fbpx Skip to main content

Confessions of an IT Professional – Part 1

By November 5, 2018January 30th, 2019Security
Confessions of an IT Professional Series

Terry Allen, Technical Engineer, OXEN TechnologyThis week’s article is the first in a series by OXEN’s own Terry Allen, one of our technical engineers based in Joplin, MO.

This post originally appeared on Bloggin’ IT with Terry Allen and is reprinted with permission.


This post is rated E for everyone.

These aren’t deep, dark secrets–but they are confessions in two senses:  1) admission and acknowledgement and 2) a statement of one’s principles.  I have to confess that most of what we’re doing today to protect ourselves from modern Internet threats is insufficient.  Before you bail on me banging the ‘security drum’ again, stick with me a little bit longer and catch my main idea:  we’ve got to do more than just consume IT and learn how to adequately protect ourselves from modern Internet threats.  Don’t wait until you get mugged in an Internet back alley before taking proactive responsibility for technology that enables our lives and businesses!

Modern Internet threats are motivated by a lot of different things.  It’s a common thought that “malicious actors” (aka the bad guys) wanted to steal our data for its value, like identity theft or credit card numbers.  These data are still valuable targets but the focus has shifted.  Malicious actors are using another powerful motivator for digital crime:  It’s not only about how valuable your data is to them.  The more valuable question is, how valuable is your data to you?

I’ve been around Information Technology for a little while.  When we talk about “cybersecurity”, we’re often talking about one or more of these ingredients:

  • User ID & password
  • Antivirus
  • File backup
  • Firewall
  • Antispam or e-mail filters
  • One time setup & forget it

My first confession: this is not enough to protect us from the threats of a modern day Internet.  A lot has changed in the world to make our traditional security measures less effective.  A few examples are Next Generation or UTM firewalls, new classes of malicious software (not just viruses anymore), email attacks through use of harmful web links or file attachments, evolution of system image backups and multi factor authentication–just to name a few.  Many of you may not identify all of the these examples.  And that’s why I need to confess more to you.

It’s easy to use technology out of the box or consume the free online service.  But these things come with a price.  We must start thinking about approaching technology like we do our homes, cars or health.  It can seem like a significant burden to educate ourselves about these things but that’s part of the “total cost of ownership” of making technology an enabler for so many things.  It has been elevated to a utility that many of us cannot function without.  We’ve built it into our lives and we’re greatly inconvenienced or even disabled when it doesn’t function right.

In future posts, I want to deal with each of these topics briefly as it relates to home and business users.  Technology has never been a bigger part of our lives and the risks to our security, privacy and functionality are equally as big.


Recent Posts / View All Posts

Compliance

IT Compliance and Why It Is Important for Your Business

| Business Productivity, Managed Services, Security | No Comments
In running a business, there are a lot of important matters that need to be taken care of. Even if they are not really in line with the core competencies of the business. One such matter is IT compliance. In the last few weeks, we have been talking about compliance and how it is important to your business. What Is IT Compliance? One of our recent blogs gives a brief but enlightening overview of what IT compliance is all about. In a nutshell, it is the process of complying with the rules, regulations and requirements set by a third party, which aim…
Achieving Compliance

Achieving Compliance as a Team

| Business Productivity, Security | No Comments
Before your company can fully comply with all the requirements set by third parties like regulatory bodies and clients, there are dozens upon dozens of tasks that need to be completed. These tasks are spread across different areas of the company and are impossible for just one individual to accomplish. The process of achieving compliance would require a fast and thorough team of compliance specialists. Vital Matters to Discuss when achieving compliance In most cases achieving compliance failures can be attributed to a lack of planning and communication. To avoid these problems, bring your compliance team together right from the…
IT Security

What Is IT Security and IT Compliance?

| Business Productivity, Security, Tech Tip | No Comments
IT security and IT compliance are two essential matters for any business or organization. Many people think they are the same, while others frequently confuse one for the other. They are not the same thing, but when implemented together, they can provide maximum digital safety and minimize the risk of data breaches and other online threats. In this article, we’ll explain which is which and why both require your attention. What Is IT Security? As the term implies, IT security refers to ensuring the security of a company’s or organization’s IT infrastructure. When creating a security strategy for your business,…