Building the Security Team of Today and Tomorrow

first_imgTechnologies such as mobile, social networking, analytics and cloud computing are changing the security landscape, and security technologies are rapidly evolving to address that change.It’s not just the technology that needs to change, however: security teams need to change as well.EMC has evolved and must continue to evolve our security team to effectively combat the threats of today and tomorrow. The core skills essential to expand include business engagement and awareness; a consultative approach; the ability to sell or “market” security; and creative control design for the mobile and cloud-enabled world of tomorrow.Another key group of skills that I recently had the opportunity to discuss at our RSA Global Summit is advanced security and defensive operations.Over the last few years we’ve developed a state-of-the-art Critical Incident Response Center (CIRC) at EMC. A large factor contributing to our success is the team that built, evolves and operates it. Sustaining the protection the CIRC provides depends on our ability to leverage the model we have used to date.First, we built a solid foundation. We established a base of skilled practitioners with deep knowledge and years of experience in this area. These proven leaders hold another critical skill as well–the passion to educate and mentor.To maintain that foundation, we must:Provide career paths, advancement and opportunityPay competitively, although money is not enough (though it does help!)Create professional development opportunitiesProvide industry visibility through participation in forums and industry organizationsFacilitate and support true bi-directional information sharingEnable innovationAddress their frustrations and remove roadblocks to support their ability to provide the best defense possible.We build on that foundation by introducing new talent —energetic, smart, eager-to-learn, self-starting, inquisitive, confident, persistent problem-solvers— into entry-level positions. Using this combination of mentorship and on-the-job training, we shape incoming talent into the practitioners of the future.So where do we find these people? There are several sources where we have had success.First, we look to college hires and interns. We find them early, train them, and make them part of the family. We try to keep them engaged by keeping them employed during the school year and then pulling them into entry positions when they graduate.The other significant source we have is from cross-training IT operations team members. These professionals bring not only technical knowledge and key skills, but information about the IT infrastructure and connections across the IT team who can provide answers and speed actions.CSOs from smaller organization may ask, “I can’t afford a large, dedicated response team like EMC’s.  What can I do?”Scaling the CIRC function down into smaller teams requires compromise, simplification, automation, and using services for commoditized components. It’s essential to focus on delivering high-value tasks—those that map and tune the protection to the enterprise, such as incident management and response—with internal resources. Tasks that enable you to govern and evolve the level of protection remain inside as well, as do those that ensure that service levels are met. Commodity tasks such as first-level response and malware analysis can be delegated to service providers.A critical issue to think about in any program is how to scale the response when a large incident occurs. It’s important to have an existing relationship with a provider and an understanding of how you will work together. The last thing you need at a time of crisis is for people to lose focus because they are battling over roles.One last, essential area to consider is data science—a skill set needed to take full advantage of analytics. Analytics will increasingly be built into security technology, but near-term and for specific scenarios we need access to this scarce and often high-priced skill set. Whether you find this talent in other areas of your business or through external partners and providers, the key to success is to partner your experienced CIRC analysts who understand the threat with this analytics talent. Together they can provide crucial insights into your data and environment.As you build and evolve your team, keep in mind that the best security technology is only as strong as the team that uses it.last_img read more

Expert Insight on How to Make VR Real

first_imgRecently on Direct2Dell, I shared how National Geographic Explorer Martin Edström brought the world’s first virtual reality (VR) experience with lions to life, but you may be wondering how VR could be used in the business world.To help reveal real-world implications of using VR within your business, Qualtrics – in association with Dell – has surveyed 500 business decision makers around the world who were either currently working on a VR project, or who had already completed one.The resulting “Making VR Real” report showcases the potential of virtual reality in 2018 and provides a unique insight into one of the world’s most innovative industries.“In this report, we hope to paint a true picture of the varied business cases for VR, by undertaking the broadest piece of business-focused VR research to date, whilst also shining a light on how VR is being used in the real-world today,” said Jack Davies, head of content at Qualtrics EMEA.They found that VR is contributing a huge amount to the economies of the different countries they surveyed, but that 52 percent of those working on VR projects still see it as emerging tech.Why are they choosing to use it? Fifty-eight percent said they agreed or strongly agreed that VR offered benefits that no other medium did. The majority also felt that it showcased their own innovative capabilities and demonstrated leadership in their industry.Some of those surveyed include our customers Jaguar Land Rover and Framestore. Framestore uses Dell Precision workstations to bring their customers’ stories to life, including our own Dell Technologies story. And Jaguar Land Rover launched their first fully electric SUV, the Jaguar i-Pace at a VR press conference powered by Dell Precision workstations. event was so well-received that technology analyst Rob Enderle said it even led him to sign up to buy one. He added: “Dell, HTC, and Jaguar are changing not only how you buy cars but how you design, build, and buy them.”That’s because Jaguar Land Rover also created a VR experience for the sales process in their showrooms and 58 percent of retailers they surveyed said it added value.“Having VR more integrated into the sales process is something we need to work on for future projects,” said Mel Simkiss, global retail environment manager at Jaguar Land Rover, in the “Making VR Real” report. “What would be great is a customer comes in, having configured the car at home, and they are then issued a code which we can use to demo the car they’ve configured using VR. Then we can help them order it, there and then, in the showroom. We’re a way off just now, but ultimately that’s the goal.”The “Making VR Real” report also includes case studies from Make Real, a UK-based team that makes immersive digital products, and 10 lessons they learned working with several clients.I won’t give them all away here (download the report for that), but the first lesson was to start small. Begin with a small budget — that is more acceptable to those who have financial sign-off — to create a prototype or proof of concept piece of content that has one or two clear business objectives, or learning outcome goals defined.This survey found that just over 25 percent of the projects respondents worked on had a budget of $100,000-$250,000. But as you can see in the chart below, many more were accomplished for less than that.And while Framestore has experience with Hollywood-size budgets, and VR being used for primarily marketing and public relations purposes, they’re starting to see a lot of products being developed (for profit) outside of the entertainment industry – especially in healthcare.“Personally, I’m excited about how VR can be used in areas like education and healthcare,” said Christine Cattano, global head of VR at Framestore, in the report. “We’ve been dabbling a bit here – but some of the products and R&D projects that are currently out there are pretty mindblowing, I think those are the types of things that will start to move the needle for the general public on the true potential of AR and VR tech.”For more survey results, and insights from interviews with a broad cross-section of VR experts, from artists, to agencies, to clients, and startups, download “Making VR Real.”last_img read more

Save Costs & the Planet with IoT

first_imgI love well-designed solutions where everyone wins. Our recent collaboration with Vodafone and Utilitywise is a great case in point – three companies coming together to provide an IoT-based energy monitoring solution for thousands of companies in the UK.The results speak for themselves. Access to real-time data has delivered up to 20 percent savings on business operating costs for customers with a clear return on investment within twelve months. Meanwhile, reduced energy usage translates into a cleaner environment.Combining expertiseAs is the case with all successful collaborations, the three partners brought different expertise to the table. Our Edge Gateway is powered by a dual-core Intel® Atom™ processor and connects to a variety of wired and wireless devices and systems to aggregate, analyse the input, store, and forward the data.Vodafone adds connectivity and Cloud Hosting while energy consultancy experts, Utilitywise, delivers energy data analysis and reporting.Central hubThe platform – accessible through a web browser or smartphone application – acts as a central hub, collating all the critical data, gathered by separate building management systems that traditionally don’t talk to one another, such as lighting, security access control, water, heating, elevators plus large equipment like refrigerators in a retail environment and air conditioning.Knowledge is powerYou can view and compare energy metering data across multiple sites to monitor efficiency, cost, and waste. For example, you can identify energy costs per piece of equipment, track your reduction targets, access energy saving tips, convert energy units like kWh into the corresponding monetary value or carbon calculations. It’s all about giving you new insights that will deliver actionable savings.Good for you and for the planetAccessing this data allows you to change how energy is being used, optimise your systems and re-negotiate existing contracts with energy providers. You get real-time access to all the knowledge you need to start cutting your consumption, saving money and reducing your carbon footprint.This story is a great example of how IoT is being used to transform business and deliver practical benefit. It also demonstrates our commitment to Dell4Good, where we put our technology and expertise to work for the good of our planet.Read more about our partnership with Vodafone and Utilitywise: in touch. Follow us on Twitter and @DellEMCOEM, and join our LinkedIn OEM & IoT Solutions Showcase page here. To learn more about Dell EMC OEM Solutions, visit: more about Dell EMC’s IoT Solutions Labs: read more

Communication is the Heart of Understanding

first_imgHey…are you listening…I mean really listening? Shutting out the chatter of news feeds, hashtags, and political tweets – not to mention work from home distractions – is a constant challenge today. Setting aside time to have a real discussion about what is truly important is a muscle that has to be developed over time. A missed signal from a server data set could mean you will spend the next four hours combing through server logs to find the root cause of that dreaded amber light. Missing a signal from a loved one could cause emotional stress. The origin of both problems is similar: a missed data point or trend that could have been addressed before it becomes an issue.The beating heart of any PowerEdge Server is the integrated Dell Remote Access Controller 9 (iDRAC9). Because iDRAC9 is integral and embedded into every PowerEdge server, there is no additional software to install to take advantage of the advanced agent-free architecture. iDRAC9 v4.x (introduced in 2019) with the Datacenter License has the option to enable comprehensive telemetry streaming.Gartner estimates that by 2023 almost 30% of all enterprise deployments will utilize Artificial Intelligence operations to capture, analyze and predict problems. The dataset to deliver insight from a Dell PowerEdge server estate benefits from iDRAC9 Datacenter and telemetry streaming. It can provide a communication channel to provide highly granular DMTF Redfish out-of-band and agent-free data to determine their server infrastructure operational characteristics.An average configured PowerEdge Server with iDRAC9 telemetry provides more than 2.9 million time-series data points a day. That figure multiplied by the number of servers in your estate can represent a massive amount of information about your data center.iDRAC9 telemetry can use proactive insights to help you pinpoint and address time and cost challenges like bursty power usage, thermal hotspots, or the dreaded zombie servers in the data center. Capturing over 180+ metrics from each server in near real-time collection needs to be coupled with a visualization platform like Splunk. Watch a 2 minute video explanation below: Server administrators can spot anomalies or negative trends before they occur. In your day-to-day relationships, your brain’s complex neurons act as the simultaneous collection and visualization and analysis tool. A recent study shows that the human brain can hold roughly one petabyte (or a quadrillion bytes) of information while requiring only 20 watts of power. That’s barely enough power to power a light bulb. This ability to collect, analyze and decipher emotional datasets is sometimes called emotional intelligence. We are nowhere near that level with AI operations to date. The challenge is to cut through the massive amounts of data to determine what is most important.A custom telemetry report can help filter the most pertinent information your full server estate ensuring you are “truly listening.” Such configurations allow customers to present only the configured metrics and devices included in the telemetry stream determined most important. The custom configuration provides much more flexibility in selecting the metrics of interest and realizing aggregation (max, min, an average of the metric for some time) and aggregation use cases around these data points. Use cases include optimizing IT operations, decreasing downtime with predictive analytics, and even enhancing security and compliance.While nowhere near as complex or insightful as a human relationship, the communication and data set acquired from iDRAC9 Datacenter and Telemetry Streaming represent a considerable step forward in helping our customers leverage the extensive data available in their PowerEdge servers. Customers can easily stream this telemetry into their analytics tools and leverage advanced AI techniques to automate their IT systems management and operations, ensuring that they can spend more time with the ones they love instead of solving data center issues.last_img read more

Pirates attack Turkish ship off W. Africa; kill 1, kidnap 15

first_imgANKARA, Turkey (AP) — Turkish officials say 15 sailors have been kidnapped and one killed by armed pirates that attacked a Turkish cargo ship off the West African coast. Turkey’s Maritime Directorate says the crew initially locked themselves in a safe area but the pirates forced entry after six hours. During the struggle, one crew member aboard the M/V Mozart died. Media identified the victim as an Azerbaijani engineer. The state-run Anadolu news agency said the pirates, after taking most of the crew on Saturday, left the ship in the Gulf of Guinea with three sailors aboard. Turkey’s foreign minister said the country is trying to negotiate the release of the abducted sailors.last_img read more

General Motors sets goal of going largely electric by 2035

first_imgGeneral Motors has set a goal of making the vast majority of the vehicles it produces electric by 2035, and the entire company carbon neutral, including operations, five years after that. The Detroit automaker’s push into electric vehicles has gone into overdrive this year. GM has already announced that it will invest $27 billion in electric and autonomous vehicles in the next five years, a 35% increase over plans made before the pandemic. It will offer 30 all-electric models worldwide by the middle of the decade. By the end of 2025, 40% of its U.S. models will be battery electric vehicles. The company plans to include crossovers, SUVs, sedans and trucks in its electric vehicle lineup.last_img read more

Ex-Salvadoran soccer boss brought to US to face bribe charge

first_imgNEW YORK (AP) — A former soccer federation president for El Salvador has been sent to New York City to face U.S. corruption charges in a long-running FIFA bribery scandal. Salvadoran authorities had arrested Reynaldo Vasquez in 2016 as part of an international roundup of top officials of soccer’s governing body. He denied the charges while putting up a failed extradition fight in El Salvador. The 65-year-old Vasquez made a remote court appearance on Friday in New York where he pleaded not guilty and was ordered held without bail. Vasquez’s defense attorney declined comment.last_img read more