Click on a book cover for more information or to order.
SAVE 20% AND GET FREE SHIPPING when you order these or any book online! Simply enter this code--813DA--when you checkout.
Preservation and Management of Documents
One of the most important tasks an organization or individual will face when dealing with electronic evidence is the preservation of that data in a way that ensures the integrity and availability of the data. This chapter from Electronically Stored Information, Second Edition looks at all of the aspects of that task and discuss the tools and requirements that you should be considering.
Introduction to Machine Learning
Machine learning is a branch of artificial intelligence that aims at enabling machines to perform their jobs skillfully by using intelligent software. This excerpt from Machine Learning: Algorithms and Applications present an introduction to machine learning including the use of machine learning algorithms and present and future applications.
Introduction to Certificateless Cryptography
In this excerpt from Introduction to Certificateless Cryptography, authors Hu Xiong, Zhen Qin, and Athanasios V. Vasilakos present a brief introduction to symmetric cryptography, discuss the setting of asymmetric public key cryptography, and argue why you should care about certificateless PKC.
Corporate Defense Framework
The delivery of sustainable stakeholder value requires a subtle balance between the focus on value creation and value preservation In this video, Sean Lyons, author of Corporate Defense and the Value Preservation Imperative, explains what is required for effective corporate defense rather than the illusion of corporate defense. He presents an integrated corporate defense framework required in order to align an organization's critical corporate defense components. This multi-centric approach can help you develop a more holistic view of corporate defense.
Scala Programming Basics
This excerpt from Introduction to Programming and Problem-Solving Using Scala, Second Edition introduces the basics of the Scala programming language.
Stop Squandering Time with All Talk and No Action
True or false: If a meeting ends with no actions, you didn't really need the meeting in the first place. Nancy Settle-Murphy's vote: Mostly true. Although some meetings may be held simply to cross-pollinate information or brainstorm new ideas, the goal of most meetings is to get something concrete accomplished. A resulting list of actions is often the most reliable barometer of progress. Why then do so many meetings end up with few, if any, action items? I have some suspicions. Simply put, she thinks that many of us give up too easily, offering a variety of excuses, some of which she enumerated in this article. For every excuse, she's provided at least a couple of choices.
Storage and Database Management for Big Data
The ability to collect and analyze large amounts of data is a growing problem within enterprise of all types. es faced by big data volume, velocity, and variety. While there has been great progress in the world of database technologies in the past few years, there are still many fundamental considerations that must be made. This chapter from Big Data: Storage, Sharing, and Security aims to address many of the pressing questions faced by people interested in using storage or database technologies to solve their big data problems.
Solving the Legacy Platform Problem
Legacy platforms are a major drag on the performance and cost of IT infrastructure. They must be retired to generate the ROI expected from upgrades and new hardware purchases, but frequently they hang on for years—adding power, maintenance, and support needs as well as security risks and other complications. Reasons for legacy leftovers range from dependency on busy development teams for migration projects, to a server-by-server migration approach that fails to account for complex workloads that traverse multiple servers. This article discusses the problems created by retaining workloads or data on old infrastructure as well as strategies for putting old platforms and applications out to pasture.
Authentication is the process that deals with the establishment of identities. Claims-based authorization, at its simplest, checks the value of a claim and allows access to a resource based upon that value. A claim is a name-value pair that represents what the subject is, not what the subject can do. Clear as mud, right? Read this chapter from Enterprise Level Security for total clarity on claims-based authorization.
Instantly Improve Your Team Communications by Overturning 9 Dangerous Myths
Whether running a project team or managing a group, most team leaders assume that their communications skills are pretty decent. So when they send emails, post documents, ping people on IM, or lead team meetings, they imagine that people are ready, willing and able to hear what they have to say. Magical thinking? You bet. This article shares some common instances of wishful thinking, or irrationally optimistic assumptions, which often lead to frustration and disappointment for leaders and their teams. As a counterpoint, it provides a tips to ground that wishful thinking more in reality, resulting in communications that actually may be nothing short of magical.
The IIA defines operational auditing as "Defining, measuring, evaluating, and improving the economy, efficiency, and performance effectiveness of the organization's operations and constituent activities irrespective of function, purpose, or level within the organizational structure." The chapter from Operational Assessment of IT explains what this means and how to apply it in the context of operational assessment of ICT.
Software Quality Assurance: Defect Management
This chapter from Software Quality Assurance: Integrating Testing, Security, and Audit deals with the conceptual aspects of defect management. There are three parts in this chapter. Part 1 discusses the basic concepts of a defect and why a defect happens. Part 2 introduces the practical methodologies of how to manage the defects. In this section, some sample documents and templates are provided to manage the defect properly. Part 3 discusses and analyzes the root causes of defects and provides recommendations of how to prevent defects in the future.
Introduction to Systematic Strategic Planning
This chapter from Case Studies in Strategic Planning discusses systematic strategic planning (SSP) This is the pattern of procedures by which an organization defines its current status, opportunities, long-term goals, and the strategies for which to achieve them. SSP is based on the principles of PxD (Planning by Design). SSP consists of a framework of phases through which each project passes, a pattern of sections for straightforward planning, and the fundamentals involved in any strategic planning project.
Dissemination and Reporting of Electronically Stored Information
This chapter from the new, second edition of Electronically Stored Information discusses the reasons and the methods for sharing the data we have so carefully acquired, preserved, and managed. There are several reasons and each may engender different approaches or procedures appropriate to the specific needs of those situations. These approaches include the format in which the data are produced, the content, the timing of release, and the actual physical media and process for delivering the electronic information. It also discusses reporting protocols and suggest some ideas to ensure that the reports you create are clear and concise. Finally, it presents tips for participating in depositions or as an expert witness.
How to Stop a Cultural Collision in Its Tracks
The only way team members will be enthusiastic about collaborating is to openly talk through the cultural differences, as well as their respective organizations' values and beliefs. This will not be an easy conversation, and it won't be a short one either, given the number of differences standing in the way. Where do you start? Here are some questions to ask team members during your next team meeting to open the conversation and acknowledge the elephant in the room. Encourage examples and stories, to help the group understand what's really behind their differences. This will pave the way for your team to create its own team charter that blends the best of both cultures.
Combat Rude Behavior with Radical Civility
The ability to thrive is the best way to ward off the negative effects of bad behavior. Two related, but distinct, paths can help get you there. Thriving cognitively occurs when we focus on improving our performance, learning new things, and finding ways to propel ourselves forward. Thriving affectively means that we are healthy of body and mind, and feel energized both inside and outside of work. These tips, taken together, can help you create a kind of personal armor that can help repel the damaging effects of rude behavior.
Today's Big Trends in Robotics: The Robolution
In their surveys, McKinsey and many other analysts are promising the massive arrival of robots in our factories, our service companies, our cities, our countrysides, and our homes. Whatever the editorial stance and target audience, all of the media are talking about robotics in just about every issue or report published. Yet the reality of the robotics transformation varies depending on the country and continent, and many innovations are having a hard time carving out a significant place for themselves on the market. Everyone keeps talking over and over about the Robolution, but where does it really stand as we speak?"
Analyzing and Securing Social Networks
This chapter from Analyzing and Securing Social Networks sets the stage to discuss both social media analytics and security. It discusses various applications of social media analytics. Then it considers applying various data mining techniques for social network analysis (SNA), before discussing security and privacy aspects.
To Get People Talking, Try Asking the Right Questions
It's happened to all of us: You pose a carefully-worded question, pause and wait for someone to respond. And then you hear nothing, other than an awkward, prolonged silence. In reality, if our entreaties are met by silence, it's because we simply haven't figured out how to invite people into the conversation the right way. Here are a few guidelines from Nancy Settle-Murphy to help you coax willing participation, most of the time, from even the most reticent virtual meeting participants. (These tips also work well when you're meeting face to face.)
Tackling Tough Issues Remotely, When Your Boss Is the Problem
We hear a lot about how virtual leaders can deal effectively with workplace conflicts and performance problems. But we don't hear nearly as much about how to confront tough issues from the remote worker's point of view. And that's precisely what Sue Shellenbarger, Work and Family columnist for the Wall Street Journal, wanted to know when she contacted Nancy Settle-Murphy recently for an interview. Since Sue's questions were so insightful, Nancy has paraphrased three of them here, along with a few replies.
5G Overview: Key Technologies
There are some main expectations from the 5G network to present a better telecommunication network. To achieve these goals, the 5G network must have the several characteristics. This chapter from Opportunities in 5G Networks: A Research and Development Perspective, discusses the characteristics and requirements for the coming 5G network.
Developments and Challenges in Location Mining
Identifying the location of social media users would enable, say, law enforcement to determine where the users are if they have committed a crime. On the other hand, we may want to protect the location of innocent users. This excerpt from Analyzing and Securing Social Networks discusses the importance of location mining and provides an overview of the related efforts on this topic. It then discusses the challenges in location mining, as well as aspects of geospatial proximity and friendship.
Balancing the Risk and Opportunity of Deep Customer Data Analytics
For Big Data to power new insights, it is critical that firms move their core customer and transaction histories into these new environments in addition to any new data sources that may be brought in. This often means taking data once stored and processed on the highly-secure mainframe and move it off-platform. This, paired with many high-profile breaches of consumer data, has driven heightened security and compliance regulations around how personal data is stored, analyzed and used by large enterprises. There are many steps--both policy- and technology-driven--that you can take to initiate these projects while balancing compliance and security.
Operational Assessment of IT: Understanding the Organization
This excerpt from Operational Assessment of IT by Steve Katzman explains why before management can consider committing resources and impeding any business productivity to accomplish any assessment, you must understand the organization. Without this understanding, you will not be recognized as adding value to the organization. You will be considered a cost center, similar to the overhead expense of the building, equipment, etc.
As enterprises have experienced the need to be simultaneously efficient, flexible, responsive, and adaptive, they have transitioned themselves into agile enterprises with small, autonomous teams that work concurrently and reconfigure quickly, and adopt highly decentralized management that recognizes its knowledge base and manages it effectively. This excerpt from Enhancing Enterprise Intelligence: Leveraging ERP, CRM, SCM, PLM, BPM, and BI delves into what it means to be an Agile Enterprise.
The Impossibility of Designing a "Perfect" Virtual Meeting in a Multicultural World
Nancy Settle-Murphy started to wonder, "If I am leading workshops that demonstrate "best practices" virtual meetings with global teams, who's to say that my best practices are right for other cultures?" For guidance, she turned to the brilliant new book by Erin Meyer. She got no further than the first chapter before she started to jot down dozens of ideas. Here are just a few.
Introduction to Change Management
This chapter from Change Management: Manage the Change or It Will Manage You by Frank Voehl and H. James Harrington answers the question, "In a nutshell, what is change management?"
Integrating Changes into Operations: Transition Management
This chapter from Improving Business Performance: A Project Portfolio Management Approach focuses on integrating the changes into the operations of an enterprise.
Fire Up Your Communications Mojo in a Virtual World
Public speaking is a full-body sport. To keep people engaged and maintain a strong presence when face-to-face, you must use your full body: your posture, gestures, voice, eye contact, and movement. Demonstrating a compelling presence is no less important in the virtual world, but it's done a bit differently. Here are some tips.
Lean Primer for IT Professionals
This chapter from The Lean IT Field Guide: A Roadmap for Your Transformation by Michael A. Orzen and Thomas A. Paider provides you with some familiarity on various applications of lean to IT. It's important to have a basic understanding of fundamental concepts and areas of practice in order to stay grounded in principles that really provide lasting results. We often see IT organizations jump from hot new topic to hot new topic, applying a flavor of the month strategy that never sustains itself.
IT Innovation and Ethics
Explaining how ubiquitous computing is rapidly changing our private and professional lives, Ethical IT Innovation: A Value-Based System Design Approach stands at the intersection of computer science, philosophy, and management and integrates theories and frameworks from all three domains. The book explores the latest thinking on computer ethics, including the normative ethical theories currently shaping the debate over the good and bad consequences of technology. This excerpt makes the case as to why IT professionals, managers, and engineers must consider the ethical issues when designing IT systems.
Protecting the Oil and Gas Industry from email Threats
According to a recent report from the US Industrial Control Systems Cyber Emergency Response Team (ICS-CERT), the energy sector is facing a significant rise in cyber attacks. The high volume of business communications conducted via email within this industry give hackers quite the window of opportunity to intercept sensitive information through the use of spear phishing. This article by OPSWAT's Doug Rangi describes spear phishing attacks that have occurred in various sectors of oil and gas, along with recommendations on how the industry can boost their cyber security and specifically adopt new preventative measures to protect against these and other email-borne threats.
Predicting the Cyber Security Future in 2016
In this article, Lancope CTO TK Keanini provides a brief retrospective on 2015, including the biggest patterns seen from within the cyber security industry; highlights the biggest trends to expect in 2016; from cracking as a service to DNA breaches; and discusses how these trends will impact businesses and individuals alike and have long reaching implications.
The Threat Within: 3 Out of 4 Companies Affected by Internal Information Security Incidents
Costly cyberattacks are now almost routine for businesses, but while many organizations are focusing on external attackers, it's important to also look at threats from within. According to the IT Security Risks Survey conducted by Kaspersky Lab and B2B International, 73% of companies have been affected by internal information security incidents. The survey also found that the largest single cause of confidential data losses is by employees (42%).
Introduction to Dependable Embedded Software
Embedded Software Development for Safety-Critical Systems discusses the development of safety-critical systems under the following standards: IEC 61508; ISO 26262; EN 50128; and IEC 62304. It details the advantages and disadvantages of many architectural and design practices recommended in the standards, ranging from replication and diversification, through anomaly detection to the so-called "safety bag" systems. Reviewing the use of open-source components in safety-critical systems, the book has evolved from a course text used as a training module on building embedded software for safety-critical devices. This excerpt introduces the concepts of dependable embedded software and the safety culture.
6 CyberHacks That Will Affect Your Life in 2016
As we are quickly marching toward the end of another year, Stephen Newman, CTO of Damballa, discusses the new types of cyber attackes that will likely see in 2016. He points out that these new types of attacks will draw everyone's attention to the lack of privacy and security in our interconnected world.
How Timeshifting Truly Transformed a Top-Performing Virtual Team
Basically, "timeshifting" means that a team can work together when it can't be together, either physically or virtually. Um, okay. But what does that really mean, and how do you accomplish it? This edition of Nancy Settle-Murphy's Communiqué shares just a few creative and insightful tips on how to make this happen.. You’re not going to want to miss a single one.
Drones in the City: Toward a Floating Robotic Panopticon?
A social robot is a robot that interacts and communicates with humans or other autonomous physical agents by following social behaviors and rules attached to its role. Just Ordinary Robots: Automation from Love to War provides a socially involved, yet sober, insight into the questions of robotics. Which robot technologies are coming? What are they capable of? Which ethical and regulatory questions will they consequently raise? The authors examine the social significance of the new generation of robots in five areas: home robot, care robot, auto robot, police robot, and military robot. This excerpt discusses Civil Applications of Drones.
4 Steps to Prepare Your Business for an ERP Implementation
One of the most common mistakes businesses make when preparing for an ERP system implementation is assuming it's just another project for the IT department. This couldn't be further from the truth. An ERP system implementation is a major period of change for any business, and the key to a successful deployment is the preparation. Before any software gets installed or any training takes place, there are several critical things you must do to prepare your business for the systemic overhaul of key operational processes. By preemptively accounting for common pitfalls, a business can avoid obvious mistakes and make the implementation process more seamless. These four steps can help ensure ERP implementation success.
Leading the Internal Audit Function
In this book, Lynn Fountain presents lessons learned from her extensive experience as a CAE to help internal auditors understand the challenges, issues, and potential alternative solutions when executing the role. The book explains how to clarify management expectations for the internal audit and balance those expectations with the IIA Standards. It examines the concept of risk-based auditing and explains how to determine whether management and the internal audit team have the same objectives. It also looks at the internal auditor's role in corporate governance and fraud processes.
Oracle Case Management Solutions
Oracle Case Management Solutions is the first book to translate case management from a business problem perspective into appropriate Oracle product usage. Covering the key Oracle technologies that support case management solution components, it explains how to conceptualize and implement quality case management solutions with these products.
If You See Marty McFly, Can You Tell Him ...
In honor of 'Back to the Future Day' (in case you're not a fan, October 21, 2015 is the day Marty McFly visits in the 1989 second film in the trilogy.) This article, written for fun by Martyn Ruks, Technical Director of MWR InfoSecurity, looks at the technology of the fictional 2015 and ponders just how secure it is.
Three Questions about Online Security
When you give your personal information to a financial institution, government, or insurance company, you have a certain level of trust that they will do everything in their power to keep it safe. It's easy to forget that at the same time you're filling out paperwork online, in the dark world of cybercrime, hackers are doing everything in their power to get your information. This article explains why hackers want this information, what they do with it, and how you can safeguard themself.
Managing Performance from Afar Made Easier: 10 Tips for a Happier Outcome
It can be awkward to give someone tough feedback when they're miles away. And that's the least of it. Without visual cues, the delivery of even the most well-meaning and thoughtful performance feedback can have the opposite effect. It can damage relationships, erode trust, sap motivation, and in reality, it can actually weaken performance, instead of strengthening it. In this edition of Communiqué, Nancy Settle-Murphy embellishs on a few tips from her Tips for Leading Amazingly Productive Virtual Teams guide.
Providing an Integrated Environment for Big Data Management with the Hadoop Ecosystem
As the new technologies developed for Hadoop continue to rise, it is essential to note that there are some products which will be better suited for specific requirements than others. This article provides an overview of the entire suite of technologies collectively constituting the Hadoop ecosystem. These include tools for database and data management, core functionalities, data transfer, security enhancement, analytics, data serialization as well as Hadoop-based cloud computing functions.
Only by understanding the threats and the basics of the tradecraft utilized to facilitate industrial espionage can an organization develop an effective counterespionage program. This chapter from Industrial Espionage: Developing a Counterespionage Program by Daniel J. Benny reviews espionage tradecraft including the intelligence cycle, the categories of intelligence collection, and the methods of collection.
Overview of Cloud Computing Networking
This chapter from Cloud Computing Networking: Theory, Practice, and Development introduces the types of networks and the operating systems that are able to provide network services and manage network devices. It analyzes the functionalities of these operating systems and presents their functionalities through network architecture. Finally, it explains how cloud computing is supported by the operating systems, and discusses the networking process and illustrates how to implement a network system.
It's What People Aren't Saying That Leaders Most Need to Hear
In this article, Nancy Settle-Murphy uses a hypothetical example, representing a composite of some of our actual clients, to show how unmet expectations can undermine trust, demotivate teams, and chip away at relationship equity. It provides some practical steps for self-aware leaders who know they can do much more to create the kind of environment where every team member can flourish.
Protecting Medical Record Data
After a slew of data breaches in 2014, the FBI warned the healthcare industry that cyber-criminals would be directing more attention their way in 2015. The healthcare industry, valued at $3 trillion, has become an increasingly valuable target for cyber criminals and, in some cases, a much easier target to attack, due to their often less than adequate investment in cyber security. What is it about the healthcare industry that has captured the cyber criminal's interest in the last few years? This article from OPSWAT discusses reasons for the popularity of medical data theft and gives advice on how to prevent future breaches.
The Privacy Professor's September Tips: Don't Let the Bloom Fade from Privacy Diligence
The latest tips from Rebecca Herold, The Privacy Professor. Her latest book is Data Privacy for the Smart Grid, co-written with Christine Hertzog.
Top 3 Factors Driving the Rise in Data Breaches
It comes as no surprise that the number of companies falling victim to data breaches is on the rise. These stories are making headlines, and making CEOs and employees alike nervous that they will be the next victim. As computers are getting faster, so are hacking attempts. Hackers are now more capable than ever to implement their plans. This article outlines the top three factors that are contributing to the rise of data breaches.
Call for Chapters: Nature-Inspired Networking: Theory and Applications
The book will contain highly original contributions about how the nature is going to shape networking systems of the future. Hence, it will focus on rigorous approaches and cutting-edge solutions, which encompass three classes of major methods. The book's purpose is to make a formal basis more accessible to researchers, scientists, professionals and students as well as developers and practitioners in ICT by providing them with state-of-the-art research results, applications, opportunities and future trends.
Avoiding the High Cost of Ambiguous Decisions
Truly bad decisions are made every day, often because the decision-making process is murky, and needed conversations are rushed. What is a better approach to facilitating group decisions? Joining Nancy M. Settle-Murphy, the author of Leading Effective Virtual Teams: Overcoming Time and Distance to Achieve Exceptional Results, in writing this Communiqué is her friend and colleague Rick Lent, president of Meeting for Results. Although the concepts can be applied to any kind of meeting, we offer tips for those who lead virtual meetings, where you lose vital visual cues.
Facial Recognition Technology: Commercial Uses, Privacy Issues, and Applicable Federal Law
Facial recognition technology, which can verify or identify an individual from a facial image, has rapidly improved in performance and now can surpass human performance in some cases. The Department of Commerce has convened stakeholders to review privacy issues related to commercial use of this technology, which GAO was also asked to examine.