The Weakest Link

Published by: Alastair Broom on March 10, 2017 in Security

As Logicalis’ Chief Security Technology Officer I’m often asked to comment on cyber security issues. Usually the request relates to specific areas such as ransomware or socially engineered attacks. In this article I’m taking a more holistic look at IT security.

Such a holistic approach to security is, generally, sorely lacking. This is a serious matter, with cyber criminals constantly looking for the weak links in organisations’ security, constantly testing the fence to find the easiest place to get through. So, let’s take a look at the state of enterprise IT security in early 2017, using the technology, processes and people model.

Technology

A brief, high-level look at the security market is all it takes to show that there are vast numbers of point products out there – ‘silver bullet’ solutions designed to take out specific threats. There is, however, little in terms of an ecosystem supporting a defence-in-depth architecture. Integration of and co-operation between the various disparate components is , although growing, typically weak or non-existent.

We’ve seen customers with more than 60 products deployed, from over 40 vendors, each intended to address a specific security issue. Having such a large number of products itself presents significant security challenges, though. All these products combined have their own vulnerability: support and manintenance. Managing them and keeping them updated generates significant workload, and any mistakes or unresolved issues can easily become new weak points in the organisation’s security.

The situation has been exacerbated by the rapidly increasing popularity of Cloud and Open Source software. Both trends make market entry significantly simpler, allowing new players to quickly and easily offer new solutions, targeting whichever threat happens to be making a big noise at the moment.

Just as poor integration between security products is an issue, so is lack of integration between the components on which they are built. Through weak coding or failure to make use of hardware security features – Intel’s hardware-level Software Guards Extensions (SGX) encryption technology is a good example – security holes are left open, waiting to be exploited.

The good news on the technology front is that we are seeing the early stages of the development of protocols, such as STIX, TAXII and CybOX, allowing different vendors’ products to interact and share standardised threat information. The big security vendors have been promoting the idea of threat information sharing and subsequent action for a while, but only within their own product ecosystems. It’s time for a broader playing field!

Processes

IT security is one of the most important issues facing today’s enterprise, yet, while any self-respecting board will feature directors with responsibility for sales, marketing, operations and finance, few enterprises have a board level CISO.

Similarly few organisations have a comprehensive and thoroughly considered security strategy in place, or proper security processes and policies suitable for today’s threat landscape and ICT usage patterns. A number of industry frameworks exist: ISO 27001, Cyber Essentials, NIST to name but a few; and yet very few organisations adopt these beyond the bare minimum to meet regulatory requirements.

Most organisations spend considerable sums on security technology, but without the right security strategy in place, and user behaviour in line with the right processes and policies, they remain at risk of serious breaches.

People

The hard truth is that some 60% of breaches are down to user error. Recent research obtiained through Freedom of Information requests found that 62% reported to the ICO are down to humans basically getting it wrong. People make poor password choices, use insecure public (and private!) WiFi, and use public Cloud storage and similar services without taking the necessary security precautions. They do not follow, or indeed even know, corporate data classification and usage policies. The list, of course, goes on.

Training has a part to play here, to increase users’ awareness of the importance of security, as well as the behaviours they need to adopt (and discard) to stay secure. However, there will come a point at which the law of diminishing returns kicks in: we all make mistakes – even the most careful, well trained of us.

We need to explore, discover and devise new ways in which technology can help, by removing the human element, where possible and desirable, and by limiting and swiftly rectifying the damage done when human error occurs. Furthermore, we need to leverage ever improving machine learning and artificial intelligence software to help augment human capability.

Enterprises need to work with specialists that can help them understand the nature of the threats they face, and the weak links in their defences that offer miscreants easy ways in. That means closely examining all aspects of their security from each of the technology, processes and people perspectives, to identify actual and potential weaknesses. Then robust, practical, fit-for-purpose security architectures and policies can be built.

For an outline of how this can work, take a look at Logicalis’ three-step methodology here or email us security@uk.logicalis.com to discuss your cyber security needs.

Leave a Reply Cancel reply

You must be logged in to post a comment.

WRITTEN BY Alastair Broom

Alastair Broom is Security Practice Lead for Logicalis UK where he is responsible for managing the UK Security Practice, defining the security strategy and roadmap and helping the Logicalis client base address their security challenges.

Alastair has held a number of senior Product Marketing and Product Management positions throughout his career and has lived through the evolution of the threat and regulatory landscape, helping customers protect their networks, data and brand.

Prior to Logicalis, Alastair was Security Line of Business Director at Dimension Data and managed the product & services portfolio at Integralis/NTT Com Security.

He has written several published articles/opinion pieces on a range of security related topics and has a degree in Electrical Engineering from the University of Nottingham.

All posts

Related
Most Recent
Most Popular

All the gear, no idea?

Dean Mitchell
January 18, 2018

In the previous blog post on Capacity Management, we explored why IT projects fail and what you can do to prevent it. What is even more important is to understand why, when it comes to securing your business, product alone isn’t the answer.

Ransomware, data breaches, insider threats, phishing scams… we’ve all seen the headlines. And, although these words, once reserved for IT departments, are becoming a part of everyday vocabulary, that doesn’t make them any less concerning. They have the power to derail your entire business- everything that you’ve built- within seconds.

Nowadays, cybercrime is big business, and you can guarantee that for every security solution churned out by vendors, someone, somewhere is creating a brand new malicious code to target other vulnerabilities you didn’t even know existed within your organisation. Add to that modern working habits, with more and more businesses needing to adopt cloud and IoT for day-to-day operations, to keep up with their competitors, but subsequently increasing the potential attack surface, and you soon see that organisations are under siege from all angles.

To state the obvious; cybersecurity is no longer optional.

And this is something that all CIOs are more than aware of. In fact, in our 2017 global CIO Survey, security was cited as the number one concern when it came to an increase in the use of cloud services, with 70% of respondents citing it as a challenge.

So the problem is common knowledge, but what’s the solution?

Well, if your automatic answer is ‘by investing in security products’, then you’re not alone. Many business leaders define ‘security strategy’ as lots of different solutions coming together to work as one protective shield. Each solution is built to defend against a single threat vector, so various email, cloud and web products all become separate pieces of a much larger security puzzle.

Given the sheer volume of security products readily available, it’s no surprise that this puzzle doesn’t come cheap and that certain pieces aren’t as effective as others. But, surely the more products you deploy- effective or otherwise- the more significant your overall security capabilities and the better the protection for your organisation. After all, it’s better to be safe, and slightly out of pocket, than sorry… right?

It’s an easy trap to fall into.

In reality, a growing number of point solutions patched together is no longer an effective strategy. Instead, this method compounds complexity and creates the very vulnerabilities that it is meant to be mitigating against.

This is because security devices raise an alert for each threat that they detect- that’s how they work. And when you have multiple tools in place, each detecting multiple threats, the chances are that alerts will be going off almost constantly. This is fine; it shows that the solutions are working.

But, it’s unlikely that a single organisation will have the manpower needed to deal with each alert simultaneously. Instead, overwhelmed and underresourced IT teams will probably try to prioritise and as a result many of the alerts, and therefore threats, are ignored, making your organisation vulnerable.

So, when it comes to protecting your business, spending thousands and thousands of pounds worth of your budget on product alone is futile. It’s clear that the ‘best of breed approach’ has had its day, with an increasing number of organisations coming to the realisation that it’s not about how many solutions you have in place, it’s about how you’re using them.

A problem shared is a problem halved

To simplify things, you can strip your security strategy back to three key areas that all need to be done well; threat insight, vulnerability management and managed endpoint security.

Then, you need to make sure that the solutions you have within these areas are being used correctly. The easiest way to do this, and to make the most out of your resources, is to undertake a collaborative approach.

Take the heat off your own IT team and share the security burden with a partner who can help you to plug the gaps with managed solutions like:

– Managed SIEM/SIRM- A Security Incident Event Management service working in conjunction with a Security Incident Response Management service will provide optimal threat insights. It will solve the biggest and longest headache for your internal IT team- the one that began when you started installing security solutions… External engineering teams will analyse and, effectively, filter the never-ending stream of alerts so that, before they even reach your team, they are prioritised in terms of risk to your business and have clear actions on how to stop them in their tracks.

– Patch management- By combining patch management services with existing vulnerability scanning in a single service you can achieve optimal vulnerability management. Believe it or not, this service will fill any gaps in your security wall automatically. This is because networks will be regularly scanned for vulnerabilities with any intel gathered then being rolled into a patching program. Obviously, this will significantly reduce the time between when a vulnerability is identified and when it is patched.

– Security device management- This incorporates all endpoint security, including antivirus solutions, firewalls and device control, as a single managed service. Delivered via software on laptops, desktops and servers, the service can also detect rogue devices attaching to the network and provide web filtering.

The bottom line is that cybersecurity is not about product. It’s about people, processes and technology working coherently to manage risk and protect your organisation. Often, working collaboratively with providers who can manage your security can be the better option. They will have the resourcing and the skillset to help you deal with any potential threats, while offering more peace of mind.

Today, a third of CIOs see security as the most prominent barrier towards digital transformation. Outsourcing can change that by granting your internal IT teams the gift of time… time that can be used to pursue other areas of your business’ IT strategy.

Talk to us to find out how we can help you.

Originally posted on CBR, 21 November 2017

Category: Security

5 Steps to Effective Ransomware Protection

Alastair Broom
December 13, 2017

Ransomware is a hot topic at the moment and the “attack du jour” for cybercriminals. The code is easy to obtain and campaigns simple to execute thanks to the industrialised infrastructure that supports it. The result – a rapidly growing market that is already estimated to be worth in excess of $1 billion.

Criminal gangs provide “ransomware as a service” with everything from code provision through to the monetisation of the attack making it easy to both execute and profit from. Other types of cyber-attacks may involve complex, time-consuming or risky steps for the criminals but ransomware profits are immediate, usually via Bitcoin payment into the criminal’s wallet.

The traditional approach to cyber security has been to deploy more and more technology to protect against the evolving threat. This has led to uncontrolled technology sprawl creating a security management nightmare. Throwing more technology at the problem implies more resources to manage the estate and security resources are hard to come by. According to research by the recruitment company

Despite the increased level of sophistication and frequency of ransomware attacks, by following the steps described below, organisations can significantly reduce their risk.

Step 1: Security Awareness Training

Although technology plays an important part, the majority of malware and ransomware attacks involve a user doing something they shouldn’t, such as clicking on a malicious web link, opening an email attachment or installing a new application. Usually this is due to a lack of understanding of the security risks associated with such actions. Phishing, a form of social engineering is a common technique used to get ransomware inside an organisation, effectively duping users into downloading malicious code or otherwise opening up the organisation’s network to cyber-attack.

Many organisations provide basic security training as part of company induction or as one-off exercises to address audit requirements. However, security training should be a regular part of users’ development and regularly updated. Training should be delivered at a pace and frequency that fits in with the employees’ work schedules with progress monitored and tested for effectiveness as part of the program. Security awareness is a critical part of any organisation’s security program and is fundamental to several security frameworks such as the UK National Cyber Security Centre’s “10 Steps to Cyber Security” program

Step 2: Vulnerability Management

Most malware infections, including ransomware, compromise our systems due to vulnerabilities in the operating systems and applications. All too often, these vulnerabilities remain unpatched for months or even years allowing criminals to exploit the same flaws time and time again.

In 2015, of exploited vulnerabilities have had a patch for more than one year and it doesn’t look as though that’s changing. In addition, IBM research shows that when new vulnerabilities are discovered, the average time taken for hackers to exploit them has decreased from 45 days ten years ago to 15 days today.

Effective vulnerability management is critical in ensuring that existing vulnerabilities are dealt with and new ones are patched quickly before they can be are exploited.

Step 3: Web Protection

Almost all ransomware is delivered across the web. Regardless of whether the initial infection is via email or a malicious/compromised web site, the malware will normally attempt to contact a remote server to download additional software such as exploit kits or encryption software. Web security solutions can be used to detect this suspicious activity, preventing the dangerous malware payloads from being downloaded – even if the initial infection is successful. Modern web security solutions make use of advanced threat intelligence to identify malicious domains and web servers and prevent the malware from receiving its instructions.

Step 4: Endpoint Protection

Ransomware infection inevitably happens at the endpoint. Typically, a laptop, PC or server will be compromised and used to propagate the malware throughout the network. Traditional signature-base anti-malware solutions are largely ineffective against modern malware due to rapidly changing code and the time taken by security vendors to identify new malware variants and create and distribute signatures. Behaviour-based endpoint protection is much more effective in dealing with modern malware as it will identify malicious behaviour such as file substitution and registry changes rather than looking for a specific malware fingerprint in an ever increasing signature database.

Step 5: Security Analytics

Steps 1 to 4 above will provide an effective defence against ransomware and malware in general. However, it is impractical to expect your systems never to be breached so it is imperative that you have visibility into the activity in your environment and the ability to identify breaches and react when they occur. This visibility and identification is provided by a Security Incident & Event Management (SIEM) platform. This software will ingest logs from your security infrastructure, servers, routers etc. and search for suspicious activity that could signal a breach. SIEM provides a “single pane of glass” view into disparate technology overcoming many of the problems associated with the technology sprawl mentioned earlier and enabling security events to identified so they can be dealt with quickly.

Ransomware is a plague that threatens the availability of the data we rely on for our businesses to operate. If successful, ransomware attacks can bring organisations to their knees and result in substantial financial loss in ransom payments, system restoration, clean-up and the growing impact of regulatory fines. Following these 5 steps will significantly reduce the risk of ransomware attacks. Logicalis can help you with solutions to address each of these steps helping you navigate to a more secure environment. For more details, please feel free to contact us.

Category: Security

Still waiting for your Amazon delivery?

Alastair Broom
December 15, 2016

Last week I read that you can now hijack nearly any drone mid-flight just by using a tiny gadget.

The gadget responds to the name of Icarus and it can hijack a variety of popular drones mid-flight, allowing attackers to lock the owner out and give them complete control over the device.

Besides Drones, the new gadget has the capability of fully hijacking a wide variety of radio-controlled devices, including helicopters, cars, boats and other remote control gears that run over the most popular wireless transmission control protocol called DSMx.

Although this is not the first device we have seen that can hijack drones, this is the first one giving the control Icarus works by exploiting DMSx protocol, granting attackers complete control over target drones that allows attackers to steer, accelerate, brake and even crash them.

The attack relies on the fact that DSMx protocol does not encrypt the ‘secret’ key that pairs a controller and the controlled device. So, it is possible for an attacker to steal this secret key by launching several brute-force attacks.

You can also watch the demonstration video to learn more about Icarus box.

There is no mitigation approach to this issue at the moment, other than wait for manufacturers affected to release patches and update their hardware embracing encryption mechanisms to secure the communication between controller and device.

Having seen this video and the potential impact of this hijacking technique, my first thought was about the threat for Amazon’s new service coming soon, which will allow drones to safely deliver packages to people’s homes in under 30 minutes.

This is just another example of how important is to define the right strategy around using encryption as part of the security in the digital era. Business data and the way we want to access this data from any device, anywhere and anytime just highlight the need of enhanced and clever security solutions.

There are different ways Logicalis can help our customers in the protection of data located in data centres and end points with the help of the ecosystem of partners like Cisco and Intel Security.

An interesting offering to mention is Logicalis Endpoint Encryption Managed Service. This service gives our customer’s devices and the data within them the level of protection that will give them peace of mind should a device be lost or stolen, and we Logicalis manage the service for them. This service is the market leader for data protection and it provides the highest levels of Confidentiality, Integrity and Availability. The service is part of the global strategy adopted by Logicalis Group across EMEA.

Category: Automation, Security

The ever-evolving workplace and its impact on retaining talent

Richard Simmons
November 5, 2018

If your employees are motivated and committed, then individual targets are more likely to be met and business objectives are more likely to be achieved. If not, then your workforce, and available skill pool, is likely to dwindle. In the current climate, attracting and subsequently retaining talent is one of the biggest dilemmas faced by businesses of all sizes.

This is why user experience should be the driving force behind any changes to your digital landscape.

‘The Workplace’- A new definition

There’s no getting away from the fact that things are changing. ‘The Workplace’ used to be similar to an engine room where any and all work was completed. Employees came in at 9am and left at 5pm each day, completing all their assigned tasks whilst staring at the same four walls.

Then along came agile technologies, empowering employees to leave the office and enabling them to work with a level of flexibility that had never been achieved before. They can work at any time and from anywhere. ‘The Workplace’ is no longer a desk in an office. It can be anything an individual would like it to be; whether that is a cafe, the family living room or a park bench. And what’s more, time constraints are a thing of the past. Of course, the dreaded deadlines are still unavoidable but working hours are no longer dictated by a lack of efficient technology.

All in all, the ability to offer some form of flexible working has become an important part of attracting your workforce. In fact, a recent report conducted by global recruitment expert Hydrogen discovered that 81% of people look for flexible working options before joining a new company. The same report also found that 88% of technology professionals consider flexible working to be more important than other benefits and 60% of those questioned would chose it over a 5% salary increase. It’s no longer optional for businesses – if you don’t invest in the technologies to support flexible working initiatives then potential, talented candidates will look elsewhere.

And flexible working doesn’t just play a role in the hiring process, agile technologies and the new workplace can also help businesses to retain talent.

If employees can work flexibly, they can better manage their work/life balance. They can choose to work longer – and at a more flexible rate – if they wish meaning that more experienced generations will be able to educate and pass on specialised skill sets to the younger, up and coming workforce. And, thanks to agile technologies, they will no longer have to be there physically to do so.

In fact, with flexible working initiatives, if employees are coming into the office it will often be because they’ve chosen to or because they would like to meet others there. As a result, ‘The Workplace’ is transformed into a social hub, where relationships are formed and maintained, rather than a space where deadlines have to be met. Better relationships with co-workers leads to happier employees who are more invested in the company culture and so less likely to leave.

Listening to the data

There are the obvious benefits associated with flexible working initiatives for employees but installing agile working technologies also enables businesses to capture informative data.

You see, in our online world, every single action generates data. Every website visited, every message sent, every document created has a record somewhere. For businesses, this data can be used to measure employee activity and ensure that any facilities and services are meeting the standards of today’s workforce.

After all, at the heart of this new digital workplace is user experience. By monitoring the data that they are able to collect via agile technologies, businesses can essentially listen to their employees needs and ensure that they’re supporting them.

And, if you can work out which environments produce the best results in your workforce then you can look to emulate this elsewhere. For example, if there is a room in the building where people prefer to meet or are able to work more productively, data will reveal this. This intel can then be used to influence and optimise the whole office space so that your business can make the most out of its environment. So agile technologies are not only changing the ‘workplace’ as a concept, they can also be used to change it physically.

The re-definition of ‘the workplace’ has opened up a whole host of opportunities for businesses and for employees alike. Empowering your workforce and granting your people an element of choice by enabling them to work how they would like to is important for both attracting and retaining talent. As is also updating physical spaces to improve employee satisfaction and – as a direct result – productivity. After all, your workforce is your most valuable asset and if you invest in them then your entire business will reap the rewards.

Category: Analytics

The reality behind the AI myth that enterprises need to know

Dean Mitchell
October 25, 2018

Richard Simmons, our Head of European AI & IoT Practice presented to a packed house and hosted a round table; here’s a quick recap of our day.

The hype of AI

Artificial Intelligence has become the latest focal point in the conversation around data insights. Yet, contrary to the volume of noise surrounding it, according to industry studies only 4% of organisations have actually deployed AI*, with most of these businesses still in the early phases of AI adoption and facing unexpected challenges. Richard took to the stage to bust some myths and to provide the facts about AI that have been overlooked in the hype.

“AI is not the answer to everything. It needs more data, it requires more resources, you need the right foundations in place and your infrastructure has to be ready, otherwise there is a huge amount of inefficiency” he said. “You cannot underestimate the time it will take to develop and build. It can take weeks, even months, to get an AI strategy up and running and a massive 80% of an AI project’s time is spent in the data preparation phase.”

Richard also highlighted the extremely long training times required. This is partly due to the different sets of skills needed to fine-tune and deploy it – the skill set of the person managing an AI project will be vastly different to the skill set of the person building it.

“After you have worked on a business strategy, then spent a long time preparing the data, you have to experience all that pain again. Because the more data you give an AI project, the more accurately it performs. If you want to really drive value from the data you have, the project is never ending. AI is not a quick fix.”

Opening the discussion

Following Richard’s presentation, our over-subscribed (it’s almost like it’s a hot topic!) IT leaders round table began, where we discussed the key factors and approaches to be considered to deliver a scalable AI strategy.

The discussion started with the question ‘who on this table has deployed an AI project in their company?’. Out of 29 people, only five IT leaders said yes. Those who responded with yes reinforced that their projects were in the early phases and were starting small before they scaled up.

“It can take a lot of time with very little return at the start of an AI strategy. So, it can be hard to encourage the rest of the business to support the project when they can’t see the rewards. This is why starting modest and breaking it down into smaller projects can help. You don’t want to bite off more than you can chew” agreed Richard.

Sharing is caring

We are currently seeing a great push for data sharing across businesses, a concern that was raised during the discussion. As Richard said, AI operates most efficiently when it has been fed a lot of data therefore it would make sense for businesses to share already processed and interpreted data with others in a similar sector. So why aren’t businesses doing this?

“There isn’t always a desire to share what you’ve worked so hard on. If you do share your data, there is a huge risk that the person you’ve shared it with will implement it and use the data better. If you share your work, get ready for the competition to begin.”

Who owns the data?

One topic that dominated the round table was the ownership of data within a business. Many of those who sat at the table expressed the desire to be a data-run business, but getting to that stage wasn’t as easy as they hoped. According to Richard, if a company wants to be data led and to use AI efficiently, there needs to be a “new culture built internally. Every part of the business needs to work with data in mind, not just the IT department and those involved with the AI process.”

This is where data ownership is a necessity. It was mentioned that whilst employees may be really interested in deploying AI, no one was excited about the management, governance and upkeep of the data needed for the AI to work efficiently! To combat this, one person said that their company recently wrote a data strategy – from compliance, to governance, to how the company values and uses data – in order for every employee to be on the same page.

As a final note, Richard said “getting every part of the business on board is vital, but it will take work. This culture change to a data driven enterprise will not happen overnight, it should be on going just like the AI project itself.”

Is your business ready for AI? Is your infrastructure? Find out how Logicalis UK and IBM can help you overcome AI infrastructure limitations and access an IDC expert infrastructure readiness report – Finance or Retail and Manufacturing.

Logicalis UK would like to thank Computing for hosting us at the IT Leaders’ Summit and to those who joined us at our panel session and the round table.

*Gartner

Category: Information Insights / IOT

A successful evening at the Women in Channel awards

Jen Molyneux
October 22, 2018

It was a night of celebration for Logicalis UK at the inaugural CRN Women in Channel Awards, as two of our five shortlisted employees walked away with the top prize in their category.

These awards recognise the achievements of the entrepreneurs, leaders and exceptional employees who act as role models for young females considering a career in this fast-paced, dynamic industry. We were therefore delighted – but not surprised – to see Wendy Paine recognised as Technical Employee of the Year and Natalie Matthews crowned Role Model of the Year.

Natalie, who is Logicalis UK Chief Operating Officer said “it was an honour to be shortlisted, and to be joined by four of my colleagues is testament to the progress that Logicalis is making to address gender equality.” Natalie’s win was not only an acknowledgement of her role as COO but also to her commitment in encouraging other women to succeed in IT through mentoring.

Bob Swallow, MD at Logicalis UK is delighted that Natalie has been recognised “Natalie has been an incredible mentor and role model to so many people in Logicalis. Since taking over as COO in 2016 no-one has delivered more in terms of the development of our people and in more than 40 years in the industry I haven’t met anyone who made a greater positive impact on people.”

Following CRN’s announcement that Wendy had been awarded the Technical Employee of the Year, she tweeted “I’m humbled and proud to be chosen from a group of fantastic women.”

Wendy Paine, Technical Employee of the Year, and UK Sales Director Gary Lomas at the CRN Women in Channel Awards

Wendy’s outstanding work as team leader for Technical Integration Services at Logicalis UK is one of the many reasons she was awarded Technical Employee of the Year. In response to Wendy’s win, Mark Best, Services Director said “Wendy takes on challenges with such confidence. She takes ownership, is diligent, conscientious and caring for her team and is an example of the power of women in business.”

Joining the nominees at the event was Gary Lomas, UK Sales Director at Logicalis UK who said, “it was refreshing to attend an IT event that was 80% female as opposed to the usual 80% male.”

“To have five employees nominated and two winners is brilliant, especially considering the size of our business compared to some of the other winners. Logicalis is privileged to have these individuals working for us” Gary added.

Everyone here at Logicalis would like to congratulate all our shortlisted employees: Jane Emerson, Fanni Vig, Natasha Darbyshire, Wendy Paine and Natalie Matthews.

Category: Women in IT

The ever-evolving workplace and its impact on retaining talent

Richard Simmons
November 5, 2018

Nowadays, when it comes to digital, employee expectations are at an all time high and, with the industry-wide skills gap proving a difficult problem to solve, often the greatest challenge faced by organisations is not only sourcing the right people, but keeping them. If your employees are motivated and committed, then individual targets are more likely to be met and business objectives are more likely to be achieved. If not, then your workforce, and available skill pool, is likely to dwindle...

Category: Analytics

The reality behind the AI myth that enterprises need to know

Dean Mitchell
October 25, 2018

Last week, we sponsored Computing’s annual IT Leaders’ Summit which took place at Carlton House, London. The summit provided an opportunity for senior IT executives across all industries to discuss how they can drive digital transformation in areas such as the cloud and Artificial Intelligence. Richard Simmons, our Head of European AI & IoT Practice presented to a packed house and hosted a round table; here’s a quick recap of our day. The hype of AI Artificial Intelligence has become th...

Category: Information Insights / IOT

CRN’s Women in Channel Awards – Meet Natalie

Jen Molyneux
October 11, 2018

“It is a wonderful moment when you realise the only thing holding you back in your career, is yourself.” Here we meet Natalie Matthews, COO of Logicalis UK, who is shortlisted for the Role Model of the Year Award. Introducing Natalie Natalie’s career began at IBM as a trainee Personal Assistant on their Youth Training Scheme. Following this, Natalie joined a small business and worked her way up to become part of their Senior Management Team, which was later acquired by Logicalis. During the ac...

Category: Women in IT

Categories

Digitally Speaking

Latest Tweets