Docstoc

Managing Information

Document Sample
Managing Information Powered By Docstoc
					Managing Information




         Prof. Rushen Chahal


                               Page 1
               Agenda

•   Chief Information Officer
•   IS Department and End Users
•   Control & Security
•   Contingency Management




                                  Page 2
     Chief Information Officer

• Align technology with business strategy
• Implement state-of-art solutions
• Provide and improve information access




                                        Page 3
              Agenda

•   Chief Information Officer
•   IS Department and End Users
•   Control & Security
•   Contingency Management




                                  Page 4
 IS Department and End Users

• Let them sink or swim (do nothing or
  educating)
• Use the stick (policies and procedures)
  – Steering committee
• Use carrot ( incentives)
• Offer support
  – Information center
  – Help desk


                                            Page 5
               Agenda

•   Chief Information Officer
•   IS Department and End Users
•   Control & Security
•   Contingency Management




                                  Page 6
          Control and Security

•   Logical control
•   Physical control
•   Data control
•   Communication control
•   Administration control
•   Application control



                                 Page 7
             Physical Control

•   Location (traffic)
•   Security (lock)
•   Environmental (air)
•   Fire
•   Power




                                Page 8
              Logical Control

•   Photo
•   Fingerprints
•   Voice
•   Eye
•   Signature
•   Password



                                Page 9
             Data Control

• Minimal privilege
• Minimal exposure




                            Page 10
        Communication Control

•   Firewall
•   Decryption
•   Encryption
•   Private & public key




                                Page 11
        Administrative Control

•   Policy
•   Procedure
•   Hardware
•   Software
•   Employee
•   Data



                                 Page 12
         Application Control

• Input control
• Processing control
• Output control




                               Page 13
               Agenda

•   Chief Information Officer
•   IS Department and End Users
•   Control & Security
•   Contingency Management




                                  Page 14
      Contingency Mgmt
• NOT disaster recovery
  – Reactive, not proactive
• Worst case scenario
  – All our eggs in one basket
  – Natural disaster
  – Human error / sabotage




                                 Page 15
      Contingency Mgmt.
           Methods
• Disaster Recovery firm
  – Outsource strategic function?
• Off-line storage
• Data redundancy
  – Replicated databases
  – Fragmented databases


                                    Page 16
    Contingency Methods
• Back-up power generators
• “What if” scenarios
  – Military war games
• Scaled-down manual system
• Back-up / recovery procedures




                                  Page 17
   Contingency Methods

• Parallel systems
• Processing backup facility
  – Cold, warm, hot site




                               Page 18
        Cardinal Health
• Redundant systems for critical order
  processing
• Redundant WAN trunks
• System data backed up daily
  – Backup media kept off-site
• Backup replica site
  – Different part of country
  – Switched on within 30 minutes

                                         Page 19
       Points to Remember

•   Chief Information Officer
•   IS Department and End Users
•   Control & Security
•   Contingency Management




                                  Page 20
       Discussion Questions

• What types of control do you have
  implemented in your organization?
• Tell us a Contingency Management war
  story
  – What happened?
  – How did the firm recover?
  – How could the situation have been
    • Averted?
    • Mitigated?


                                         Page 21

				
DOCUMENT INFO
Shared By:
Categories:
Stats:
views:4
posted:2/14/2012
language:English
pages:21
Description: Prof. Rushen's notes for MBA and BBA students