- +
Ticked Off at Tick the Box Mentality 04/02/2008 13:01:15
Does your executive search firm know the difference between an MIS manager and a CIO, and if it does, can it explain that difference to its corporate clients?Does your executive search firm know its MIS managers from its elbow? Does it even know the difference between an MIS manager and a CIO, and if it does, can it explain that difference to its corporate clients? - +
Doing Your Sums on . . . Build, Buy or Rent 05/11/2007 13:32:30
You’re trying to build a world-class IT team, but everyone’s going after the same talent pool. What mix works best? Should you grow your own, draft your players or barter your way to the line-up you want to field?CIOs should never forget that while new technologies have a maturity cycle, the maturity cycle for human beings in IT is even longer - +
What Price Innovation? 05/11/2007 13:44:31
CIOs say they want more than the traditional “your mess for less” relationship with their outsourcing providers. And the providers want to market themselves as partners in innovation. So why isn’t it happening?CIOs say they want more than the traditional "your mess for less" relationship with their outsourcing providers. And the providers want to market themselves as partners in innovation. So why isn't it happening? - +
9 Paths to Higher Performance 10/12/2007 14:09:23
When an organization brings together talented people in a creative, collaborative environment it fosters a culture of high performance, which in turn leads to superior business resultsLike high-achieving individuals, some organizations seem to have the Midas touch. Virtually every initiative they touch earns them gold and even those that fail never seem to cost them much of anything at all
Read up on the latest ideas and technologies from companies that sell hardware, software and services. Cutting printer costs
Wireless LANs: Is my enterprise at risk?
How to Beef Up Your Sales Pipeline
Best Practice in Building an Integrated Information Management Strategy
CRM your salespeople will love
Radicati Market Quadrant 2008 on Corporate Web Security
Email Archiving Implementation: Five Costly Mistakes to Avoid
Taking On Demand CRM Integration to the Next Level
Zones provide focussed content from Computerworld and leading technology partners.Newsletter Subscription
With some 48,000 contracts, worth an estimated $14.8 billion, entered into by federal government departments annually, security procedures for dealing with contractors still require improvement, according to the Australian National Audit Office (ANAO).
In a recent report titled Managing Security Issues in Procurement and Contracting, the ANAO examined 44 contracts, including at least 20 related to IT, across four agencies to evaluate whether they were effectively managing security risks arising from the use of contractors.
The Australian Customs Service, Commonwealth Superannuation Administration, the Department of Finance and Administration, and the Department of Foreign Affairs and Trade were involved in the audit. The Attorney General's Department, responsible for the administration of the Protective Security Manual (PSM) was also consulted.
The PSM is the main source of protective security policies, principles and responsibilities for Australian government agencies, and prescribes the "minimum protective security standards" for agencies to maintain, including protecting the official information it generates and receives.
The audit focused on two broad types of contracting arrangements: contracting of security functions; and contracting of any service or business function that may require contractors to access sensitive or security classified information.
Overall, the ANAO concluded that the audited agencies were effectively managing security risks during the procurement phase when contracting out security functions, or functions that may require contractors to access sensitive information; however, the audit identified scope to improve the management of security risks once contractors had been appointed.
Interestingly, of the four audited agencies, there was a record of one recent security breach involving a contract examined during the audit.
"While this suggests that contractors may have largely adhered to security requirements, the ANAO notes that security breaches are sometimes not reported," according to the report. "In this regard, one of the audited agencies did not have a system to effectively monitor and report such incidents."
With an estimated asset base of $206 billion across the general government sector, contracting is an integral part of the way Australian government agencies conduct business.
Another area cited as lacking in security are training programs for new contractors.
Here agencies could have improved processes and practices to ensure appointed contractors attend security training; monitor contractors' adherence to security requirements in contracts; and reassess security risks in contracts when circumstances changed substantially, or when contracts were extended significantly beyond their original life.
Computerworld Member Login
Discover how SOA can create smarter outcomes for your business.
Attend and learn:
- How SOA is helping leading companies to become more agile
- Where you should be applying SOA processes in your company
- The top SOA implementation mistakes to avoid
Click here for more information.
- +
Computerworld Live Podcast #97: The Future of Enterprise Networking 25/07/2008 09:45:36
This week CW Live chats with Mark Thompson, global sales and marketing manager for HP ProCurve, on the future of the enterprise networking. Mark discusses the trends we can expect to see in the near future and how the right infrastructure can ensure your enterprise network is secure. - +
Computerworld Live Podcast #96: Security at the Edge 11/06/2008 09:22:22
CW Live speaks with Amol Mitra, HP ProCurve Director of Marketing for Asia Pacific and Japan. Today's topic: how enterprises are starting to shift away from simply controlling security via server logins, firewalls and moving to more adaptive security frameworks. - +
Data Management Edition #10: Multi-Petascale Systems 02/05/2008 09:12:33
This week we look at sustainability and the development of multicore technologies to build multi-petascale systems. - +
IT Security Edition #11: How to poison the Storm botnet 01/05/2008 08:51:55
This week CW Live presents a case study on how to poison the notorious Storm botnet . Plus we take a look at Cisco's plans for Ironport. - +
IT Security Edition #10: Cyber-battles fought and won 24/04/2008 11:09:47
Vendors bow to end user pressure to improve product security, and we take a look at the latest concepts shaping the cyber-battlefield of the future.
VeCommerce Launches Top Ten List of Personal Security Breaches In Lead Up to National ID Fraud Awareness Week 2008-10-07 15:10:00+10
Multimedia Technology signs exclusive National distribution agreement with Freecom 2008-10-07 14:30:00+10
Open Text: Upheaval in the Financial Markets Sharpens the Focus on Information Governance and Enterprise 2008-10-07 13:19:00+10
Symantec State of Spam Report - October 2008 2008-10-07 11:58:00+10
AIIA to Reward Sustainability and Green IT Champions at the 2009 iAwards 2008-10-07 11:56:00+10
Solve Exchange Storage Problems Once and For All: A New Approach without Stubs or Links
The management of Microsoft® Exchange storage growth is the most challenging problem facing Exchange administrators. Because of the popularity of email as a communication technology, and because users tend to keep email, maintaining adequate storage on the Exchange Server is a constant challenge. Learn how to maintain the space you need by reading on.
