Book Excerpt: The Adventures of an IT Leader, Part 3

A new CIO scrambles to contain a security breach—and to keep his job. Read the third installment of our exclusive series.

By Robert D. Austin, Richard L. Nolan and Shannon O'Donnell
Wed, March 11, 2009
. What's this?

CIOThe story so far: Jim Barton, the head of loan operations for financial services company IVK, has been tapped as the CIO by the company's new CEO, Carl Williams. The previous CIO has been fired, and Barton must restore Williams's confidence in IT while he learns on the job. In his previous role, Barton had argued against a security upgrade. Now an apparent data breach may have compromised customer information, and Barton's job as CIO is on the line. Read the first and second installment.

More on CIO.com
Book Excerpt: The Adventures of an IT Leader, Part 1
Book Excerpt: The Adventures of an IT Leader, Part 2
Book Excerpt: The Adventures of an IT Leader, Part 4

Friday, June 29, 9:12 a.m....

Barton and his direct reports had convened at 7:15 a.m., and they'd begun talking through a list of issues.

First, they needed to identify the security measures they wanted to implement to reduce the risk of future attacks. The upgrade project that had been rejected earlier would be accelerated, but Barton wanted them to figure out what else they could do.

Second, they needed to decide what should be done to make the company secure against additional mischief from the attack that had just happened. They had no smoking gun to tell them that there had been intruders, but neither could anyone think of a way a database index file could be renamed without someone meaning to do it.

Third, they needed to figure out what to recommend to Williams about what, if anything, they needed to disclose outside the company. This was the issue most likely to get people fired, the issue most likely to spell an ugly end for IVK.

Friday, June 29, 3:47 p.m....

Options were shaping up. The team would work on "future event avoidance" on a less urgent time frame, but the other two issues, recovery from the attack and what to disclose, had to be dealt with now. There were three possible courses of action:

1. Do nothing. Assume that the past mischief was the worst that the bad guys had intended—if in fact there had been bad guys.

2. Shut down the company except for operations that could run manually and rebuild critical systems from development files. This was the "playing it as safe as possible" option, but the shutdown would be noticeable enough from outside IVK that it would need to be explained.

3. Build a mirror site from development files and rebuild production systems after the mirror site was up and running. It would cost money and take a couple of weeks to assemble the necessary facilities and equipment.

Continue Reading

What is Tech Briefcase?
TechBriefcase is a new, free service where IT Professionals can Search, Store and Share IT white papers and content like this. Learn more
Bookmark content
Speed up your research efforts with content across the web.
Search and Store
Find the white papers you need. Create folders for any topic.
View Anywhere
Open your briefcase on your iPhone, tablet or desktop. Share with colleagues.
Don't have an account yet?
White Papers »
Gartner report, Best Practices for Supporting 'Bring Your Own' Mobile Devices
Download this complimentary Gartner report, Best Practices for Supporting 'Bring Your Own' Mobile Devices, and learn approaches organizations have used to address these challenges and how virtual desktops make applications more secure and supportable in a BYO world.
Competitive Analysis of the Global Software License Management Market
Learn how to maximize control and minimize loss with SafeNet, the company that Frost & Sullivan named the "clear market leader" in software license management.
Creating Community Within Your Business Partner Network
Learn how you can connect with customers and suppliers for business-to-business e-commerce more affordably with SAP Information Interchange OnDemand. Using prebuilt profiles, you can make changes within your supply chain quickly using a minimum of your valuable resources.
SAP Customers Move to Managed Cloud Services to Cut Costs and Improve Efficiency of B2B Integration
Changes in business objectives and advances in technology compel many businesses to reassess their B2B integration capabilities to seek further process efficiency. We find that very few enterprises make a large change to their B2B integration process for a single reason; instead, multiple factors combine to create the need for change.
Defining the 21st Century Sales Person
Do you know what seller types you have and what it takes for them to succeed? Online information sources and social networks have made basic product information and recommendations so readily available and ubiquitous that the role of the 21st century salesperson is now more so than ever defined in terms of his or her ability to add value to the customer.
Enterprise Mobile: Expectations and Expertise
Enterprise mobility: Most IT leaders say it's transformational, strategic. But only 18% said in a recent study that they have a comprehensive strategy for mobility. The problem: Lack of expertise, time and resources, among other issues.
Webcasts »
Mobility KnowledgeVault
How "mobile ready" is your infrastructure? This Mobility Knowledge Vault provides a wide variety of expert advice on how to strike a balance between end user ease-of-use and security. Prepare your organization with primers on data encryption and user authentication, device disablement and devising an employee-liable device strategy that makes both IT and users happy.
Make Every Rep a Sales Hero with SAP Sales OnDemand: Webcast
This Webcast introduces the business challenges facing sales today, and provides an overview and demonstration of how SAP Sales OnDemand can be used to address those challenges.
SAP Business ByDesign for Subsidiaries: The Best of Both Worlds
In just 3 minutes, discover how the cloud-based SAP Business ByDesign solution delivers the comprehensive business management software your subsidiaries need, and the streamlined data integration your parent company wants.
Join the Exclusive CIO Confidential Networking Group
Learn from and Network with Your Peers with CIO Confidential
CIO Confidential: Using Strategic Communications for Project Success
The role communications can play in the success of projects.
Whiteboard Presentation: Transform the Internet for Enterprise Applications - No Hardware, No Software, No Code Changes
Watch this whiteboard presentation to learn how to transform the Internet for enterprise applications with no hardware, no software and no code changes.
Newsletter Sign-Up »

Receive the latest news test, reviews and trends on your favorite technology topics

Choose a newsletter
  11. View all Newsletters | Privacy Policy
White Papers » All White Papers

Gartner report, Best Practices for Supporting 'Bring Your Own' Mobile Devices

Competitive Analysis of the Global Software License Management Market

Creating Community Within Your Business Partner Network

SAP Customers Move to Managed Cloud Services to Cut Costs and Improve Efficiency of B2B Integration

Defining the 21st Century Sales Person

Enterprise Mobile: Expectations and Expertise

Proven strategies for uncovering cost savings with IBM DB2

Refreshing the Mobile Infrastructure

Is Your Infrastructure Mobile Ready?

SMB's and the Consumerization of IT

21st Century Sales Warrior's Guide to Social Selling

The SAP Acquisition of Crossgate Has the Potential to Rock B2B Markets

The Opportunities and Risks of Multi Tier Supply Chains

Collaborate and Connect with Business Partners for Commerce

Work Smarter. Sell Better. Win More. A Solution Designed for the Way You Sell

SAFECHEM: Implementing SAP Solution Saves Chemical Company Time and Money

The Best of SAP Software Tailored for Subsidiaries

Abderdeen Insight: SaaS and the Multi-Tiered ERP Strategy

Workforce Planning for ERP Success

Strategic Communications Secrets from a Vice Chief of Information
Sponsored Links

High performance. Delivered. Click to see Accenture's client successes

Master the cloud with the power of convergence from HP

Connect with IT leaders redefining mobility at the Enterprise Mobile Hub

Choose New and manage one device instead of 170

Choose New for 8x the firewall and NAT performance

Check out a smart way of mobilizing your business with enterprise-ready Samsung Mobile.

Redefine your data center with HP servers.

Enhance your business with Windstream IT Solutions. Speak to someone local.

BlackBerry® Mobile Fusion. Different mobile devices. One platform.

CYBERMARYLAND | Learn Why Maryland is the Epicenter for Cybersecurity

Get Ethernet speeds from 1 Mbps to 10 Gbps - Comcast Business Class

Cognizant. Leading in Business, Application & Technology Services

Collaboration: driving better business outcomes

Gain cutting-edge insights at MIT in 2-5 day executive programs.

Click to see how Accenture has delivered high performance to clients

Complimentary Gartner Report on BYOD: Media Tablets & Beyond. View Now

Elevate storage agility and efficiency with HP 3PAR storage.

Choose New and slash the number of devices you manage

Customized information views & Twitter events at New Fulcrum Point

Splunk translates machine data into "aha" moments for IT and the business.

ManageEngine Desktop Central - Automate and Audit Your Desktop Management! Learn More...

Cloud Readiness Starts with Intel® Technology

Visit the Virtually There Learning Page to learn how to use virtualization to your competitive advantage.

Free: Hunter Muller's "The Transformational CIO."

Join us for an upcoming Microsoft 365 live online demo event.

Discover your easiest path to unified communications

Virtualizing Your Infrastructure Just Got Easier

Connect with global CIOs now at Enterprise CIO Forum

Resource Center
buy a link »
Ads by TechWords