by Felicien | Jun 18, 2019 | Education
In its look at the top 10 strategic technology trends for 2019, Gartner notes that businesses need to address an astounding number of technologies that will change the way companies run, their business models and their internal processes.
From the rise of artificial intelligence and autonomous objects to augmented analytics programs and immersive technologies, companies must consider what technologies they, their customers and their competitors expect and adopt.
Today, that means that c-suite leaders need to reconsider the roles of and the relationships between the CEO and CIO.
What Are the Traditional Relationships Between CEOs and CIOs?
Consider the paths to leadership for both roles. CEOs today, especially in non-tech companies, typically rise due to their acumen on the business side of a company. They demonstrate leadership and mastery of product or service areas, delivering consistently impactful results (particularly in revenue). The CEO has a public-facing role and commands authority, shaping the marketing messages, interpreting financial results and assessing sales past and future.
The CIO has likely grown up on the technology side. At many businesses, the CIO’s role traditionally has been to “keep the lights on,” focusing on keeping networks operational, overseeing system installations, upgrades and maintenance, and keeping users, endpoints, websites and networks protected.
In many companies, the CIO has not even been a direct report to the CEO and their relationship has been relatively distant.
The different backgrounds and, in some cases, language used in the two roles has made it difficult for the two leaders to have productive relationships.
Today, that paradigm no longer makes sense.
What Is Different Today Regarding the CEO/CIO Relationship?
Digital transformation is at the heart of growth and progress. There are few if any industries that not being shaped, influenced and changed by the increasing reliance on digital technologies. That makes the role the CIO plays very different than it was just a few years ago.
The prevalence of technology as a key driver of business strategy, structure and outcomes means that IT can no longer be considered a cost center. It needs to be at the table when key decisions are made about a company’s future direction, investments, hiring, and prioritization.
“As CEOs increasingly turn their attention to digital innovation as a top priority, they are counting on CIOs to drive it,” noted a recent article. “The IT leaders they used to frown at in budget meetings are now considered strategic business partners.”
This shift can be unsettling, especially among other executives who have not stayed abreast of their technical skills and knowledge.
What Needs to Change in the CEO/CIO Relationship?
Communication is one of the most essential skills to develop in a new relationship. The CEO needs to understand the technologies, the scope, the potential impact and the risk of not moving forward with opportunities. CIOs also need to be fully conversant with the business’ priorities, goals, objectives and present state of technology adoption and use.
One important aspect of the changing relationship is inviting the CIO to the table. Recent versions of the annual Harvey Nash/KPMG survey show the evolution of role and influence has begun but is still not where it needs to be.
The 2017 survey notes that “the CIO has progressively become more influential.” The number of CIOs at the table has grown, from 38 percent reporting being a part of an executive committee in 2005 to 62 percent in 2017. Three-quarters reported attending board meetings in the past year to discuss IT strategy, digital transformation, technology investments and cybersecurity.
The 2018 edition notes that CIOs among companies considered digital leaders are likely to have more of a strategic role. The most effective are able to frame for the CEO the advantages of digital transformation around revenue growth.
“They work with the executive team to influence and guide the enterprise on the effective use of digital technologies,” the article notes. “They help create a vision on how to use digital to transform the enterprise and grow.”
The changes represent a shift in how the CEO and CIO relationships are changing. Access to board members, involvement in critical decisions and influence in the c-suite are all reflections of how CEOs perceive and value the CIO role.
However, there is still room for improvement. Even the CIOs among the top 25 percent of companies demonstrating digital leadership only rate 59 percent on a scale of strategic influence.
There are shared responsibilities in order to change to a high-impact CEO/CIO relationship. The CEO needs to lead by example, signaling the importance of digital transformation and the CIO’s lead role in achieving it. CIOs need to bring ideas to the table that relate to the business outcomes and opportunities available, not just “shiny new gadgets.”
What If My Business Is Too Small to Have a CIO?
Digital transformation is not just for enterprises. Small- and medium-sized businesses also need to leverage the technical opportunities to differentiate and grow. For many SMBs, that means turning to a “virtual CIO” relationship with a managed IT service provider that can deliver IT consulting, assessments, strategy, solutions and budgeting. Working closely with a CEO and other business leaders, the virtual CIO can provide the insights and vision necessary to leverage the changing digital landscape.
A powerful relationship between the CEO and the CIO, whether internal or through a managed services provider, is essential for transformation to be successful.
by Felicien | Jun 18, 2019 | Education
As a CEO, you have tremendous influence over your company’s brand, messaging, values and strategies. You also have a personal brand that increasingly today needs its own shaping, nurturing and feeding.
One powerful way to improve your personal brand and your company’s messaging is to have your own blog. Your voice, insights, opinions and news needs a vehicle that can project your thoughts across multiple channels.
Knowing why a blog makes sense and best practices is an ideal way to get started.
Why Should I Create a CEO Blog?
First, consider the multiple audiences to which your voice matters. There are stakeholders and in some cases shareholders that value your communication.
Internal blogs allow you to communicate to employees in a very different way. The benefits include:
Providing an up close and personal insider perspective on work, values and messages you want to convey
Promoting your internal persona
Promoting and reinforcing key messages
Building and celebrating a positive company culture
Fostering two-way communication between the c-suite and other employees
What Is the Difference Between Internal and External CEO Blogs?
External blogging has its own advantages. The tone and content of internal and external blogging likely will be different but the tone, themes and messaging should remain consistent. The advantages of external blogs are:
Thought leadership. Insights on industry trends, needs, challenges and transformation help establish you as a leader in your field.
Valued added. Customers and potential customers are more likely to choose your business if you can provide them with valuable, needed information that helps them do their business better.
Authenticity. Build authenticity with external stakeholders with consistent valued content, especially in challenging times or crises. That’s when your voice should be loud, not silent.
A face with a brand. Too often companies, especially as they grow larger, become faceless. A blog helps put a human face on your business and brand. Your blog helps keep your business front of mind, especially when they see your information popping up regularly in email inboxes and on social media.
Brand loyalty. Customers are going to come back when the products and services they receive are of high value. A blog can help in reinforcing your commitments to quality, customer service and continuous improvement.
Spreading your message. When your content is compelling, readers will like, share and forward it to others. This viral marketing, at no additional cost to you, spreads your brand and your thought leadership.
Beating the competition. It’s likely some of your competitors are blogging. Get ahead of them with better, regular and more valuable information.
In a 2016 New York Times article, Microsoft founder Bill Gates, who focuses much of his energy now on his philanthropic foundation, spoke about why he blogs. “It … helps to have a platform for talking about the work I’m doing, both through the foundation and separate from it, because I find people are curious about it,” Gates said.
What Makes for a Successful CEO Blog?
The best CEO blogs are authentic. They don’t just regurgitate press releases or quarterly results. They inject humanity and persona into the work that your company does and gives you a visible, recognizable brand. Here are some other elements of a successful CEO blog:
Personalization to a point. This is not the place to talk about your son’s high school graduation. However, personalization is important. Instead, offer glimpses behind the curtain about why and how decisions were made or what you see as key issues or opportunities in the industry.
Design matters. You want your blog to be easily readable, especially on mobile devices.
Onmichannel. Content is valuable … and you and your marketing team should strategize about how to get the most out of what you provide. Longer blog posts can be followed up by other content — written by you or others — that points back to your hub information. Posts should be teased or delivered via multiple social media platforms. Depending on your business, that may include LinkedIn, YouTube, Facebook, Instagram or Twitter.
No jargon. Inside baseball is cool, but not when no one can understand what you’re writing. If you’re going to use jargon, be sure that it commonly used within your industry. Otherwise, you could alienate existing and potential customers.
Focus on customers. All of your blog content should have a singular focus: What do our customers need? Whether it’s product information, industry news or company information, be sure that it is written to help customers solve problems. Ideally, those problems are those your company is uniquely qualified to address.
Use humor … if it’s funny. Humor is a lot harder to write than you would think. Written words cannot easily express tone, pace and intent. Humor adds a personal element to your writing, but it has to be done with care and strategically.
Where Can I Find Good Examples of CEO Blogs?
Looking for inspiration for your own blog? There are plenty of sources of great CEO blogs and leadership blogs from which to take inspiration. Here are a few examples to review:
CEO blogging can have a deep impact on internal and external messaging. With a clear understanding of goals and tips, your blog will be ready to be published.
by Felicien | Jun 17, 2019 | Education
Hackers Now Using HTTPS To Trick Victims Via Phishing Scams
Everything you’ve heard about the safety of https sites is now in question. According to a recent FBI public service announcement, hackers are incorporating website certificates (third-party verification that a site is secure) when sending potential victims phishing emails that imitate trustworthy companies or email contacts.
These phishing schemes are used to acquire sensitive logins or other information by luring people to a malicious website that looks secure.
Can You Still Count On HTTPS?
The “s” in the https along with a lock icon is supposed to give us an indication that a website is secure. And your employees may have heard this in their Security Awareness Training. All training will now need to be updated to include this latest criminal tactic.
What Should You Do?
Be Suspicious of Email Names and Content
The FBI recommends that users not only be wary of the name on an email but be suspicious of https links in emails. They could be fake and lead you to a virus-laden website. Users should always question email content to ensure authenticity.
Look for misspellings or the wrong domain, such as an address that ends in “com” when it should be “org.” And, unfortunately, you can no longer simply trust that a website with “https” and a lock icon is secure.
If you receive a suspicious email that contains a link from a known contact, call the sender or reply to the email to ensure that the content is legitimate.
If you don’t know the sender of the email, the FBI warns that you shouldn’t respond to it.
Don’t click links in any emails from unknown senders.
If You Run A Business Ask Your IT Service Company About New-School Security Awareness Training For Your Employees
This will give your staff the latest information about cyber threats and exploits. They’ll learn what they need to know to avoid being victimized by phishing and other scams.
Why Use New-School Security Awareness Training?
Your employees are the weakest link when it comes to cybersecurity. You need current and frequent cybersecurity training, along with random Phishing Security Tests that provide a number of remedial options if an employee falls for a simulated phishing attack.
New-School Security Awareness Training provides both pre-and post-training phishing security tests that show who is or isn’t completing prescribed training. And you’ll know the percentage of employees who are phish-prone.
New-School Security Awareness Training…
Sends Phishing Security Tests to your employees to take on a regular basis.
Trains your users with the world’s largest library of security awareness training content, including interactive modules, videos, games, posters and newsletters, and automated training campaigns with scheduled reminder emails.
Phishes your users with best-in-class, fully automated simulated phishing attacks, and thousands of templates with unlimited usage, and community phishing templates.
Offers Training Access Levels: I, II, and III with an “always-fresh” content library. You’ll get web-based, on-demand, engaging training that addresses the needs of your organization whether you have 50, 500 or 5,000 users.
Provides automated follow-up emails to get them to complete their training. If they fail, they’re automatically enrolled in follow-up training.
Uses Advanced Reporting to monitor your users’ training progress, and provide your phish-prone percentage so you can see it reduce as your employees learn what they need to know. It shows stats and graphs for both training and phishing, ready for your management to review.
Your employees will get new learning experiences that are engaging, fun and effective. It includes “gamification” training, so they can compete against their peers while learning how to keep your organization safe from cyber attacks.
Add New-School Security Awareness Training To Your Current Employee Training
The use of https is just the latest trick that hackers are using to fool victims into falling for malicious emails. Hackers have many more “up their sleeves.” This is why regular, up-to-date New School Security Awareness Training is so important for any organization.
by Felicien | Jun 16, 2019 | Education
Building a worldwide brand takes an army — that’s an army of independent developers if you’re Apple. The latest WWDC (Worldwide Developers Conference) always includes a few unexpected tidbits that make the tech world salivate, and this year is no different. For 2019, Apple pulled out all the stops by not only releasing a new version of its ubiquitous iOS but also bringing a fascinating new iPadOS that promises to change the way you work in the future. From software to hardware to Apple TV Plus shows, here’s a quick recap of the cool new releases at this massive global gathering of Apple worshippers.
Enhancing the iPad
Since November 2, 2012, the iPad has quickly become one of the most universal crossover tools for computing on the market. Originally introduced as a way to consume content, iPads have now reached a new stage of their evolution with the introduction of the iPadOS that brings the tablet one step closer to being the primary computing device for business and creative workers. While the tablet still doesn’t have quite enough computing power to run intensive applications, the iPad Pro introduced in 2018 and now this new OS is allowing the platform to push the boundaries of what you would expect as far as functionality in a tablet. Screens continue to grow in size while the interface becomes more nuanced, with the ability to split the screen, pin widgets to the home screen and multi-task more efficiently. Add in the USB thumb drive support and the ability for software developers to tinker with the programming interface, and you’re inching closer to a viable alternative to a traditional laptop computer.
Apple Introduces a Secure SSO Option
Security is top of mind for individuals and organisations alike, making multi-factor authentication a requirement for business systems. While Apple has been lacking this type of advanced functionality, the new single-sign-on option allows you to authenticate with Apple without releasing your personal information to third-party apps. For consumers who are already utilising Google or Facebook apps, it may be worth the switch to Apple SSO as the software also generates a unique, random email address that will save your inbox from spam — and your devices from malware.
The Apple Watch Becomes More User-Friendly
Love your Apple Watch but really dislike the App Store experience? Apple listened and created a version of the App Store created specifically for the confines of the Apple Watch. The store is chock-full of applications that were built specifically for WatchOS and enhances the Watch to the point that you no longer need the tether to your iPhone for basic functionality. Plus, WatchOS is enhanced with new health-tracking abilities, a calculator, streaming audio and voice memos — all of which are targeted to making this device appeal to a wider swath of the population.
New Toys for Developers
Many of Apple’s latest releases are targeted towards the consumer market, but the software and hardware giant hasn’t forgotten the developers that helped make the brand what it is today. The announcement of ARKit 3 includes state-of-the-art augmented reality features that allow developers to layer AR around users in new and exciting ways in the future. Built to help make AR more interactive for users, it also makes life a bit easier for developers by “allowing green screen-style effects in almost any environment”, according to Apple executives who introduced the new tech during a keynote. Something that’s been missing in previous releases is the ability to simultaneously utilise the front and back cameras to allow users to interact in a more holistic way with virtual elements in a real-world environment.
One thing is sure: Apple’s annual WWDC never disappoints! This highly-anticipated event provides consumers with a glimpse into the future while firing the enthusiasm and creativity of thousands of developers from around the world. Surprisingly, the coolest new introduction at WWDC wasn’t even technical — it was design-focused. It might show you the level of control that Apple has over its OS to learn that there were extensive cheers with the introduction of the system-wide Dark Mode for iPad, as the Apple team noted: “iOS now lives in the dark“.
by Felicien | Jun 15, 2019 | Education
The City of Burlington is out $503,000 because a staff member fell for a phishing scam. After receiving an email request to change banking information, the staff member was tricked into making a transaction to a false bank account.
The email requested that the employee change banking information for someone the City was already doing business with. The staffer transferred $503,000 to the fake bank account on May 16, 2019. The City didn’t learn about this until a week later. At that point, they notified the police.
After realizing this on May 23, the City says it immediately notified their bank and Halton Regional Police. A full investigation has been launched into how this happened and their current processes.
Since then, the City has put “additional internal controls” in effect to prevent this from happening again. They reported in their press release:
“These types of targeted attacks are all too common and can take many forms…Governments are just as prone to scams as are individuals,” they said.
Could Your Government Agency Or Business Be A Target?
Since January 2019, nearly 100 phishing campaigns have been tailored specifically for Canadian targets, according to researchers.
Criminals are spoofing well-known Canadian companies and organizations. They are using French-language phishing lures to increase their chances of tricking Canadian employees.
The most common forms of malware used in these Canadian phishing campaigns are banking Trojans called Emotet and Ursnif. They steal information and deliver other types of malware such as IcedID, Trickbot, Dridex, and GandCrab ransomware, and a keylogger called Formbook.
Canadians need to be on the lookout for more than just generic phishing spam.
What Should You Do?
Get New School Security Awareness Training
You must train your employees to be constantly vigilant to identify attackers’ attempts to deceive them. New-school security awareness training will provide the knowledge they need to defend against these attacks.
What’s Wrong With Every-Day Security Awareness Training?
Old-School Security Awareness Training doesn’t hack it anymore (no pun intended). Today, your employees are frequently exposed to sophisticated and ever-changing phishing and ransomware attack methods.
Old-School Security Awareness Training is static. It’s a one-time event without follow-up. You need cybersecurity training that’s backed up with phishing tests performed on a regular basis to create a real change in behaviour.
What Is New-School Security Awareness Training?
More than ever, your users are the weak link in your IT security. You need highly effective and frequent cybersecurity training, along with random Phishing Security Tests that provide several remedial options in case an employee falls for a simulated phishing attack.
With world-class, user-friendly New-School Security Awareness Training, you’ll have training with self-service enrollment, completion logs, and both pre-and post-training phishing security tests that show you who is or isn’t completing prescribed training. You’ll also know the percentage of your employees who are phish-prone.
And with the end-user training interface, your users get a fresh new learner experience that makes learning fun and engaging. It has optional customization features to enable “gamification” of training, so your users can compete against their peers on leaderboards and earn badges while learning how to keep your organization safe from cyber attacks.
With New-School Security Awareness Training You’ll…
Have Baseline Testing to assess the phish-prone percentage of your users through a free simulated phishing attack.
Train your users with the world’s largest library of security awareness training content; including interactive modules, videos, games, posters and newsletters, and automated training campaigns with scheduled reminder emails.
Phish your users with best-in-class, fully automated simulated phishing attacks, and thousands of templates with unlimited usage, and community phishing templates.
See the results with enterprise-strength reporting that show stats and graphs for both training and phishing, all ready for your management.
New-School Training…
Sends Phishing Security Tests to your users and you get your phish-prone percentage.
Rolls out Training Campaigns for all users with automated follow-up emails to “nudge” incomplete users, as well as point-of-failure training auto-enrollment.
Uses Advanced Reporting to monitor your users’ training progress, and to watch your phish-prone percentage drop.
Provides a New Exploit Functionality that allows an internal, fully automated human penetration testing.
Includes a New USB Drive Test that allows you to test your users’ reactions to unknown USBs they find.
Plus, you can access Training Access Levels: I, II, and III giving you access to an “always-fresh” content library based on your subscription level. You’ll get web-based, on-demand, engaging training that addresses the needs of your organization whether you have 50, 500 or 5,000 users.
Can We Use New-School Security Awareness Training Along With Our Other Training?
This is what many organizations and municipalities are doing. They are supplementing their current training content with New-School Security Awareness Training. Upload your own compliant-training and video content, and manage it alongside your other training all in one place. Now you have your very own Learning Management System.
Don’t wait until your employees get tricked into giving away your money. Educate them with New-School Security Awareness Training.
