On 6^th April, the Information Commissioner’s Office (ICO) will collect new powers enabling it to discharge the sort of stern clip around the ear that recalcitrant corporate data abusers rightly deserve.   Ahead of the big date, the Deputy Info Comm himself has been on the PR offensive to balance the iron fist of £500,000 fines on the one hand with the olive branch of guidance, sympathy and a nice cup of tea in the other.

Working at the ICO must be a bit like being a police officer attached to the ‘don’t drink and drive’ initiative circa 1975.  Everyone says it’s an important and worthy cause, but not enough to radically alter behaviour.  Not yet anyway…

Unlike the booze lobby who dragged their heels encouraging drinkers to leave their car keys at home, at least the ICO has an ally among the vendor and reseller community.  At least when they aren’t overdoing the FUD anyway…

Dare to look at your inbox and they’ll be sales pitches telling you that if it isn’t impending regulatory compliance of one form or another that is hours away from burning down your house and strong-arming your kids off to a Siberian gulag, then bet your bottom dollar the ICO will soon be rapping your quivering buttocks with court summons to pay a £gazillion data breach fine.   But scare tactics only work up to a point, and it’s encouraging to see that the ICO appreciate that fact.

What broke the back of the drink drive problem wasn’t just shock and awe, or education – it was honesty.  People were honest with each other, admitting they’d done it, that it was wrong, and that they wouldn’t do it anymore.

Honesty in terms of data breaches would start with many IT depts admitting they don’t have a terrific handle on exactly what the hell is going on event logging and reporting wise, and that in the event of a critical issue they wouldn’t have the internal resources to deal with it.  While that may necessitate a technical solution from a trusted source, internal corporate paymasters need to sit up and listen too.

Keeping data secure is a strategic issue, and not simply an operational one.  IT pros may or may not need help to solve it, but they could all do with extra time and resources to avoid it getting washed overboard by other ‘priorities’.

It is Friday, which in the Automated IT towers often means an excitable hive of happy activity. We thought we would share in that happiness by highlighting some good news for IT and Technology workers. Silicon have reported that “many IT professionals can expect to see their salary rise by around an average of £10,000 every five years.”

Now before you go cracking open the bubbly, take your time to read the research, it is better to savor good news slowly. Apparently “Techies working in project management are those likely to see the biggest jumps in earnings as they progress up the career ladder.”

Security is one of the IT certainties that you could probably add to the “nothing can be said to be certain, except death and taxes” proverb. Although, perhaps Benjamin Franklin wasn’t exactly clued up with the debate around automating IT security processes.

One thing Franklin did often refer to was laws; compliance if you will, something that has driven the IT security world (nuts?) for a number of years. Compliance to meet the security and regulatory changes that have occurred in the last decade has been a central factor in the development of IT management processes.

Do you know your PCI from your Data Protection Act; your HIPAA from your MiFiD? Details are just a smokescreen when the problem is that wherever compliance is mandated, it has often meant manual responses such as sifting through security reports and events for malicious activity. This is a hugely inefficient process made worse by regulatory pressure. While regulators will continue to bring in new standards and such like, security has become a far wider, holistic entity within an organisation.

Security Information and Event Management (SIEM) is one such technology that can greatly aid IT managers in trying to automate and add efficiency to security processes. The benefits to such a solution can include; improved detection of cross-enterprise threats, ending the need to interrogate multiple data sources, space and power savings, and empowering more professionals with less specialised skills to be able to carry out the task. And that’s to say nothing of the enormous compliance benefits…

Happy Birthday Cloud

So the Internet is 40 years old this month; assuming of course that you carbon date one of IT’s most seminal births back to when a few ARPANET boffins first started tinkering with their nodes.

Regardless, all IT pros agree that a lot of ‘cutting edge’ technology has become obselete during that period. Disk storage no longer means a filing system for floppies, high-speed communications are now Gigabit/s rather than Kilobit/s, and ‘the great fax machine revolution’ is something we prefer not to talk about. 40 days is a long time in IT, let alone 40 years.

But while IT continues to be dynamic and evolutionary, the repetitive manual processes that often surround it are stuck in the dark ages. IT is still exciting and surprising, but it is also a utility service; a cost-centre; a business-critical asset.

So what does the future hold for IT? With all the business pressures and expectations, is there still room for innovation? With the constant need to integrate and exploit new technological capabilities, how can IT maintain financial and operational discipline?

They say life begins at 40, so it’s worth considering operational improvements sooner rather than later. Then again they also say 40 is the new 30. In any case, it’s a numbers game…

Forrester Research’s State Of Enterprise IT Budgets: 2009 survey has highlighted that it forecasts enterprises reducing their operating and capital budgets by 3% in the US and 2% in Europe. Perhaps more worryingly, the same research looking exclusively at SMB’s IT budgets found an even steeper reduction in IT budget spend (4% in US, 3% in Europe).

At AutomatedIT we always look for a silver lining – particularly when it comes to automation delivering tangible cost savings for organisations. Even in a reduced budget environment, introducing and extending automation into your IT infrastructure can make any budget go farther and work better. This is particularly important for SMBs, who can generally make more pronounced and beneficial changes than larger organisations

In fact, making those changes, saving money and reducing man power will shine even brighter when budgets contract – you might even get a thank you from your boss, or those prickly lot in the financial department.

Don’t be scared of what the scary research tells you; by using automation, you can embrace the challenge and make your budget go further.

Keeping the datacentre going would be easy if you had a pair of impulse engines and a warp drive.  Sadly, there is such economic concern regarding the electrical powering of datacentres and IT in general at the moment, that there is even talk of UK businesses having to move their facilities abroad to avoid huge running costs.

(more…)