Four important trends in it and security implications

•Download as PPTX, PDF•

0 likes•337 views

Curtis A. Carver Jr.

This is the keynote presentation to the security professionals in the university system of Georgia in 2012.

Technology Education

GALILEO GeorgiaBEST GeorgiaFIRST Georgia ONmyLINE GeorgiaVIEW GIL PeachNet USG123
Four Important Trends in Information
Technology and their Impact on
Organizational Security and Privacy
Dr. Curtis A. Carver Jr.
Vice Chancellor and Chief Information Officer
University System of Georgia

GALILEO GeorgiaBEST GeorgiaFIRST Georgia ONmyLINE GeorgiaVIEW GIL PeachNet USG123
• Shortage of IT personnel
• Clouds and Economies of Scale
• Consumerization of IT
• Data, Big Data, Location-based computing and
Data-Driven Decision-Making

GALILEO GeorgiaBEST GeorgiaFIRST Georgia ONmyLINE GeorgiaVIEW GIL PeachNet USG123

GALILEO GeorgiaBEST GeorgiaFIRST Georgia ONmyLINE GeorgiaVIEW GIL PeachNet USG123
• Less folks + less qualified folks = more work.
• More salary will be necessary to attract folks.
• Internal salary inequities will be difficult to
manage.
• You may need to take more risk in hiring
employees (skillset, turnover, non-dedicated
resources, etc.).
Implications

GALILEO GeorgiaBEST GeorgiaFIRST Georgia ONmyLINE GeorgiaVIEW GIL PeachNet USG123
Advantages of
Statewide Network
• Economies of Scale
• Proactive Growth
• Campus Agility
• Traffic Prioritization

GALILEO GeorgiaBEST GeorgiaFIRST Georgia ONmyLINE GeorgiaVIEW GIL PeachNet USG123
• Clouds and Economies of Scale
– Market pressures are driving consolidation and
moving IT services to private or public clouds.
– Economy of scale pricing example: the cost of 35
colleges and universities HR contract is much less
than the cost of two R1 institutions (Georgia
Health Sciences University and Georgia Tech)
combined.
– Library consortiums are the same.

GALILEO GeorgiaBEST GeorgiaFIRST Georgia ONmyLINE GeorgiaVIEW GIL PeachNet USG123
HR
•Shared
Services
•32/35
centralized
•Outsourced to
ADP
Fin
•GeorgiaFIRST
•32/35 at ITS
•34/35
PeopleSoft
LMS
•GeorgiaVIEW
•31/35 at ITS
soon to be
34/35
•34/35 BlB/D2L
SIS
•GeorgiaBEST
•8/35 at ITS
•34/35 Banner
•520 GA Mods
BI
•USG123
•Being rebuilt
•35/35 at ITS
•Not fully
utilized
NET
•PeachNet
•35/35 at ITS
•Extensive
external state
participation
LIB
•GALILEO & GIL
•35/35
centralized
• Extensive
external
participation
State Ed Ecosystem
USG Educational
Cloud
Race to the
Top
Public
Cloud
Public
Cloud State Ed Ecosystem
State Educational Cloud
Now
Soon
Longer

GALILEO GeorgiaBEST GeorgiaFIRST Georgia ONmyLINE GeorgiaVIEW GIL PeachNet USG123
Implications
• Integration and protection of corporate data is
going to be difficult.
• All the eggs in one basket requires a really safe
and secure basket.
• Some standardization (lack of control) is
required.

GALILEO GeorgiaBEST GeorgiaFIRST Georgia ONmyLINE GeorgiaVIEW GIL PeachNet USG123
Consumerization of IT
– Bring Your Own Device will change
campus culture, security, and instructional
delivery
– Managed/Unmanaged Applications
– Private/Work Split
– Who Owns the data?

GALILEO GeorgiaBEST GeorgiaFIRST Georgia ONmyLINE GeorgiaVIEW GIL PeachNet USG123
• How much loss of control is acceptable?
• Protection of the data
• Change Management of Personnel
• Complexity is about to increase (need endpoint
management and federated identity
management)
Implications

GALILEO GeorgiaBEST GeorgiaFIRST Georgia ONmyLINE GeorgiaVIEW GIL PeachNet USG123
• Data….
• Big Data…..
• Location-based Big Data…..
• Big Data Driven Decision Making…..
“On the Internet, the First Amendment is
a local ordinance,” said Fred H. Cate, a
law professor at Indiana University.
What are folks saying about your
organization on Facebook?
What are doing about what they
are saying?
Do you even know?
Need decisions now
Requires a report
Report requires a collection
Collection requires months

GALILEO GeorgiaBEST GeorgiaFIRST Georgia ONmyLINE GeorgiaVIEW GIL PeachNet USG123
• Unknown: We don’t need no stink’in data
governance.
• Jack Burton: It is all in the reflexes.
• Steve Wright: I don’t want to own everything.
I would not know where to put it.
Implications

GALILEO GeorgiaBEST GeorgiaFIRST Georgia ONmyLINE GeorgiaVIEW GIL PeachNet USG123
Questions, Comments,
A Conversation
Dr. Curtis A. Carver Jr.
Vice Chancellor and Chief Information Officer
University System of Georgia

We've recently added quite a few new features to the Co3 platform, both in the Security module and the Privacy module. Since some of you have asked us to review these, we decided to run a webinar that highlights the new capabilities. New Privacy Modules features: Co3 recently expanded its Privacy module to include breach notification requirements and guidelines from various countries in the EU. Adding the EU to our product was quite an interesting challenge for our team, primarily because of the difference in how Personally Identifiable Information is defined in Europe vs. the US, as well as the scope of applicability. New Security Module features: The Security module has also been upgraded with some great new features targeting the needs of both the security incident manager as well as the incident responder. Improvements include everything from CISO dashboards to threat intelligence correlation. This webinar will review the recent updates we've made to our product and show how firms are leveraging them to automate the breach response process. Features like these have helped Co3 customer USA Funds manage incidents in one tenth of the time that it took previously. Our featured speakers for this timely webinar will be: -Gant Redmon, Esq. CIPP/US, General Counsel, Co3 Systems -Allen Rogers, VP of Engineering, Co3 Systems

The new role of the marketer

Avtex

This document summarizes a presentation given by Eric Raarup from Avtex and Mike Peterson from Microsoft on June 12th, 2013 about the intersection of technology and marketing. The presentation covered key trends impacting marketing like mobility, social media, cloud computing and data. It showcased Microsoft's technology landscape for marketers, including Dynamics CRM, ClickDimensions, and tools for social analytics, data visualization, and responsive design. The presentation discussed how these technologies can help with web-to-lead conversion, lead nurturing, gaining customer insights, delivering content to sales teams, and allocating marketing resources effectively.

Changing Role of the Marketer

svirrels

This document summarizes a presentation on engaging consumers through marketing. It discusses key topics like understanding consumer insight, different levels of engagement from enjoying to collaborating, and shifts needed for marketing like understanding consumers, creating relevant content, and using open, coherent, and agile strategies. The document also lists the team members present and emphasizes the importance of prioritizing, planning, integrating efforts, and allocating proper resources for effective marketing.

Get physics now!!

reezali foundation

This document discusses rigid body equilibrium and determining centers of mass. It provides examples of calculating torques, tensions, and normal forces to establish equilibrium in systems with rigid bodies. Formulas are given for finding the center of mass of basic shapes like triangles and semicircles. The conclusion emphasizes that equilibrium systems have two conditions - the sum of forces equals zero and the sum of torques equals zero. Forces must also be perpendicular to the radius at their point of application.

#Consumer is the new #marketer

Babita Baruah

This is actually part of my key note address at IIFT India's National Marketing Conference 2013, #TradeWings. My friend Prof. Joyeeta Chatterjee and I are now working on a piece which will touch upon this as well. In my keynote speech, the slides had only visuals and one word following the visual, making a point as I spoke. I have tried to include parts of what I said in slides as copy. Not the same effect, but hope it makes the point. That the consumer has a voice today. And that we need to collaborate.

电子商务教程2 0

yanzhenginfo

It innovation in an era of diminshing resourcing

Curtis A. Carver Jr.

The document discusses IT innovation in the University System of Georgia amid declining resources. It notes rising enrollments but decreasing state funding per student. Charts show enrollment growth outpacing state funding increases. The system is pursuing innovation through shared services across campuses to reduce costs, including infrastructure as a service and IT project management as a service. Innovation is also needed to engage the upcoming Generation Z and leverage social media for collaboration across campuses. Key systems like the LMS and SIS are centralized to realize economies of scale, while allowing campuses flexibility for additional services.

Transform today to innovate for tomorrow

Curtis A. Carver Jr.

The document discusses 4 important IT trends in 20 minutes: 1. A shortage of IT personnel. 2. The movement of IT services to public and private clouds to gain economies of scale and reduce costs. 3. The consumerization of IT and how personal devices and apps will impact campuses. 4. The rise of big data, location-based data, and using data to make decisions. Centralizing systems across the University System of Georgia can provide cost savings and efficiencies.

System level innovation

Curtis A. Carver Jr.

The document discusses system level innovation at the University System of Georgia. It describes starting as the new Vice Chancellor and Chief Information Officer, with challenges that included low morale, siloed agencies, and audit findings. Early steps focused on reorganizing, addressing salary issues, and improving customer relationships. Goals were established to be a nationally recognized leader in higher education IT. Innovations included a new learning management system, upgrades at the system office, and developing a private cloud.

Playing the long game changing security culture in usg

Curtis A. Carver Jr.

The document discusses the need for organizations to build a strong security culture. It notes that traditional perimeter defenses and passive security awareness training methods are no longer sufficient due to the increasing speed and complexity of cyber attacks. Building an effective security culture where all employees understand their security responsibilities is presented as a better approach to addressing modern security challenges. Specific reasons cited include attacks now occurring faster than software patches can be applied, vulnerabilities being exploited before organizations are aware, and individual employee actions impacting the security of the whole organization.

Delivering Analytics at Scale with a Governed Data Lake

Jean-Michel Franco

Thoughts on information to support decision making

Curtis A. Carver Jr.

The document discusses various examples of using the right information at the right time to support effective decision-making, including building systems to support tactical decisions in wartime, strategic decisions in the War in Afghanistan, and strategic decisions for a state university system. It also examines why the systems worked well and the long-term impacts of implementing decision support systems.

Mobility & BYOD: Leveraging Best Practices and Latest Technologies for Compre...

UL Transaction Security

From Near to Maturity - Presentation to European Data Forum

Castlebridge Associates

EDF2013: Invited Talk Daragh O'Brien: The Story of Maturity – How data in Bus...

European Data Forum

2. Getvisibility. Innovative data governance, control & oversight

Vanessa Pulgarín Auquilla

Putting data science into perspective

Sravan Ankaraju

REVIEW OF GOOGLE’S CYBER SECURITY POLICYNAMEINSTRUCTOR’S N.docx

joellemurphey

REVIEW OF GOOGLE’S CYBER SECURITY POLICY NAME INSTRUCTOR’S NAME COURSE TITLE DATE Introduction Google is a global leader in technology and is the most popular search engine in the world. Its technologies mostly rely on cloud computing offering services like Gmail, Google Docs, Google Calendar, Google App Engine, Google Cloud Storage, You tube among many others. Users are able to access these technologies from many devices ranging from desktop computers and mobile phones. These services can also be accessed from almost any location on earth. These services are also having many users who share information that is confidential and sensitive in nature. As a result there presents itself a great need for the protection of this information on a real time basis. Cyber Security Policies The Google cyber security policies cover a wide array of topics that touch on security. These policies must be adhered to by each and every employee in the organization. These policies cover topic such as accounts, data and physical security among other internal sensitive information. The internet crimes are extremely dynamic and change very rapidly. This calls for the need to periodically train the staff on how to handle data, use the internet safely, and operate from remotely safe locations among other uses like safe use of social technologies. In line with keeping the policy requirements that are in place Google has various departments that deal with security concerns of various natures and even how to deal with breaches or suspected breaches to help mitigate their overall adverse effects that may be experienced by the business. These departments include: 1. Organizational Security Several teams focus on information security, global security auditing and compliance. In addition to these is a physical security team that protects the hardware. The information security team establishes the security perimeter and maintains the internal defensive systems in the organization. They also develop internal processes for security review and customized security infrastructure. The global security auditing and compliance team ensures that there is a statutory and regulatory compliance on a global scale. The physical security team is charged with ensuring that the organization’s premises are well guarded. 2. Data Asset Management. Google’s data assets include customers, end user assets and corporate data assets. For the personnel handling the data there is compliance to procedures and guidelines by the security team. 3. Access Control This deals with authentication and authorization controls that are designed to keep away unauthorized personnel from accessing data assets. This includes identification of users and employees when using Google’s resources. Approvals are limited to one’s status according to job description and type of user. 4. Physical and environmental security This covers physical security, environmental controls, power, climate and temperature, and fi ...

SE-4060, Securing the Mobile World, by Norman Shaw and John Pragnell

AMD Developer Central

Cloud Security: A Business-Centric Approach in 12 Steps

Omar Khawaja

This document discusses aligning cloud security to business needs in 12 steps. It provides guidance on how to classify data based on business impact, inventory data and users, determine appropriate access and controls, and validate that controls are implemented and effective across cloud environments. The goal is to ensure data and users are properly secured while allowing the business to realize the benefits of cloud computing.

How Vulnerable is Your Critical Data?

IBM Security

View on-demand recording: http://securityintelligence.com/events/how-vulnerable-is-your-critical-data/ Data infrastructures are highly dynamic, with changes in accounts, configurations and patches occurring regularly. Within your data infrastructure you need to understand the data. Not all data is the same. You need to protect the data that is considered high risk. However, most organizations lack the centralized control or skilled resources to review changes systematically to determine if they have introduced security gaps. While there are no silver bullets, there are key steps organizations can take to understand and reduce their risk and lower TCO. In this presentation, Luis Casco-Arias, Senior Product Manager for IBM Security Guardium, describes best practices for: - Assessing vulnerabilities and exposures - Locking down critical data in various environments - Aligning remediation workflows to prevent breaches and policy violations

APAC Partner Update: SolarWinds Security

SolarWinds

1. The document is a presentation by SolarWinds about their network management software products, including Firewall Security Manager (FSM), Log & Event Manager (LEM), and Network Configuration Manager (NCM). 2. The products help users manage firewall configurations, log files from multiple sources, and network device configurations by automating processes and providing centralized visibility and control. 3. Managing firewalls, logs, and device configurations manually is time-consuming and error-prone, while the SolarWinds products provide point-and-click interfaces to simplify management tasks.

Big data security

Anne ndolo

The document discusses three key challenges for data governance and security with big data: 1) ethics and compliance as personally identifiable data is widespread and regulations are increasing, 2) poor data management when there is no clear ownership or lifecycle management of data, and 3) insecure infrastructure as many devices and systems generating data were not designed with security in mind. Effective data governance is important for security, and requires defining responsibilities, auditing data use, and protecting data during collection, storage, and analysis. Technologies can help automate and scale governance, but it is ultimately a combination of people, processes, and tools.

Big data security

Anne ndolo

There are three key challenges to effective data governance and security in the big data era: 1) ethics and compliance as personally identifiable data is widespread and regulations are increasing, 2) poor data management when there is no clear ownership or lifecycle management of data, and 3) insecure infrastructure as many IoT and other devices were not designed with security in mind. Effective data governance requires a combination of people, processes, and technology to classify, secure, and manage data throughout its lifecycle.

Protecting Corporate Information in the Cloud

Symantec

Keeping Your Data Safe: Protecting Corporate Information in the Cloud is an insights-driven thought leadership study conducted by WSJ. Custom Studios in collaboration with Symantec Corporation. The goal of this research is to better understand worldwide cloud adoption across leading organizations and the challenges associated with its use. This survey also explores attitudes toward security as well as the behaviors that can lead to potential data loss and security breaches. An online survey was conducted from February to March 2015 among 360 global business and IT executives with 180 respondents from the United States, 60 from the United Kingdom, 60 from Germany and 60 from Japan. Of these, 15% are CEOs, presidents or owners; 14% are CIOs/CTOs/CSOs; 5% are other C-level executives; 13% are heads of business units or EVPs/VPs/directors; 23% are IT/security professionals; and 30% are managers or other business professionals (e.g., engineering, research and development, sales, legal and compliance, etc.).

Navigating the Cloud: Best Practices for Successful Migration

Precisely

In today's digital landscape, migrating workloads and applications to the cloud has become imperative for businesses seeking scalability, flexibility, and efficiency. However, executing a seamless transition requires strategic planning and careful execution. Join us as we delve into the insightful insights around cloud migration, where we will explore three key topics: i. Considerations to take when planning for cloud migration ii. Best practices for successfully migrating to the cloud iii. Real-world customer stories

BYOD risk management best practices

Troy C. Fulton

You already know BYOD is here to stay. How can you give employees the flexibility they demand? Prevent BYOD from becoming BYOT (threat)? Ensure a uniform trust model for device provisioning? Mitigate the risks for applications, network access and data security? This webinar provides a policy framework for BYOD enablement: • Risk and vulnerability assessment • Security and access policies • Key success factors • Trigger response policies • Prevent data loss at both the application and device level • Shared device security policies • Options for achieving your security requirements and end-user expectations

100 day letterCurtis A. Carver Jr.

Cutting Edge Developments from Georgia

Curtis A. Carver Jr.

Similar to Four important trends in it and security implications

Four important trends in 20 minutes

Curtis A. Carver Jr.

System level innovation

Curtis A. Carver Jr.

Playing the long game changing security culture in usg

Curtis A. Carver Jr.

Delivering Analytics at Scale with a Governed Data Lake

Jean-Michel Franco

Thoughts on information to support decision making

Curtis A. Carver Jr.

Mobility & BYOD: Leveraging Best Practices and Latest Technologies for Compre...

UL Transaction Security

From Near to Maturity - Presentation to European Data Forum

Castlebridge Associates

EDF2013: Invited Talk Daragh O'Brien: The Story of Maturity – How data in Bus...

European Data Forum

2. Getvisibility. Innovative data governance, control & oversight

Vanessa Pulgarín Auquilla

Putting data science into perspective

Sravan Ankaraju

REVIEW OF GOOGLE’S CYBER SECURITY POLICYNAMEINSTRUCTOR’S N.docx

joellemurphey

SE-4060, Securing the Mobile World, by Norman Shaw and John Pragnell

AMD Developer Central

Cloud Security: A Business-Centric Approach in 12 Steps

Omar Khawaja

How Vulnerable is Your Critical Data?

IBM Security

APAC Partner Update: SolarWinds Security

SolarWinds

Big data security

Anne ndolo

Big data security

Anne ndolo

Protecting Corporate Information in the Cloud

Symantec

Navigating the Cloud: Best Practices for Successful Migration

Precisely

BYOD risk management best practices

Troy C. Fulton

Similar to Four important trends in it and security implications (20)

Four important trends in 20 minutes

System level innovation

Playing the long game changing security culture in usg

Delivering Analytics at Scale with a Governed Data Lake

Thoughts on information to support decision making

Mobility & BYOD: Leveraging Best Practices and Latest Technologies for Compre...

From Near to Maturity - Presentation to European Data Forum

EDF2013: Invited Talk Daragh O'Brien: The Story of Maturity – How data in Bus...

2. Getvisibility. Innovative data governance, control & oversight

Putting data science into perspective

REVIEW OF GOOGLE’S CYBER SECURITY POLICYNAMEINSTRUCTOR’S N.docx

SE-4060, Securing the Mobile World, by Norman Shaw and John Pragnell

Cloud Security: A Business-Centric Approach in 12 Steps

How Vulnerable is Your Critical Data?

APAC Partner Update: SolarWinds Security

Big data security

Protecting Corporate Information in the Cloud

Navigating the Cloud: Best Practices for Successful Migration

BYOD risk management best practices

More from Curtis A. Carver Jr.

100 day letterCurtis A. Carver Jr.

Cutting Edge Developments from Georgia

Curtis A. Carver Jr.

A wireless roadmap for 250,000 users and growth

Curtis A. Carver Jr.

With more than 250,000 students generating 50 million hits a day across 42 terabytes of content and 160,000 courses, the University System of Georgia's learning system is no stranger to the need for high-performance wireless infrastructure. Providing a private cloud serving other state agencies, including the Georgia Department of Education's 189 school districts and 1.6 million students, means that the university system must provide the best available wireless strategy and technologies. Join us to learn how they do it.

Threat assessment new normal

Curtis A. Carver Jr.

The document discusses emerging threats and opportunities in cybersecurity. It notes that nation-state threats are growing, with China, Russia, the US and UK posing the largest threats. The document references a Mandiant report finding extensive hacking by a Chinese military unit. It questions if organizations can defend against thousands of trained hackers. The document also discusses how the internet has impacted social norms and the battle for truth online. It suggests security, business intelligence, cloud computing, big data, social media, privacy and mobility as emerging opportunities.

Rock eagle thursday presentation

Curtis A. Carver Jr.

t Success: An Update to the Georgia Southern IT Community

Curtis A. Carver Jr.

This presentation examines the University System of Georgia pursue of student success and how technology supports that endeavor. From providing an update on the current state of technology to where we are headed, this presentation will provide a catalyst for discussion by interested faculty, students, and staff. Where we will be in ten years will be a very different place than where we are today and technology will play an increasingly important role in enabling that change. We live in transformational times for both technology and education and this presentation examines the interaction between technology and education.

Innovation, agility, and a fight for survival a love storyv2

Curtis A. Carver Jr.

This document discusses innovation, agility, and survival in the face of growing cyber threats. It notes that state-sponsored hacking groups like China's Unit 61398 pose serious risks, maintaining access to companies for over a year on average. To adapt, organizations must constantly innovate and fail gracefully to increase agility. CIOs must sense changes and threats to embrace their dual role of protecting systems while enabling innovation through controlled risk-taking. Threats and change create opportunities if met with the right response.

Threat Assessment: The New Normal

Curtis A. Carver Jr.

The document discusses emerging threats to cybersecurity from nation states like China, Russia, and Iran, citing a report that a Chinese military group compromised over 140 companies over 10 years. It notes that nation states can break into systems if they want. It also discusses how the internet undermines truth and could enable "denial of truth attacks" and "zombie armies of disinformation." Additionally, it argues that the internet has flattened norms of human behavior in ways that threaten humanity's existence. However, it also notes emerging opportunities around mobile devices, cloud computing, big data, and social/location technologies if organizations respond quickly and think about security, business, and consumerization.

Deploying and utilizing statewide private cloud lessons learned

Curtis A. Carver Jr.

Transforming the data center to a virtualized and private cloud environment is one of the biggest trends in IT today. However, while the move to cloud-based data addresses some security concerns, it is also causing an architecture evolution in which new security risks are emerging. We’ll look at the move to virtualize data centers, with an eye to identifying and addressing the new types of security concerns that come with this trend.

Emerging world order

Curtis A. Carver Jr.

The document discusses emerging threats to cybersecurity from nation states like China and Iran, referencing a report about Chinese hackers maintaining access to companies for over a year. It notes the growing battle for truth online conducted by both experts and amateurs. While these threats endanger humanity, opportunities also exist in harnessing the intelligence of billions of connected people and emerging technologies to improve security and governance through data sharing and classification. The presentation calls for action and conversation on addressing these challenges.

Non-Technologist’s Guide to Technology Support of Adult Learners

Curtis A. Carver Jr.

The document summarizes key technology services and priorities for the University System of Georgia (USG). It discusses the USG private cloud called PeachNet, which provides bandwidth, storage, backup, and virtual data center services. It also highlights learning tools like Desire2Learn, DegreeWorks, GALILEO, and INGRESS that support online learning and credit transfer. The USG aims to enhance these services and tools to raise education across Georgia through improved access and learning experiences.

Windows of Opportunity in Hallways of Distractions: the race between threats,...

Curtis A. Carver Jr.

Mentoring Presentation to Athens Clarke County

Curtis A. Carver Jr.

This document discusses mentoring goals and strategies at West Point. It provides the following key points: - West Point aims to prepare graduates to respond effectively to a changing world through creativity, moral awareness, lifelong learning, and strong communication skills. - Mentoring can help accomplish West Point's goals of developing well-rounded, adaptable leaders. Rather than optimizing only the classroom, mentoring involves inspiring and empowering individuals through one-on-one interactions on their own terms. - A example is provided of a West Point graduate who was mentored and continues to mentor others, illustrating how mentoring relationships can last a lifetime.

Bring your own device to your local state

Curtis A. Carver Jr.

This document discusses bringing personal devices into the workplace at state agencies. It notes that consumerization of IT will change workplace culture and processes. The author advocates embracing this change rather than trying to maintain control. The document outlines key questions around supporting different devices, applications, data usage, and balancing work and personal life on these devices. These include questions around which operating systems and apps to support, managing data security and privacy, and setting appropriate usage policies. The author argues that state government faces unique challenges in enabling bring-your-own-device policies but should not try to maintain full control and instead focus on protecting data.

Galileo at a Crossroads

Curtis A. Carver Jr.

The document summarizes a keynote presentation given to the GIL User Group about the current state and future direction of Galileo and libraries in Georgia. It discusses how libraries are evolving from physical collections to becoming places of collaboration and value-added resources. It also outlines OIIT's strategic plan which recognizes libraries' important role and a strategic roadmap for the future, including developing universal discovery tools, mobile apps, distance education resources, and more. The presentation concludes with an invitation for questions and discussion.

“Data security prep for the holidays or how not to go dark on black friday

Curtis A. Carver Jr.

This document discusses the importance of having strong security policies, technology, and education programs to protect against cyber threats. It provides examples of how social engineering attacks are increasingly targeting organizations and individuals. The document advocates for taking a holistic approach involving policy, technology, and educating users to recognize abnormal behaviors. It also describes some innovative education programs, like having students launch simulated phishing attacks against each other, to increase awareness in a memorable way.

Transformation and innovation in the new normal a call to action

Curtis A. Carver Jr.

This document discusses the need for transformation and innovation in higher education in the "new normal" post-COVID era. It provides background on the University System of Georgia, which oversees 35 public higher education institutions. It highlights the impact of education on lifetime earnings and discusses technology trends, such as the consumerization of IT, that require institutions to maintain control while gaining flexibility, pace and agility by losing micromanagement gracefully. The vice chancellor calls the institutions to action to adapt to the changing environment and rising expectations for online and technology-enabled learning.

Is Technology Leading the Change?

Curtis A. Carver Jr.

The document is about a workshop discussing how technology is impacting and potentially leading changes in education. It discusses trends in information technology and education, including consumerization of technology, cloud computing, the use of data, and the growth of online and hybrid learning models. It also summarizes the University System of Georgia's use of a common learning management system that over 300,000 students actively use, generating over 34 million hits per day. The workshop aims to discuss how to maintain quality education and access while reducing costs and increasing student success with the growing reliance on educational technology.

AIIM 2013 conference curt_carver

Curtis A. Carver Jr.

More from Curtis A. Carver Jr. (19)

100 day letter

Cutting Edge Developments from Georgia

A wireless roadmap for 250,000 users and growth

Threat assessment new normal

Rock eagle thursday presentation

t Success: An Update to the Georgia Southern IT Community

Innovation, agility, and a fight for survival a love storyv2

Threat Assessment: The New Normal

Deploying and utilizing statewide private cloud lessons learned

Emerging world order

Non-Technologist’s Guide to Technology Support of Adult Learners

Windows of Opportunity in Hallways of Distractions: the race between threats,...

Mentoring Presentation to Athens Clarke County

Bring your own device to your local state

Galileo at a Crossroads

“Data security prep for the holidays or how not to go dark on black friday

Transformation and innovation in the new normal a call to action

Is Technology Leading the Change?

AIIM 2013 conference curt_carver

Recently uploaded

GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...

James Anderson

Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management. The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM). Speakers: Bob Boule Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle. Gopinath Rebala Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.

GraphSummit Singapore | The Art of the Possible with Graph - Q2 2024

Neo4j

Essentials of Automations: The Art of Triggers and Actions in FME

Safe Software

In this second installment of our Essentials of Automations webinar series, we’ll explore the landscape of triggers and actions, guiding you through the nuances of authoring and adapting workspaces for seamless automations. Gain an understanding of the full spectrum of triggers and actions available in FME, empowering you to enhance your workspaces for efficient automation. We’ll kick things off by showcasing the most commonly used event-based triggers, introducing you to various automation workflows like manual triggers, schedules, directory watchers, and more. Plus, see how these elements play out in real scenarios. Whether you’re tweaking your current setup or building from the ground up, this session will arm you with the tools and insights needed to transform your FME usage into a powerhouse of productivity. Join us to discover effective strategies that simplify complex processes, enhancing your productivity and transforming your data management practices with FME. Let’s turn complexity into clarity and make your workspaces work wonders!

How to Get CNIC Information System with Paksim Ga.pptx

danishmna97

Data structures and Algorithms in Python.pdf

TIPNGVN2

LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...

DanBrown980551

Do you want to learn how to model and simulate an electrical network from scratch in under an hour? Then welcome to this PowSyBl workshop, hosted by Rte, the French Transmission System Operator (TSO)! During the webinar, you will discover the PowSyBl ecosystem as well as handle and study an electrical network through an interactive Python notebook. PowSyBl is an open source project hosted by LF Energy, which offers a comprehensive set of features for electrical grid modelling and simulation. Among other advanced features, PowSyBl provides: - A fully editable and extendable library for grid component modelling; - Visualization tools to display your network; - Grid simulation tools, such as power flows, security analyses (with or without remedial actions) and sensitivity analyses; The framework is mostly written in Java, with a Python binding so that Python developers can access PowSyBl functionalities as well. What you will learn during the webinar: - For beginners: discover PowSyBl's functionalities through a quick general presentation and the notebook, without needing any expert coding skills; - For advanced developers: master the skills to efficiently apply PowSyBl functionalities to your real-world scenarios.

Enchancing adoption of Open Source Libraries. A case study on Albumentations.AI

Vladimir Iglovikov, Ph.D.

Presented by Vladimir Iglovikov: - https://www.linkedin.com/in/iglovikov/ - https://x.com/viglovikov - https://www.instagram.com/ternaus/ This presentation delves into the journey of Albumentations.ai, a highly successful open-source library for data augmentation. Created out of a necessity for superior performance in Kaggle competitions, Albumentations has grown to become a widely used tool among data scientists and machine learning practitioners. This case study covers various aspects, including: People: The contributors and community that have supported Albumentations. Metrics: The success indicators such as downloads, daily active users, GitHub stars, and financial contributions. Challenges: The hurdles in monetizing open-source projects and measuring user engagement. Development Practices: Best practices for creating, maintaining, and scaling open-source libraries, including code hygiene, CI/CD, and fast iteration. Community Building: Strategies for making adoption easy, iterating quickly, and fostering a vibrant, engaged community. Marketing: Both online and offline marketing tactics, focusing on real, impactful interactions and collaborations. Mental Health: Maintaining balance and not feeling pressured by user demands. Key insights include the importance of automation, making the adoption process seamless, and leveraging offline interactions for marketing. The presentation also emphasizes the need for continuous small improvements and building a friendly, inclusive community that contributes to the project's growth. Vladimir Iglovikov brings his extensive experience as a Kaggle Grandmaster, ex-Staff ML Engineer at Lyft, sharing valuable lessons and practical advice for anyone looking to enhance the adoption of their open-source projects. Explore more about Albumentations and join the community at: GitHub: https://github.com/albumentations-team/albumentations Website: https://albumentations.ai/ LinkedIn: https://www.linkedin.com/company/100504475 Twitter: https://x.com/albumentations

Monitoring Java Application Security with JDK Tools and JFR Events

Ana-Maria Mihalceanu

National Security Agency - NSA mobile device best practices

Quotidiano Piemontese

Goodbye Windows 11: Make Way for Nitrux Linux 3.5.0!

SOFTTECHHUB

As the digital landscape continually evolves, operating systems play a critical role in shaping user experiences and productivity. The launch of Nitrux Linux 3.5.0 marks a significant milestone, offering a robust alternative to traditional systems such as Windows 11. This article delves into the essence of Nitrux Linux 3.5.0, exploring its unique features, advantages, and how it stands as a compelling choice for both casual users and tech enthusiasts.

GraphSummit Singapore | The Future of Agility: Supercharging Digital Transfor...

Neo4j

Leonard Jayamohan, Partner & Generative AI Lead, Deloitte This keynote will reveal how Deloitte leverages Neo4j’s graph power for groundbreaking digital twin solutions, achieving a staggering 100x performance boost. Discover the essential role knowledge graphs play in successful generative AI implementations. Plus, get an exclusive look at an innovative Neo4j + Generative AI solution Deloitte is developing in-house.

Video Streaming: Then, Now, and in the Future

Alpen-Adria-Universität

In his public lecture, Christian Timmerer provides insights into the fascinating history of video streaming, starting from its humble beginnings before YouTube to the groundbreaking technologies that now dominate platforms like Netflix and ORF ON. Timmerer also presents provocative contributions of his own that have significantly influenced the industry. He concludes by looking at future challenges and invites the audience to join in a discussion.

“I’m still / I’m still / Chaining from the Block”

Claudio Di Ciccio

A tale of scale & speed: How the US Navy is enabling software delivery from l...

sonjaschweigert1

Rapid and secure feature delivery is a goal across every application team and every branch of the DoD. The Navy’s DevSecOps platform, Party Barge, has achieved: - Reduction in onboarding time from 5 weeks to 1 day - Improved developer experience and productivity through actionable findings and reduction of false positives - Maintenance of superior security standards and inherent policy enforcement with Authorization to Operate (ATO) Development teams can ship efficiently and ensure applications are cyber ready for Navy Authorizing Officials (AOs). In this webinar, Sigma Defense and Anchore will give attendees a look behind the scenes and demo secure pipeline automation and security artifacts that speed up application ATO and time to production. We will cover: - How to remove silos in DevSecOps - How to build efficient development pipeline roles and component templates - How to deliver security artifacts that matter for ATO’s (SBOMs, vulnerability reports, and policy evidence) - How to streamline operations with automated policy checks on container images

Microsoft - Power Platform_G.Aspiotis.pdf

Uni Systems S.M.S.A.

zkStudyClub - Reef: Fast Succinct Non-Interactive Zero-Knowledge Regex Proofs

Alex Pruden

This paper presents Reef, a system for generating publicly verifiable succinct non-interactive zero-knowledge proofs that a committed document matches or does not match a regular expression. We describe applications such as proving the strength of passwords, the provenance of email despite redactions, the validity of oblivious DNS queries, and the existence of mutations in DNA. Reef supports the Perl Compatible Regular Expression syntax, including wildcards, alternation, ranges, capture groups, Kleene star, negations, and lookarounds. Reef introduces a new type of automata, Skipping Alternating Finite Automata (SAFA), that skips irrelevant parts of a document when producing proofs without undermining soundness, and instantiates SAFA with a lookup argument. Our experimental evaluation confirms that Reef can generate proofs for documents with 32M characters; the proofs are small and cheap to verify (under a second). Paper: https://eprint.iacr.org/2023/1886

GridMate - End to end testing is a critical piece to ensure quality and avoid...

ThomasParaiso2

Introduction to CHERI technology - Cybersecurity

mikeeftimakis1

20240607 QFM018 Elixir Reading List May 2024

Matthew Sinclair

Full-RAG: A modern architecture for hyper-personalization

Zilliz

Mike Del Balso, CEO & Co-Founder at Tecton, presents "Full RAG," a novel approach to AI recommendation systems, aiming to push beyond the limitations of traditional models through a deep integration of contextual insights and real-time data, leveraging the Retrieval-Augmented Generation architecture. This talk will outline Full RAG's potential to significantly enhance personalization, address engineering challenges such as data management and model training, and introduce data enrichment with reranking as a key solution. Attendees will gain crucial insights into the importance of hyperpersonalization in AI, the capabilities of Full RAG for advanced personalization, and strategies for managing complex data integrations for deploying cutting-edge AI solutions.

Recently uploaded (20)

GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...

GraphSummit Singapore | The Art of the Possible with Graph - Q2 2024

Essentials of Automations: The Art of Triggers and Actions in FME

How to Get CNIC Information System with Paksim Ga.pptx

Data structures and Algorithms in Python.pdf

LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...

Enchancing adoption of Open Source Libraries. A case study on Albumentations.AI

Monitoring Java Application Security with JDK Tools and JFR Events

National Security Agency - NSA mobile device best practices

Goodbye Windows 11: Make Way for Nitrux Linux 3.5.0!

GraphSummit Singapore | The Future of Agility: Supercharging Digital Transfor...

Video Streaming: Then, Now, and in the Future

“I’m still / I’m still / Chaining from the Block”

A tale of scale & speed: How the US Navy is enabling software delivery from l...

Microsoft - Power Platform_G.Aspiotis.pdf

zkStudyClub - Reef: Fast Succinct Non-Interactive Zero-Knowledge Regex Proofs

GridMate - End to end testing is a critical piece to ensure quality and avoid...

Introduction to CHERI technology - Cybersecurity

20240607 QFM018 Elixir Reading List May 2024

Full-RAG: A modern architecture for hyper-personalization

Four important trends in it and security implications

1. GALILEO GeorgiaBEST GeorgiaFIRST Georgia ONmyLINE GeorgiaVIEW GIL PeachNet USG123 Four Important Trends in Information Technology and their Impact on Organizational Security and Privacy Dr. Curtis A. Carver Jr. Vice Chancellor and Chief Information Officer University System of Georgia

3. GALILEO GeorgiaBEST GeorgiaFIRST Georgia ONmyLINE GeorgiaVIEW GIL PeachNet USG123 • Shortage of IT personnel • Clouds and Economies of Scale • Consumerization of IT • Data, Big Data, Location-based computing and Data-Driven Decision-Making

4. GALILEO GeorgiaBEST GeorgiaFIRST Georgia ONmyLINE GeorgiaVIEW GIL PeachNet USG123

5. GALILEO GeorgiaBEST GeorgiaFIRST Georgia ONmyLINE GeorgiaVIEW GIL PeachNet USG123 • Less folks + less qualified folks = more work. • More salary will be necessary to attract folks. • Internal salary inequities will be difficult to manage. • You may need to take more risk in hiring employees (skillset, turnover, non-dedicated resources, etc.). Implications

6. GALILEO GeorgiaBEST GeorgiaFIRST Georgia ONmyLINE GeorgiaVIEW GIL PeachNet USG123 Advantages of Statewide Network • Economies of Scale • Proactive Growth • Campus Agility • Traffic Prioritization

7. GALILEO GeorgiaBEST GeorgiaFIRST Georgia ONmyLINE GeorgiaVIEW GIL PeachNet USG123 • Clouds and Economies of Scale – Market pressures are driving consolidation and moving IT services to private or public clouds. – Economy of scale pricing example: the cost of 35 colleges and universities HR contract is much less than the cost of two R1 institutions (Georgia Health Sciences University and Georgia Tech) combined. – Library consortiums are the same.

8. GALILEO GeorgiaBEST GeorgiaFIRST Georgia ONmyLINE GeorgiaVIEW GIL PeachNet USG123 HR •Shared Services •32/35 centralized •Outsourced to ADP Fin •GeorgiaFIRST •32/35 at ITS •34/35 PeopleSoft LMS •GeorgiaVIEW •31/35 at ITS soon to be 34/35 •34/35 BlB/D2L SIS •GeorgiaBEST •8/35 at ITS •34/35 Banner •520 GA Mods BI •USG123 •Being rebuilt •35/35 at ITS •Not fully utilized NET •PeachNet •35/35 at ITS •Extensive external state participation LIB •GALILEO & GIL •35/35 centralized • Extensive external participation State Ed Ecosystem USG Educational Cloud Race to the Top Public Cloud Public Cloud State Ed Ecosystem State Educational Cloud Now Soon Longer

9. GALILEO GeorgiaBEST GeorgiaFIRST Georgia ONmyLINE GeorgiaVIEW GIL PeachNet USG123 Implications • Integration and protection of corporate data is going to be difficult. • All the eggs in one basket requires a really safe and secure basket. • Some standardization (lack of control) is required.

10. GALILEO GeorgiaBEST GeorgiaFIRST Georgia ONmyLINE GeorgiaVIEW GIL PeachNet USG123 Consumerization of IT – Bring Your Own Device will change campus culture, security, and instructional delivery – Managed/Unmanaged Applications – Private/Work Split – Who Owns the data?

11. GALILEO GeorgiaBEST GeorgiaFIRST Georgia ONmyLINE GeorgiaVIEW GIL PeachNet USG123 • How much loss of control is acceptable? • Protection of the data • Change Management of Personnel • Complexity is about to increase (need endpoint management and federated identity management) Implications

12. GALILEO GeorgiaBEST GeorgiaFIRST Georgia ONmyLINE GeorgiaVIEW GIL PeachNet USG123 • Data…. • Big Data….. • Location-based Big Data….. • Big Data Driven Decision Making….. “On the Internet, the First Amendment is a local ordinance,” said Fred H. Cate, a law professor at Indiana University. What are folks saying about your organization on Facebook? What are doing about what they are saying? Do you even know? Need decisions now Requires a report Report requires a collection Collection requires months

13. GALILEO GeorgiaBEST GeorgiaFIRST Georgia ONmyLINE GeorgiaVIEW GIL PeachNet USG123 • Unknown: We don’t need no stink’in data governance. • Jack Burton: It is all in the reflexes. • Steve Wright: I don’t want to own everything. I would not know where to put it. Implications

14. GALILEO GeorgiaBEST GeorgiaFIRST Georgia ONmyLINE GeorgiaVIEW GIL PeachNet USG123 Questions, Comments, A Conversation Dr. Curtis A. Carver Jr. Vice Chancellor and Chief Information Officer University System of Georgia

Four important trends in it and security implications

Recommended

Recommended

More Related Content

Similar to Four important trends in it and security implications

Similar to Four important trends in it and security implications (20)

More from Curtis A. Carver Jr.

More from Curtis A. Carver Jr. (19)

Recently uploaded

Recently uploaded (20)

Four important trends in it and security implications