Security Again Comes to the Fore

By |

Welcome to the autumn edition, which is published at a time of global turmoil: unprecedented levels of migration of the non-computing variety, a rising home-grown terrorist threat and war on several fronts.

With the Ashley Madison hack still fresh in our minds, we take a look at the risks posed by cyber threats and highlight organisations’ everincreasing exposure to Distributed Denial of Service (DDoS) attacks.

Continuing the security theme, we bring you an update on developments with the Cisco Intercloud Fabric and show how our two companies’ deepening partnership will remove the boundaries between private and public clouds while still maintaining security and control.

Talking about control, we announce the launch of Application Cloud Services for Oracle, an exciting new service that promises to put customers back in control of their Oracle assets and help them build an optimised, consumption-based environment. If you want to reduce the risk of non-compliance yet ensure you only pay for the licences you actually need, please get in touch.

I can’t finish without thanking those customers who gave their valuable time to participate in our annual customer survey. We are currently digesting the feedback but you can see the headline findings here. It was gratifying to see that almost nine out of ten are happy with customer communications such as AVAIL.

I hope you enjoy this issue but, as always, my team welcomes feedback on any aspect of the magazine – just send your comments to the editor at avail@sungardas.com

Keith Tilley

EVP Global Sales & Customer Service Management

Cloud Misadventures Highlight Need to Clarify Objectives Upfront

By |

Our research[1] into the aftermath of cloud adoption continues to attract press coverage as the findings strike a chord with the business community.

A well-conceived, properly executed cloud computing strategy can lead to greatly increased agility (64%), availability (67%) and a vastly improved ability to respond to customer and market demands (51%). However, all too often the outcome is unexpected costs, integration challenges and increased IT complexity – familiar headaches contributing to what we have termed a ‘cloud hangover’.

While decreasing their IT team’s day-to-day maintenance was a key driver in cloud adoption for 45% of businesses, over a third (35%) of IT decision makers said that adopting cloud services has, in fact, made their job more complex. Some 37% of IT decision makers complained that the cloud has made their job more stressful while just under a quarter (24%) added that their role is now more difficult since deploying cloud. In fact, 70% of businesses believe that cloud computing has simply added a new set of challenges and complexity to their workload. Almost two-thirds (65%) of organisations questioned said that integrating cloud with their legacy systems was one of their biggest IT challenges.

Part of the problem may result from an increase in cloud suppliers, with over half of respondents (55%) admitting to using three or more separate cloud platforms. Running so many systems is clearly taking its toll on organisations – with a quarter of respondents confessing to concerns that their organisation uses too many platforms.

No silver bullet

Despite being perceived by many commentators as an IT cure-all for complex and sprawling legacy systems, clearly many organisations have been left somewhat disappointed in their cloud deployments and are now rethinking their strategy.

Keith Tilley, EVP Global Sales & Customer Service Management, remarks, First cost and now complexity – is it any wonder that organisations have been left somewhat disappointed in their cloud deployments and are now rethinking their strategy?

In many cases, cloud computing was presented as a silver bullet for the CIO, a way to cut down on complexity and time-consuming administrative processes. The theory was that this would allow IT departments to invest their time and resources in innovation and demonstrating technology’s role as a business enabler. Instead we can see that IT departments have as much admin work as ever before, if not more. The cloud hasn’t eliminated this maintenance work, and in fact, could even be said to have added more pressures for staff when ensuring that the system remains available.

“Of course when deployed in the correct situations cloud computing can have a positive impact – helping over three quarters of organisations increase business agility, 67% their overall availability and 43% improve their response to customer and market demands.

“However, despite the undoubted benefits there is still some education to be done in ensuring the market takes a realistic view of cloud. For most organisations, the challenge of deploying cloud correctly – as part of a Hybrid IT strategy that encompasses the whole IT estate – means that going it alone is not an option.

“Working with managed services providers can help businesses adopt a tailored approach to their IT, working with both their legacy environments and cloud systems, to create an environment that is not too complex to manage.”

How has the cloud affected specific industries?

Cloud Hangover_Finance_Sector_Cartoon_600The study questioned senior IT decision makers across the spectrum of industry, and we found the cloud has had a huge impact on financial services organisations in particular.

The introduction of digital banking means transactions are no longer made during traditional working hours but run 24 hours a day, seven days a week. This new model of working can be somewhat unpredictable. Financial services organisations need to be online at all times, and able to service customers at any time, regardless of online traffic demands.

Consequently, availability and infrastructure flexibility are crucial and the cloud has made this possible. However, difficulties over interoperability (44%), IT complexity (18%) and unforeseen operational expenditure (30%) have also caused headaches for many.

 

Cloud Hangover_Retail_Sector_Cartoon_600Meanwhile the research discovered that UK retailers are spending over £260m a year on maintaining cloud services and on hidden costs, with nearly half saying it had increased the complexity of their IT environment.

 

 

 

 

Public_Sector_Cartoon_FINAL_500We have just issued the public sector headline findings and associated white paper to complement our finance and retail insights – you can see what your peers are saying and steal a march on the competition by downloading a copy of our finance or retail sector white papers.

 

 

 

Cloud Hangover in the News

You may well have seen Cloud Hangover featured in one of the almost 400 pieces of coverage generated in UK, Ireland and France – including in-depth articles in the Evening Standard, The Sunday Telegraph, TechWeekEurope, Le Monde and Les Echos, among others. It has also resonated with business leaders: The CBI has approached Sungard AS about working with the organisation as one of their technology partners as it lobbies the government on digital infrastructure issues as part of its Future Needs project.

You too can join the debate at #cloudhangover. And if you are not yet among the nearly 400 people who’ve taken our Cloud Hangover quiz you can find it here.

 

If you’d like to share your thoughts or be involved in any future research please let us know by emailing us at avail@sungardas.com

 

 

[1] 400 interviews conducted in February 2015 by Vanson Bourne on behalf of Sungard Availability Services: 150 IT decision makers from the UK, 150 from France and 50 each from Sweden and Ireland. The research involved businesses of over 500 employees across a variety of sectors including financial services, business process management and retail.

Research Reveals Insights into Fast-Growing ISV Market

By |

An IDG study[1] sponsored by Sungard Availability Services and Cisco into the Independent Software Vendor (ISV) market reveals the surprising finding that more ISVs (60%) rate good customer service as the route to success than having a superior all-round product (53%).

This can be attributed to the volume and diversity of SaaS services in the fiercely competitive market, which puts considerable competitive pressure on providers to offer the best combination of value, reliability, security and availability within their hosted software packages to differentiate themselves from rivals.

ISV paper_pg8_500With conservative estimates predicting the Software as a Service (SaaS) market will be worth some $50.8bn by 2018, the rewards are high for those ISVs that can differentiate themselves from competitors by offering better, or more customised, products than the opposition to entice subscribers. Consequently, two thirds of survey respondents highlighted improved service as a current business objective with 25% seeing it as their biggest priority. In contrast, growing profit margins (55%) and reducing overheads (54%) are relatively understated by ISVs, perhaps reinforcing the idea that much of SaaS provision relies on low-cost, volume sales activity based on already tight financial margins.

The research also found that ISVs’ provisioning challenges mirror customer anxieties with respondents’ top five concerns cited as being security (78%), backup, failover and business continuity (69%) availability (64%), performance (59%) and providing usage-based billing or reporting (59%).

As a result, ISV customers today place far higher demands on their SaaS provider than their own on-premise environment, demanding service level availability guarantees (66%), flexible pricing (61%) and proven datacentre infrastructure and failover capabilities (54%). With little or no perceived control over the applications they lease customers are understandably more likely to seek guarantees around application performance and reliability.

Switching to a SaaS-based delivery model is fraught with risks for the ISV. Rather than the old fixed price licence structure, SaaS tariffs are likely to vary according to customer requirements. Adding to the challenge, the pay-as-you-go, on-demand SaaS model is characterised by short-term contracts that are usually counted in months and days – or even hours and minutes – leaving customers free to switch providers at short notice causing wildly fluctuating revenue.

IDG paper_p5_500This creates a huge challenge for ISVs who must both adapt services to accommodate increased customer churn and also ensure end user data can be quickly and smoothly returned to the customer and deleted from a hosted server infrastructure to comply with new European data protection laws.

These problems have not gone unnoticed by those ISVs that participated in the survey. Almost three-quarters (73%) identified calculating the cost model as a risk and almost as many (70%) quoting changes to business processes.

 

 

Download your copy of this white paper here

[1] Source: IDG report ‘The changing landscape for business software’ – September 2015

Infrastructure Gives ISVs a Fast Track to Revenue

By |

With conservative estimates predicting the Software as a Service (SaaS) market is set to grow at more than 17% a year[1], ISVs cannot afford to waste energy worrying about the crucial basics of their IT infrastructure.

Instead, their focus must be on quickly developing and bringing to market pioneering new services ahead of competitors if they are to seize emerging opportunities. Recognising this, Sungard Availability Services and Cisco have joined forces to give Independent Software Vendors (ISVs) a shortcut to market by offering infrastructure already certified for many of their markets. This ultimately enables them to start earning revenue from their innovations sooner.

This is timely as new IDG research reveals that ISVs face many provisioning challenges as they strive to achieve their business goals of improving service, delivering growth and product development. Given the reputational damage that data loss and downtime can cause and the potentially large fines regulators can impose for data security breaches, physical and information security is their number one concern. Understandably, many ISVs also worry that cloud-hosted infrastructure is not able to deliver the uptime, application performance and backup capabilities to match on-premise systems, with system integration being another common worry.

But as our customers like Apply Financial, Tenet Group and Transics know from experience, ISVs can trust that their software is hosted on a world-class infrastructure based on Cisco-powered foundations. In addition, they can also benefit from added support, solutions and guidance through the award-winning Cisco Partner Program. This is designed to help ISVs develop ways to connect with their market, build strong partner relationships and receive rewards or even funding for customer activities. This last point is particularly welcome in a typically low margin cloud service environment which necessitates tight control of costs.

Switching to a SaaS-based application delivery model is not easy for ISVs, which no longer have the guarantee of annual income based on software licence renewals. For this reason, ensuring that the underlying hosting infrastructure has the flexibility to adapt to changing utilisation rates while minimising datacentre, hardware, power, cooling and maintenance costs to maximise profits is a difficult balancing act but one that is nevertheless critical to an ISV’s commercial success.

Discover how some of Sungard AS’ customers successfully overcame these difficulties by reading their case studies

If you’d like to find out more, speak to your Account Manager, call us on 1800 938 122 or email avail@sungardas.com

[1] Source: IDG report ‘The changing landscape for business software’ – September 2015

Software Provider Relies on Sungard Availability Services to Keep Its Customers Connected

By |

Fast-growing bxp software by All n One produces a range of award-winning Customer Engagement, Quality Assurance, eLearning and Contact Centre Management tools that promise to make customers’ businesses run better.

With numerous organisations such as Dublin City Council, Mars Ireland and 3 counting on its customisable, cloud-based system to manage contact centre operations, the company has zero tolerance for downtime. “Our clients are using our systems to talk to their customers and record conversations so they cannot have our systems fail them,” explains All n One CEO Nick Wheeler.

bxp software, in turn, depends on Sungard Availability Services to ensure high availability of its hybrid IT environment around the clock. It contracts Sungard AS’s Infrastructure as a Service to give it SLA-backed uptime of 99.95%. Sungard AS manages bxp software’s physical and virtual servers in its resilient Dublin-based Technology Centre and seamlessly delivers its systems and data back to the business. As well as all-important availability, this solution gives bxp software the flexibility and scalability it needs to support its continued growth.

When bxp software originally chose Sungard AS as its technology partner many years ago, as a relatively young company it particularly valued Sungard AS’s expertise. “One of the very real benefits we appreciated early on was the ability to get straight advice from Sungard AS without having to go to a separate consultancy firm, which was a huge bonus,” notes Philip Lacey, All n One’s IT and Projects Director. “We already had an idea how to run our IT infrastructure but Sungard AS gave us a better way to stay up.”

“Downtime simply doesn’t happen. This infrastructure has been planned to within an inch of its life.”

According to Nick Wheeler, having less than 100% service availability would be “a nightmare scenario.” He expands on this point, “It would quite possibly be cheaper to host the bxp system ourselves but this would undoubtedly be a false economy as we don’t have the knowledge, experience or in-depth support to even consider it. I need the peace of mind day in, day out that our clients will get the service they are paying for. I sleep like a log because I know our IT infrastructure is in safe hands.”

All n One video capture_500

Watch the video

As Data Protection regulations become ever more stringent, bxp software’s systems have to be exceptionally secure and all data is encrypted throughout the end-to-end process. The company’s operating system and all of its servers must be completely up-to-date to ensure resilience and security.Its trust in Sungard AS has not been misplaced – bxp software has enjoyed 100% uptime since the day it signed its first customer. Downtime in Philip Lacey’s words, “simply doesn’t happen. This infrastructure has been planned to within an inch of its life. The only thing that could take us out is a nuclear, chemical or biological attack on the site.”

Following the sun
bxp software customers across a variety of industry sectors depend on its systems to manage call centre activity and log contact with customers to help nurture relationships. These store data in one central database, which is updated in real time. Its Sungard AS solution gives bxp software the ability to run client-specific data backups at any time of the day or night for clients across different time zones.Having been growing its client base in Ireland since 2008, the Dublin-based company is pursuing its ambition to expand worldwide by offering the software to clients across the globe who want to ‘follow the sun’.

For example, at the end of the West Coast working day agents in a Silicon Valley contact centre may pass their tasks or case load to a support team in Bangalore, India to be progressed. This team, in turn, passes its work to a European-based team at the end of its own working day. In this way, work can continue around the clock.

Commenting on the relationship that has developed between All n One and Sungard AS, Philip Lacey remarks, “There’s no doubt it’s a partnership – our fortunes are inextricably linked.”

Download the case study here

New Service Helps Customers Regain Control of Their Oracle Assets

By |

Keeping on top of enterprise application assets can be a headache for IT departments, often requiring dedicated teams to manage licences and ensure compliance.

As many customers will be only too aware, Oracle environments are no exception and working out just what licences are needed can be a horribly complicated task. Now a new service from Sungard Availability Services promises to simplify asset management and put customers back in control of their Oracle estates.

Application Cloud Services for Oracle, a proven solution that has been available in the US for several years, delivers customers’ vital Oracle infrastructure, tailored to their specific requirements, via the cloud. After gaining an understanding of customers’ business requirements, our experienced consultants design and build optimised, consumption-based Oracle environments. This enables customers to right size their Oracle estate and mitigate the potentially costly risk of non-compliance, while at the same time ensuring they pay only for the licences they need.

In the past, one of the major hurdles was identifying exactly how much compute power each customer used on shared servers. We are able to overcome that through the use of hardware partitioning in our virtual platforms. This allows us to identify consumption by individual customer so each pays only for what they use.

Our robust infrastructure is based on a certified Oracle Red Stack configuration specifically designed for Oracle applications and databases. As the stack design is Oracle from top to bottom, this eliminates any disputes concerning compatibility or ownership of technical issues.

And, of course, it has all the resilience built-in that you would expect from any Sungard Availability Services ensuring reliability and high availability at all times.

If your organisation depends on Oracle applications and you’d like to find out more, talk to your Account Manager, email avail@sungardas.com or call 1800 938 122.

Partnership Smooths Path to Hybrid Cloud

By |

Our partnership with Cisco has strengthened further with plans to accelerate hybrid cloud adoption through the adoption of Cisco’s Intercloud Fabric architecture.

Cisco Intercloud Fabric, at its most basic level, is software that allows workloads to be ported across various public clouds (such as Amazon Web Services and Microsoft Azure), and back and forth between public cloud and a customer’s dedicated hosted private cloud or Sungard AS-provided private cloud.

This workload portability enables workloads across various hypervisors (a piece of computer software, firmware or hardware that creates and runs virtual machines) and removes what, until now, has been one of the many barriers to adopting a multi-use case hybrid cloud. Cisco Intercloud Fabric ultimately supports the portability of a virtual machine (VM) across an Intercloud Fabric-enabled cloud platform, with the appropriate security and control.

In addition to Cisco Intercloud Fabric, Sungard AS (a Cisco Cloud and Managed Services Program member), is also the first global service provider to deploy Cisco’s Application-Centric Infrastructure (ACI). This is important as Cisco ACI links closely to the Cisco Intercloud strategy, providing the ability to automatically provision resources based on the workload’s needs.

Cisco Intercloud Fabric and ACI very much sit together, one providing workload portability within a Cisco Intercloud-enabled cloud, the other (ACI) providing automated provisioning, that can be tied to the needs of applications sitting anywhere in the network. ACI gives customers the ability to adopt policies, which in essence can provide controls on behaviour, interoperability and security, with quality of service (QOS) standards. The two tied together form a strong foundation for hybrid cloud and the development of cloud-native applications (applications designed to run specifically in the cloud). Consequently, these two exciting developments are key components of the Sungard AS cloud services portfolio and our adoption of this technology will allow customers to truly realise, embrace and adopt a hybrid cloud strategy.

“We’re helping customers and partners extend their IT infrastructures into the Sungard AS global cloud by integrating the Cisco Intercloud Fabric into our solutions portfolio,” said Jack Dziak, Executive Vice President, Global Products, Sungard AS. “Cisco Intercloud Fabric provides organisations the secure cloud services they need anywhere in the world, giving them their choice of using the cloud the way they want it. This in turn enhances the overall value proposition Sungard AS provides our clients, which is a win-win for everyone,” he added.

Sungard AS already offers a full suite of Cisco Power Cloud services including Infrastructure-as-a-Service, Recover2Cloud® and SAP HANA. As a Cisco technology partner for more than 15 years, we and our channel partners are uniquely positioned to provide Intercloud Fabric innovations for many shared customers.

“Our customers face the biggest challenges in hybrid cloud adoption,” said Gee Rittenhouse, Senior Vice President/General Manager of Cisco’s Cloud and Virtualization Group. “We are excited to have Sungard AS bring Internet scale and globally secure solutions for hyper distributed applications and data. With Cisco Intercloud Fabric technology unlocking the potential of the hybrid cloud, Sungard AS is showing its strength as a global Cloud Provider by helping customers adopt hybrid clouds worldwide.”

We are currently validating our Intercloud Fabric Architecture environments and demonstrating how these will integrate with Cisco customers and partners looking to connect private and public clouds to meet requirements for resource management, data availability, datacentre capacity challenges and seasonal spikes.

If you’d like to know more, talk to your Account Manager, call 1800 938 122 or email avail@sungardas.com

 

Customer Survey Results In

By |

Hot off the press, we are delighted to be able to share with you the headline findings from this year’s Customer Satisfaction Survey which has once again included a number of Sungard Availability Services Ireland customers. First of all we’d like to extend our thanks to all of the 200 customers who took the time out of their busy schedules to give us their feedback on how we’re performing, what we’re doing well and where we have room for improvement.

There was a roughly equal split of Recovery Services (169) and Managed Services (173) subscribers with the sample also including 17 new customers. Respondents also included 24 cloud subscribers, 22 Consulting and 12 software subscribers. As in previous years, the format was a telephone interview covering all aspects of interaction with Sungard Availability Services from initial contact through the complete lifecycle of engagement and operational delivery and, in addition to scoring our overall performance, valuable feedback was provided in the form of customer comments.

Although there has been some movement to certain individual results, 95% of customers questioned said they would continue to subscribe, a virtually identical figure to last year, and 94% would recommend us to others. This led to a ‘Net Promoter’ score (calculated as the number of promoters less detractors) of 79.4%, which is slightly down on 2014’s figure of 82% but still a very high result when compared with the industry benchmark.

The results show that there are several areas in which we need to improve our performance but we are pleased that, overall, those customers questioned were satisfied with the most important aspects of the Sungard AS service.

However, we were disappointed to learn that the area of ‘Contracts, invoicing and administration’ remains an area that still requires improvement with a satisfaction score of 88.9% and we will be addressing this. You also felt the initial on boarding process has room for improvement and we will be looking closely at your comments regarding this area.

You rate our initial sales contact highly, giving us a satisfaction rating of 93.8%, and sales contact overall a score of 90% – a small improvement year-on-year. Our ‘input to the technical solution’ also scored highly at 90.8%.

We were thrilled to see excellent satisfaction levels (93.1%) with our Managed Services and Cloud Services (92.3%) although many respondents were less impressed with our customer portal.

Project management is another area clearly indicated for investigation and improvement planning with a slippage recorded in satisfaction levels compared with 2014’s figure of 73%.

Service Management scored highly with a 93.3% satisfaction rating and many positive comments including “they have the ability to understand, respond and be flexible” and good at “owning and resolving issues”.

Recovery Services continued to enjoy excellent satisfaction levels (95.9%) with consistently high average scores recorded. This was reflected in the feedback on our handling of alerts and invocations. Altogether, 41 of the customers surveyed had placed Sungard AS on alert while six had invoked. All reported that they were satisfied, with 41 saying they were very satisfied.

As in 2014, excellent satisfaction levels were recorded (98.4%) with our site facilities. This year a new question was introduced regarding access and security at our sites and this received a 96.8% rating.

Those surveyed gave Sungard AS marketing and communications a thumbs up (89.3%) with encouraging comments on AVAIL’s new online format including “better, more accessible and easier to navigate”, “articles are interesting and well researched” and “informative, a good update as to where Sungard is going.”

We were particularly pleased to see that of the 43 customers who had contacted us in the last 12 months you feel our handling of issues and problems has improved significantly (90.5%).

Most importantly of all, almost 9/10 of those customers questioned said that in the event of a disaster they are confident that Sungard AS would fulfil their recovery needs.

As in previous years, we asked survey participants for their views on for key statements and are pleased with the responses:

  • Sungard AS is a name I can always trust (168 agreed)
  • Sungard AS always deliver on what they promise (162 agreed)
  • if a problem arises, I can always count on Sungard AS to reach a fair and satisfactory solution (172 agreed)
  • Sungard AS always treats me with respect (194 agreed)

We will now dig deeper into the survey results to see what lessons can be learned and how we can improve those areas highlighted as concerns. Thank you once again to all the customers who took time to give us their feedback and we will share news of developments in future editions of AVAIL.

If you would like to share your opinions on any aspect of our service or have any questions, please email David Parr, Head of Customer Services, at david.parr@sungardas.com

Serious About Innovation

By |

Some years ago Sungard AS made the strategic decision to protect our intellectual property through filing patent applications and maintaining trade secrets. To this end, we created a formal patent process to encourage employee creativity and reward our people for their inventions and innovations.

Sign_500“Our customers want us to bring our heritage and capability of running highly available systems with them as they move into the new world of applications running in the cloud. We want to do it in a way that represents best practice and our in-depth knowledge of how to run critical systems,” explains Josh Crowe, Chief Technology Officer for Sungard AS.

“This is about more than gaining a piece of paper from a government entity but capturing something we are really good at and turning it into a protectable innovation that allows us to differentiate our offerings in the marketplace.”

Patent Hall of Fame_Josh Crowe_500As a result of our patent programme, 11 patents have so far been awarded to Sungard AS for new methods and concepts developed by employees that help solve customers’ business problems in various ways. These include an RPO analysis tool for our Recover2Cloud service, a system to automate infrastructure workflows as atomic transactions and discovering the boot order sequence of servers belonging to an application.

Spate of Hacks Show No Company is Safe

By |

Infidelity website Ashley Madison may be the unfortunate company that grabbed the headlines for weeks this summer when its website was hacked and member details published on the TOR network but the prevalence of cyberattacks today means no organisation can afford to be complacent.

All data breaches can be costly and cause reputational damage but the very nature of Ashley Madison’s business – slogan “Life is short. Have an affair” – made this case particularly embarrassing for the company’s 38 million customers. It is already said to have led to a number of divorces and, tragically, one suicide. It is also potentially ruinous to Ashley Madison itself. After all, how many married thrill-seekers will now entrust their personal details to the company after such a high profile breach of trust?

Preliminary analysis of the leaked data revealed that almost 60,000 members have addresses in Washington DC and more than 15,000 accounts were linked to a.gov or a .mil email address, which could lead to repercussions not only at home but also in the workplace. The breach makes employees vulnerable to being blackmailed for further details that can be sold to a competitor or foreign government for considerably more than could be obtained from an individual.

Of course, Ashley Madison is not an isolated case. At around the same time it was attacked, the personal details of an estimated 18 million government employees were compromised by a cyber breach at the Office of Personnel Management (OPM) in the US. In this case the culprits are believed to have previously hacked into an OPM contractor and built their own backdoor access to the system, armed with high-level system administrator access. The theory is that these security credentials were then used to break into the OPM system.

All of this hacked information can be correlated so taking these two examples, we have the names and job titles of security-cleared government officials, which can be matched against data from the illicit affairs website for the purposes of coercion or blackmail. And, of course, these are just the more obvious ways of using and abusing the data.

While the UK suffers more cyberattacks than any other European country and is the second most targeted nation in the world[1], cyberattacks are a worldwide problem. Already this year, 81% of large companies have reported a security breach in 2015, costing an average of £600,000 to £1.5 million. And the rate of data breaches shows no signs of slowing down.

In August this year the details of up to 2.4 million Carphone Warehouse customers were exposed when hackers accessed names, addresses and dates of birth and bank details, together with encrypted credit card data for up to 90,000 customers, in a security breach.

As reported previously in AVAIL, increasingly, breaches take the form of Direct Denial of Service (DDoS) attacks. These employ Volumetric Attack techniques to cause the cyber equivalent of a traffic jam. These seriously hamper an organisation’s ability to respond to customers as its outbound network quickly becomes congested. Worse still, the affected servers can be commandeered to participate in DDoS attacks on others.

All organisations, public and private, face a constant battle to stay one step ahead of hackers who continue to find new ways to compromise their systems and steal confidential data. Cyber criminals are becoming increasingly effective, only needing to send 20 emails for every successful attempt to defraud or hack their targets. They are no longer the relatively harmless geeks of yesteryear rising to a technical challenge but more often organised crime gangs motivated by the prospect of financial reward.

Some of the most successful attacks rely on exploiting employee behaviour to circumvent your organisation’s defences. A common tactic is to deliberately drop a memory stick in a company’s car park, lift or other public area. (Interestingly, pink is apparently the most effective colour to use). Human nature being what it is, there is a strong chance one of your employees will pick it up and insert it into their PC’s USB port out of curiosity. They will inevitably click on an intriguingly named file or funny picture and, in doing so, unwittingly spread the executable code it links to throughout your network.

With the knowledge and opportunity to leave a ‘back door’ to your systems open, contractors and disgruntled or ex-employees are an organisation’s soft underbelly. Such vulnerabilities mean companies are frequently held to ransom. Mike Smith, Product Development Manager, Networks & Security for Sungard AS, cites one example of a customer he helped to prevent a threatened DDoS attack if a demand for payment of 50 bitcoins (around £9,000) was not met – and this is a far from unique occurrence.

Countering the threat

So what is the solution? According to Mike Smith, “The technology is out there to minimise the majority of threats but in our experience most customers are selective about the lengths they will go to, balancing the risk against the cost of preventive measures. They look at where they will get ‘the most bang for their buck’.”

He points out, “While these days a firewall is the norm and most organisations will also protect their web servers with a web application firewall, it’s not just a question of buying a few products. Companies need to be abreast of the latest global threats, understand where their vulnerabilities lie and implement a multi-layered strategy that includes active 24-hour monitoring of their IT environment.”

Sungard Availability Services partners with carefully selected security specialists, each expert in their particular field, to offer a comprehensive range of Managed Security Services designed to improve protection from the perimeter to the core. DDoS mitigation, which can be provided to Sungard AS customers as a standalone service through monthly subscription, is among the services offered yet despite the growing scale of the threat, astonishingly this has been taken up by only around 2% of Managed Services customers.

In this digital age, defending an enterprise is a far more complex and challenging task than ever before. Yet never has it been more important.

Would you like to find out more?
If you’d like to explore how Managed Security Services from Sungard AS could benefit your business, speak to your Account Manager, call us on 1800 938 122 or email avail@sungardas.com

 

[1] Source: 2015 Internet Security Report – Symantec