Your SlideShare is downloading. ×
Board presentation - March 19, 2009
Upcoming SlideShare
Loading in...5

Thanks for flagging this SlideShare!

Oops! An error has occurred.


Saving this for later?

Get the SlideShare app to save on your phone or tablet. Read anywhere, anytime - even offline.

Text the download link to your phone

Standard text messaging rates apply

Board presentation - March 19, 2009


Published on

Published in: Technology, Business

  • Be the first to comment

  • Be the first to like this

No Downloads
Total Views
On Slideshare
From Embeds
Number of Embeds
Embeds 0
No embeds

Report content
Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

No notes for slide
  • When considering wireless security using Blackberry Communication Devices, there are several areas to analyze. The first are the numerous network connections created. This drawing shows the network connectivity required when a message is sent from one Blackberry to another. Note that all red links are protected by encryption. This encryption is from the Blackberries on the left to their respective Blackberry Enterprise Servers on the right. To eavesdrop on these communications paths would require the ability to defeat the encryption algorithm. The two green network connections within the installations on the right are physically protected by the data center’s physical security. While it is possible to encrypt these links, since the links are already protected, we do not. The one vulnerable link has nothing to do with wireless communications. It is the Exchange Email Server to Exchange Email Server connectivity between these two theoretical data centers. This link is sometimes encrypted but more importantly, when the communications is between two State of Georgia email accounts, this link is usually within the same data center or it uses our MPLS network to avoid the internet.
  • The second areas of consideration are the information at rest in the actual Blackberry, the Blackberry Enterprise Server, the Exchange Email Server, and possibly an external email server if one party to the email is not using a state email account. The Blackberry Enterprise Server and the Exchange Email Server are within the physical protections of GTA’s data center. As such, only authorized state workers have access to these systems. The external email server for non-state email accounts is an issue, but it is not a wireless issue. Some agencies have deployed solutions for this but that is not part of this report. The Blackberry itself is addressed on the next slide.
  • The major vulnerability is the Blackberry itself. GTA has the capability of erasing all messages in a Blackberry. This is done remotely when we receive a report of a stolen or lost Blackberry. The Blackberry Enterprise Server also has the ability to force users to have passwords on their Blackberries. It can set requirements for strength level, frequency of change, etc. However, discussions around using this capability have led to user objections in the past. At this time the user has the option of setting these features but we are not doing it from the server. Even if a Blackberry is password protected, an attacker can attack the messages using forensic techniques. To protect against this type of attack, the messages must be encrypted in memory. GTA has not deployed a message encryption solution to address this concern. In closing, IBM has requested that we leave the security features alone at this time. They are developing what they call an iSec for the Blackberries, and once the security features are agreed upon, they will role them out to the in-scope agencies.
  • Talking Points provided by: Rich Calhoun March 17, 2009 Federal provisions The $7.2B will be distributed under two federal programs The Broadband Technology Opportunity Program and the Rural Utilities Services programs Unserved and underserved is not yet defined c. No guidance on how waivers will be granted GTA Involvement Have meet with the Georgia Telephone Association; Georgia Cable Association; BRIDGE Applicants; Wireless Communities GA Recipients; etc. to encourage development of high quality projects GTA has created a preliminary guidance document for stimulus funding GTA working with Department of Community Affairs to develop high-level map of unserved and underserved areas throughout the State. Target date for project repository availability is March 27, 2008 GTA fully engaged with Celeste Osborn Governor’s lead for stimulus
  • Transcript

    • 1. GTA Board of Directors March 19, 2009
    • 2. Agenda
      • IT Transition and Transformation Update
      • Financial Update
      • Legislative Update
      • State Portal
      • IT Expenditures Report
      • Wireless Security
      • Broadband and Stimulus Funding
    • 3. Commencement Milestone: IT Infrastructure Services
      • IBM assumes responsibility for daily operations on April 1
        • 323 state employees transfer to IBM
        • IBM begins to reorganize IT staff and drive operational standards
      • Georgia Enterprise Technology Services portal launches
        • Service catalog for end-user computing
        • Reporting tool for billing reports
        • Financial tool for financial reports and administration
      • Customer impact
        • Same IT staff supporting same end-users
        • GTA Service Delivery Consultants and IBM Client Solution Advocates onsite at agencies to support customers
        • Some new functions available, i.e., ordering PCs online
    • 4. Commencement Milestone: Managed Network Services
      • AT&T assumes responsibility for daily operations on May 1
        • 33 state employees transfer to AT&T
        • AT&T begins driving operational standards
      • AT&T services added to GETS portal
        • Reporting tool for billing includes AT&T services
        • Financial tool accepts AT&T data
      • Customer impact
        • Details about services ordered, delivered and billed available through GETS portal
    • 5. Commencement Milestone: Service Desk
      • Enterprise Service Desk launches June 1
        • Provides 24/7/365 coverage for all customers
        • Consolidates 21 separate service desks
        • Includes point-of-service customer satisfaction surveys
      • All services available through online catalog
      • Reporting tool includes agency operational usage, service levels
      • Single problem-tracking system (Maximo) launches
      • Customer impact
        • Full shift to service providers with declining direct customer support from GTA on a daily basis
        • One number to report service problems
        • Online ordering, billing
    • 6. Our Successes
      • Completed most comprehensive assessment of agency IT operations in state’s history: December 2007
      • Developed requirements, RFQC, RFPs: January - March 2008
      • Released RFQC: February 29
      • Announced qualifying bidders: April 7
      • Released RFPs: April 21
      • Received Managed Network Services responses: June 12
      • Received Infrastructure Services responses: June 26
      • Signed contracts for Infrastructure Services and Managed Network Services: November 19
    • 7. What Does Transition Mean?
      • Our providers take responsibility for service delivery
      • Provider oversight of critical ITIL processes
        • Change management
        • Incident management
        • Problem management
        • Escalation management
        • Service level monitoring and reporting
    • 8. What Does Transformation Mean?
      • Longer-term activities bringing about significant improvements to state’s technology infrastructure and services
        • Operational best practices (ITIL)
        • Consolidation of application servers and data storage
        • Consistent enterprise-wide IT security (FISMA)
        • Improved disaster recovery
        • Standardized service levels across all agencies
        • Comprehensive asset management
        • Up-to-date technology through regular equipment refreshes
    • 9. Managing Commencement Readiness
      • Dashboards
      • Agency transition and transformation plans
      • GTA Transition Readiness Document and Checklist
      • IBM Interim Service Plan and Day One Readiness Checklist
      • Training
        • Service commencement preparedness, including critical processes
        • Service catalog
        • Resource usage and costs (Tivoli Usage Accounting Manager)
        • Service level and other operational reports (Global Systems Management Reporting Technology)
      • Service Commencement Command Center
      • Communication
    • 10.
      • Financial Update
    • 11. Income Statement Projection
    • 12. Highlights Of Changes To Projections
      • Operating Revenue
        • Increase of $39.3 million reflects agency IT dollars flowing through GTA during the FY 09 stub period
      • Operating Expenses
        • Increase due to payment to service providers of $42.9 million
        • Offset by $11.1 million in lower benefit expenses and $3.3 million lower depreciation expense than planned
      • Non-Operating Income and Expenses
        • Primary change due to:
          • $14.3 million payment to Treasury to keep agencies whole for GAIT 2010
          • $6.4 million in SMO transition costs
    • 13.
      • Legislative Update
    • 14. Legislative Update
      • FY 2009 budget
        • Passed both houses, sent to Governor Perdue
        • GTA worked extensively with House and Senate leadership, committees and staff to explain IT transition funding
      • FY 2010 budget
        • Under consideration in both houses
        • GTA continues to monitor budget
      • GTA sales tax exemption – HB 435
        • Attorney General and Revenue said current statutes do not provide sales tax exemption as intended for state authorities
        • Proposed bill would make GTA’s exemption clear
    • 15. Legislative Update
      • State agency IT reporting – HB 436
        • Simplifies agency IT reporting by requiring a comprehensive annual report instead of several reports
        • Coordinates IT reporting with OPB’s statewide strategic planning report
        • Removes vague and contradictory language
      • GTA continues to monitor about 120 bills
    • 16.
      • State Portal
    • 17. What is the Portal?
      • State’s web portal,
      • Vignette content management system
      • Application development
      • Enterprise service bus
    • 18. GTA Guiding Principles Apply to the Portal
      • Manage more, do less
      • Manage through standards and reporting
      • Recover our costs
      • Divest what we do not do well
      • Keep the lights on
    • 19. Our Current Challenge
      • Portal operation loses money
        • Operating, infrastructure costs projected at $7.7 million for FY 2010
        • Only a fraction is being recovered
      • Portal operation lacks an agile process for pricing and developing new applications
      • Cancelled outsourcing after evaluating RFP responses
        • Costs over 5 years would be significantly higher than today
      • Competitive bidding process enabled us to learn more about our capabilities and needs
    • 20. Short-Term Fixes
      • Redefine services to align with our operations
      • Create product codes to reflect services we are delivering
      • Define chargeback model for application hosting and maintenance
      • Continue upgrading content management system, reduce number of servers from 36 to 19
      • Continue GPS migration project, reduce number of servers from 30 to 15
    • 21. Long-Term Fixes
      • Increase chargeback for integration service
      • Implement chargeback for hosting and maintenance services
      • Quantify support to develop and maintain Data Sales applications and perform billing
      • Cease activities that do not fit our defined services or product codes
      • Hire portal office manager to oversee daily operations of all three Portal Office work units
      • Investigate selective outsourcing
    • 22. IT Expenditures Report
    • 23. Final Results for FY 2008
      • 51 state entities reported spending $712.2 million
        • $684.1 million spent in FY 2007 (47 entities)
        • $482.9 million in FY 2006 (39 entities)
      • $199 million of total from state funds (28%)
        • Down from $244 million in FY 2007 (36%)
      • Expenditures by policy area
        • Healthy Georgia: $362.3 million (50.86%)
        • Best Managed State: $178.5 million (25.07%)
        • Educated Georgia: $62.9 million (8.84%)
        • Safe Georgia: $58.9 million (8.28%)
        • Growing Georgia: $49.5 million (6.95%)
    • 24. Wireless Security
    • 25. Blackberry Network Architecture
    • 26. Device Security
      • Blackberry enterprise server and Exchange e-mail server are physically secure in GTA’s data center
      • Non-state employee’s e-mail server
        • Usually hosted in an ISP’s data center and shares center’s physical security
        • Subject to viewing by ISP’s staff
        • Not a wireless issue as these issues exist for normal e-mail to non-state employees
    • 27. The Blackberry
      • Messages may be ‘blanked’ when reported stolen or missing
      • Currently users may configure a password
      • No message-at-rest encryption deployed
      • Possible to establish a profile requiring passwords, setting strength and frequency of change
        • Strong user objection to this feature
      • Still to be determined whether Blackberry security will change as part of GAIT 2010
    • 28. Stimulus Funding for Broadband
    • 29. Stimulus Funding for Broadband
      • Federal provisions
        • $7.2 billion available for projects of 12-24 months duration
        • Grantee match of 20% but waivers may be requested
        • Funds aimed at unserved, underserved and rural areas; community outreach mapping
      • GTA’s involvement
        • Working with state officials and private sector organizations on principles for use of broadband stimulus funds
        • Expect to provide input to federal officials on project applications
        • Defining what constitutes unserved, underserved areas for the state
        • Developing broadband repository to track and monitor state projects
    • 30.