acquire C7 Data Centers, the leading data center service provider in the Salt Lake City market. C7 currently operates three, highly interconnected data centers in the region, including the primary carrier hotel in downtown Salt Lake City, and has a large established customer base of enterprise, carriers, content providers, and cloud services providers.

The acquisition complements DataBank’s existing portfolio in Minneapolis, MN, Kansas City, KS, and Dallas, TX, and is an attractive expansion market for DataBank’s existing customers. The market in Salt Lake City has experienced significant growth as a data center destination for west coast enterprises due to its network density and favorable business environment. The acquisition represents the Company’s first investment in the western United States and immediately positions DataBank as the leading provider in the Salt Lake City market with significant room for future expansion to support growth.

“Entering a new strategic market like Salt Lake City represents a huge milestone for the company,” said Timothy Moore, CEO of DataBank. “C7 has a strong reputation and is one of the leading providers of data center and IT services in the region. The C7 strategy, interconnection density, and client base is similar to ours; we see this as a natural extension of DataBank’s vision that will help us with our customers as they continue to expand.”

“We are very pleased to see DataBank executing on the growth plan and adding a fourth market in a growing region,” said Jon Mauck, DataBank’s President & Chief Investment Officer. He added, “We continue to see compelling opportunities, both organic and acquisition-related, on the horizon.”

“DataBank is a great fit for this market,” said Wes Swenson, CEO of C7 Data Centers. “It was immediately apparent how they would benefit our existing client base. The combination of new markets and expertise will add incremental capabilities and expand our geographic service offerings.”

Following the acquisition of C7, DataBank now operates in four major US markets. The company spans over a quarter of a million square feet of top-tier data center space across Salt Lake, Dallas, Kansas City and Minneapolis. Services include a full suite of colocation, cloud, managed and network services. For additional information on DataBank, please visit the company website at http://www.databank.com.

Stifel served as exclusive financial advisor to C7 Data Centers in the transaction.

About DataBank
DataBank is a leading provider of enterprise-class data center services, offering customers 100% uptime availability of data, applications and infrastructure. DataBank’s managed data center services are anchored in world-class facilities. Our customized technology solutions are designed to help customers effectively manage risk, improve their technology performance and allow them to focus on their core business objectives. DataBank is headquartered in the historic former Federal Reserve Bank Building, in downtown Dallas, TX. For additional information on DataBank locations and services, please visit http://www.databank.com or call 1(800) 840-7533.

About Digital Bridge Holdings
Founded in 2013 by Marc C. Ganzi and Ben Jenkins, Digital Bridge is focused on the ownership, investment and active management of companies in the communications infrastructure sector. Since inception, Digital Bridge has raised over $6.3 billion of debt and equity capital used to acquire and invest in the development of communications infrastructure businesses, including DataBank, ExteNet, Vertical Bridge, Andean Tower Partners, and Mexico Tower Partners.

About C7 Data Centers
C7 Data Centers is a privately held Utah company with data centers exclusively in Utah. The company is focused on providing state-of-the-art, high value and high-density multi-tenant data centers, delivering cloud, production, and disaster recovery solutions to local, national and international businesses. C7 is the largest data center provider in the State of Utah and is backed by Salt Lake City based Signal Peak Ventures.

Continuum Expanding Presence in Fast Growing Asia Pacific Market with Leading Managed IT Services

DRJ LogoBOSTON and SYDNEY, Australia – Continuum®, exclusive provider of the only vertically integrated IT service delivery platform that enables MSPs to scale rapidly and profitably, is expanding the company’s role in the Asia Pacific (APAC) market with a new regional headquarters in Sydney, Australia. Frank Bauer, who was part of Continuum’s founding team, will help to lead the company’s regional expansion and commitment as the new APAC Managing Director.

The new office underscores Continuum’s tremendous partner growth in the Australia and New Zealand markets over the past two years. The investment will help Continuum to directly support partners as they expand across the Asia Pacific region, maintain high service levels and build on strong demand for the company’s products and services.

“The investment highlights the increasing importance of the Asia Pacific market to Continuum, driven by robust demand for our offerings in Australia and New Zealand,” said Robert Kocis, Chief Revenue Officer at Continuum. “While it reinforces our commitment to our regional partners, the new office also represents our first step in expanding our footprint in this high growth and competitive market.”

Bauer’s 18 years of IT channel experience will be instrumental in Continuum’s APAC success, leading the strategic initiative to build a strong regional foundation. With a proven record of performance and relationship-building, he will use his strengths to work in close cooperation with regional Managed Service Providers (MSPs), IT Service Providers (ITSPs) and Office Equipment Dealers (OEs) to achieve their business goals.

Service excellence is a principal focus for Bauer and his new APAC team. With a direct presence in the region, he will help partners to meet their service level commitment and better support their regional operations. Reporting directly to Kocis, he is also rolling out Continuum’s regional strategy to expand its business across the diverse region.

“I am thrilled to be part of Continuum’s next chapter in global growth and development,” said Frank Bauer. “Our expansion into the Asia Pacific market with a new office and team solidifies our commitment to success in the region.”

Regional partners are already applauding Continuum’s new investment. They laud the company’s commitment to offering direct support to a region that is already experiencing tremendous growth in MSPs and ITSPs.

“With Geek’s aggressive growth strategy and induction into the CRN Fast 50 list of fastest growing IT companies in the APAC region, we were grappling with how to continue to scale our business without compromising our reputation for excellent customer service and responsiveness,” said Jon Paior, Consultant at Geek Pty Ltd, an MSP based in Australia since 2004. “Utilizing our HTG Peer Group, we conducted due diligence on multiple third party offerings and from Geek’s perspective, Continuum came out on top with every metric. The ease of client on boarding and the seamless interaction with their 24x7 Help Desk and NOC were unparalleled. Geek could not continue to meet aggressive growth targets without our close partnership with Continuum. We are pleased that Frank Bauer has been appointed to head up the APAC region – an indication of Continuum’s continued commitment to our region and community.”

With the addition of the new regional headquarters in Sydney, Continuum now operates from six offices, including Boston, Massachusetts (Corporate Headquarters); Cranberry Township, Pennsylvania; Houston, Texas; London, England; and Mumbai, India.

To contact the Sydney, Australia office, email: This email address is being protected from spambots. You need JavaScript enabled to view it..

About Continuum
Continuum empowers managed IT service providers, giving them the technology platform, services and processes they need to simplify IT management and deliver exceptional service to their small and medium-sized clients. Continuum’s vertically integrated IT service delivery model combines an unmatched SaaS-based technology suite with a world-class NOC and Help Desk, allowing them to not only remotely monitor, manage, backup and secure their clients’ IT environments from a single pane of glass, but scale rapidly and profitably. Continuum employs more than 1,400 professionals worldwide and monitors more than 1 million endpoints for its 5,800 partners, including MSPs servicing more than 60,000 SMB customers and web hosting providers protecting more than 250,000 servers with Continuum’s R1Soft product line. For more information, visit https://www.continuum.net/ or https://www.r1soft.com/ and follow on LinkedIn and Twitter @FollowContinuum.

Page 1 of 2417