You may recall a blog entry some months ago about recent studies showing the incredible waste of business productivity resulting from constant interruptions in employee work to review e-mail. Now a new contender for lost productivity champion has appeared on the horizon: microblogging. Supporters argue that employees can continuously update their progress on projects and other matters throughout the day by posting brief (micro) entries on an internal blog. Of course, like 99.9999% of other blogs on the Internet, the likelihood anyone, other than a very select few, will ever review postings is remote at best. The question then arises, couldn’t the same result be obtained by an e-mail, with a predefined project distribution list, achieve the same result, without the investment in implementing yet another technology solution that will likely find little use? Also, what is the likelihood these blogs will be perused by other employees having no real business purpose in doing so – presenting yet another opportunity for lost productivity. The blog could certainly be configured to permit only relevant employees to review its contents, but that argues in favor of simply using an e-mail to update progress on a project rather than implementing an entirely new technology.
Vendor contracts are increasingly including provisions that could lead to breaches of security. At first glance, these types of provisions may appear innocuous, but they create the circumstances under which compromises of security may occur. A few examples:
Following up on my last posting, this week I talk about the basic elements of a document retention policy. While a review of the broad range of applicable laws cannot be addressed here, there are certain general guidelines for the establishment and implementation of a retention program that should be considered in developing a policy:
Watch this webcast to learn how your organization can leverage PricewaterhouseCoopers' Global Information Security Survey 2008, the world's largest survey on privacy and infosec practices.
You may recall a blog entry some months ago about recent studies showing the incredible waste of business productivity resulting from constant interruptions in employee work to review e-mail. Now a new contender for lost productivity champion has appeared on the horizon: microblogging. Supporters argue that employees can continuously update their progress on projects and other matters throughout the day by posting brief (micro) entries on an internal blog. Of course, like 99.9999% of other blogs on the Internet, the likelihood anyone, other than a very select few, will ever review postings is remote at best. The question then arises, couldn’t the same result be obtained by an e-mail, with a predefined project distribution list, achieve the same result, without the investment in implementing yet another technology solution that will likely find little use? Also, what is the likelihood these blogs will be perused by other employees having no real business purpose in doing so – presenting yet another opportunity for lost productivity. The blog could certainly be configured to permit only relevant employees to review its contents, but that argues in favor of simply using an e-mail to update progress on a project rather than implementing an entirely new technology.
Vendor contracts are increasingly including provisions that could lead to breaches of security. At first glance, these types of provisions may appear innocuous, but they create the circumstances under which compromises of security may occur. A few examples:
Following up on my last posting, this week I talk about the basic elements of a document retention policy. While a review of the broad range of applicable laws cannot be addressed here, there are certain general guidelines for the establishment and implementation of a retention program that should be considered in developing a policy:
» read more
Data Center Directions Virtual Conference
» Learn more and register here
Safeguarding the New Currency of Business
» View the webcast
2 days 14 hours ago
2 days 22 hours ago
3 days 19 hours ago
1 week 5 days ago
1 week 5 days ago
» More posts
Get instant notifications when whitepapers, webcasts and case studies are added to our library. Sign up for a Resource Alert now!
CSO Corporate Partner
CSO Executive Seminar on Application Security
(ISC)2 members can earn up to 6 CPE Credits
Reference priority code ONLINE and attend this program as our guest — that's a $295 savings!
Think your data is safe? Think again. It's time to Outthink the Threat. Get eBook now
Understanding Data Location is Imperative for Data Loss Prevention
Revolutionizing Endpoint Security with a Single Agent
Check Point Endpoint Security - Unifying Essential Components
Optimizing Mainframe Success by Simplifying Mainframe Ownership
Expanding Roles of Data Management Professionals: A Survey from Industry Peers
Safeguarding the New Currency of Business
Key strategies for C-level executives and security staff
Learn how the new Quad-Core AMD Opteron™ processor improves performance
A CISO's Guide to Application Security
Data Protection: Challenges for the Traveling User
The Mainframe Conundrum: Escalating Workloads, Shrinking Staff
Mainframe Tape Encryption Key Management
Employing Best Practices for Tape Encryption
The Evolution of Application Security - Reducing Risk in Your Organization
THE IDG NETWORK