Friday, 25 January 2019

Three mistakes businesses make when outsourcing IT support

Three mistakes businesses make when outsourcing IT support is available on Nimbus Computer Support

Hiring IT support can be a huge benefit for your business. Not only does it allow you to make vital business savings, but it can allow you to get the best from your computer network, allowing you to be more productive.

However, when seeking out IT support from outsourcing providers, a number of mistakes can be made. Here are the most common mistakes businesses make, and how you can avoid them for a better relationship and more fulfilling service.

1. Going for the cheapest option

In today’s gig economy there are numerous options available when it comes to finding IT support. However, not all are equal. The cheapest options aren’t good for your business. Sometimes they’re foreign based and have different cultures, expectations and resources than you need.

In addition, the cheapest options often mean they aren’t investing in their own infrastructure. They might also not be so tight on EU or UK legislation when it comes to security and data privacy. You should always be looking for a competitive price, but one that offers you a quality service as well.

2. Thinking IT support is a short-term service

There are numerous businesses who contact IT support providers looking for a quick, short contract, break-fix or PAYG. However, this can often leave your business losing out technically and opening up your company to risk.

Long-term contracts offer stability for your IT network that enable it to continuously improve and not feel like a hotchpotch of systems melded together. In addition, one long-term vendor can offer you better security assurances than lots of different vendors who might not know that other vendors haven’t implemented important security updates.

3. Not having a manager

While you’re outsourcing your IT needs, it doesn’t mean you can’t have an IT manager. You still need someone in your business who manages the computer networks, making decisions and giving direction to your IT support team. This person can also give feedback to the other leaders in the business.

Having an IT manager also allows for better, more consistent communications as everything will go through them. It also helps the IT support vendor as they have a single person to contact, with whom they can build a long-term, successful working relationship that will only benefit your computer network.

Talk your I.T. needs over with Nimbus CS

Wednesday, 9 January 2019

Common misconceptions about cybercrime

This blog post Common misconceptions about cybercrime is republished from Nimbus Cloud Support

Cybercrime is a big part of business. However, business leaders of companies of all sizes make many assumptions about cybercrime. Here are some of the biggest misconceptions about cybercrime. If you know the true extent of the threat, you’ll be better at defending your business.

1. Knowing a threat exists doesn’t protect you

Employees know that emails from unknown sources aren’t trustworthy. In addition, they know that they shouldn’t investigate the links in the emails to see where they lead, but that doesn’t stop 78% of employees from clicking on them.

Just because you know a threat exists, it doesn’t mean your business is protected. You need to actively pursue ways to enforce your cyber security that will protect your computer networks and servers. For instance, your business should install firewalls, anti-virus software and continuously educate staff to follow proper network security.

2. Protecting yourself is all you need to do

While protecting your computer networks is a good start, that doesn’t mean your computer networks are defended. Third parties that you work with, who might handle your data, can be a weak link, and this is where cyber criminals sometimes gain access. This was the case with Universal Music Group when a contractor left an Apache Airflow server open to attack.

Ensure when you speak to third parties, that they have the right protection in place. This should include email encryption, firewalls and other measures to protect sensitive information you both have access to.

3. Cybercriminals are really clever people

The truth is that the tools to commit cybercrime and infect your computer networks are readily available online. Those wanting to attack your business can buy the tools for very little, if anything. Plus, many of the most successful cybersecurity threats to your business are really simple, they just require a file attaching or link inserting into an email. 

You should also remember that cybercriminals can be anyone. While there’s a lot of news about cybercriminals in Africa and Asia, anyone, even those in your own business, could be a cybercriminal. A study by IBM found 60% of cyber attacks are inside jobs. So, you’ve got to be vigilant. 

Restrict access to data, servers and IT networks to anyone who doesn’t need access. Limiting access can be one of your strongest defences.

4. You’ll never be a target

All companies, of all sizes, have been attacked in recent years. Sony had a Denial of Service attack that prevented players to access online game areas, Facebook had a breach where information for 50 million users was stolen and NASA had employee information taken by cybercriminals. 

Your business has a lot of value in it and criminals can, and will, target you at any time.

Always assume that you’re a target and adjust your cyber security initiatives with this philosophy in mind. You’ll be better prepared for what may come, than if you believe there’s no danger.

Whatever your business, cyber security is a major part of your operations. If you’re not sure about how you should protect your business’ computer network, you should outsource your IT needs. Professionals in IT support companies are experts in offering computer security services and can ensure you’re less at risk from cybercriminals.

Wednesday, 12 December 2018

Common misconceptions about outsourcing IT

This blog post Common misconceptions about outsourcing IT is available on Nimbus Cloud Services

IT outsourcing has become a multi-billion pound industry that connects businesses of all sizes with IT experts all around the UK and beyond. IT services help cut costs, bring genuine innovation into businesses and free up time to focus on company operations. IT outsourcing is far more than a passing trend, but many business owners still shy away from working with an outside team. Here are some common misconceptions about outsourcing business IT support.

1. You get lower-quality work

Many business decision-makers assume that developers who aren't employed by their company will not deliver their highest standards of work. This is not true though - the vast majority of companies who outsource business IT support are very satisfied with the work. Outsourcing lowers costs and also brings in real talent that sees problems with a fresh perspective to deliver innovative solutions.

Team Work

2. Outsourced teams will not be able to understand business requirements

Anyone who has worked in teams understands the importance of quality communication. Naturally, you would expect any outside agency you work with to understand the ins and outs of your industry. Fortunately, the IT requirements across different industries don't necessarily require expert knowledge of the industry itself - only of the IT infrastructure requirements. Any good IT company will communicate and collaborate with you to ensure every stage of the process falls in line with business requirements.

3. Outsourcing is only useful for tech companies

This is a very common misconception, but in reality, significant percentages of companies that use outsourcing are in industries like consumer products and healthcare. The tech and media industries actually only make up a relatively small percentage. And with outsourcing becoming more mainstream, companies are finding new ways to use outsourcing, so there is no reason why your company wouldn't benefit from it.

4. Remote teams are difficult to manage

Organising video conferences or meetings with an outside agency might seem like a headache. But outsourcing companies are used to working in this way, and will usually respond quickly to calls/messages as their whole business model is based around remote working. Any good IT outsourcing company will make communication as streamlined and effortless as possible.

IT outsourcing is a common practice all over the UK, but many companies still haven't taken the plunge and experienced it. With outsourcing becoming more mainstream, services have diversified and improved, so businesses of all sizes can benefit from outsourcing IT. Whether you're looking to cut costs or drive innovation, software outsourcing is a simple tool to make operations more efficient and drive growth.

Nimbus CS can help you with outsourcing your IT.

Wednesday, 5 December 2018

Understanding encryption

Understanding encryption is republished from Nimbus Cloud Support

Encryption, any encryption, is better than no encryption, but it’s not a magic bullet. Improper implementation, or using out of date technologies, can easily mean that your encryption does little to protect your data.

What is encryption anyway?

The internet is an open network; anyone can access it, and that’s what makes it useful. Unfortunately, it also means it may be possible that someone can see the data that’s travelling through the cables and servers that make the internet work. A little like Royal Mail can read what you write on a postcard, internet service providers and others can read what you send over the internet.

Encryption works like an envelope; a really strong envelope with a really strong padlock keeping it closed. Properly used encryption means that only the people with the key can open the envelope and read the data inside. Not only does it protect against people reading your data while it’s travelling over the internet, it stops them changing what it says as well.

The technical bit

Most encryption in use today is based on a concept called “Asymmetric Key Cryptography,” discovered by James Ellis in the top-secret world of British spy agency GCHQ in the 1970s. The system works by using one-way mathematical functions: sums which are quick and easy to perform in one direction, but practically impossible to solve the other way around.

Under this system, encrypted data needs two keys:

  • public key, which is shared widely (hence the name) and is used to encrypt the data, making it unreadable
  • a private key, which must be kept secure and is the only way to decrypt the data (make it readable again)

Different mathematical algorithms can be used to encrypt data. AES is one of the most widely used and more secure options, but others are available.

Bad encryption

Encryption rule number one: never share your private key. This is where many secure services go wrong. Cloud platforms especially have a habit of selling their services as encrypting your data, when in fact they control the private key. So yes, your data may be encrypted… but if you don’t control the private key, how do you know who can decrypt your data?

If you don’t control your private key, you can't be sure your data is safe.

True encryption, from end to end

End to end encryption (e2e) means that your data is encrypted before it leaves your device (laptop, phone, PC, etc) using a key you control and stays secured until it arrives back on your device where it can be decrypted, once more using a key which you control. The private key never leaves your device, is never out of your control, and nobody other than you can decrypt your data. A man-in-the-middle attack could be used where an attacker gets in the middle of the communication and pretends to be the other side. A common man-in-the-middle attack is to pretend to be a legit wifi access point and relay all information between the access point and your device, thus allowing the attacker to intercept the data. This kind of attack may be used in coffee shops for example.

Using end to end encryption unencrypted data never leaves your device, which makes is much harder for anyone to eavesdrop on you or steal your data while it’s passing through the internet.

When choosing cloud services, communicating online, or setting up your business’ computer network, always make sure that your data is fully protected with end-to-end encryption.

Contact Nimbus CS to discuss your business needs