|
Consolidating your infrastructure to the management of a single provider can
dramatically reduce your IT operations expenditure and, in some cases, by up to
six figures. However, the process of migrating critical infrastructure can be
complex and risky.
Based on our experience of managing over 90 real-life migrations for some of
the UK's leading blue chips, retailers and financial service providers, Attenda
has compiled the Migration Lifeline, a guide and sample project plan to
managing a successful infrastructure migration.
Over 80% of hacking incidents occur because of Web Application security flaws.
This guide outlines the various types of application insecurities and for the
more technical, demonstrates how to check if your Web Application is vulnerable
to basic attacks.
This Example Report summaries the results and observations of a Web Application
vulnerability test which aims to discover any opportunities for successful
application attacks, information gathering, appends to social engineering
attacks, as well as identifying areas in the application where changes could
enhance security.
Attenda recently conducted independent research in conjunction with Vanson
Bourne to examine attitudes towards outsourcing in mid-market companies in the
UK. . A full report and analysis is now available to download.
This paper discusses the different alternatives available for organisations
considering implementing Intrusion Prevention Systems. It analyses a number of
different types and reviews where they would be best implemented. It covers
both commercial and open source solutions.
This survey is based on Attenda's testing of 52 Web applications/sites for 27
clients. It focuses exclusively on Web application-level vulnerabilities. This
class of vulnerabilities refers specifically to weaknesses which could be
exploited in custom Web applications.
Many organisations find that keeping their sophisticated Microsoft .NET based
applications working is an real struggle. A major cause is often that the
traditional approach to development encourages a focus on functionality at the
expense of an equally valuable property of successful applications:
manageability.
As more applications are developed and implemented in the Microsoft .NET
environment, developers need to add the equally important demands of
manageability to their traditional emphasis on functionality.
The best practice guidelines contained in this paper are based on the best
elements of the methodologies employed by Attenda and Avanade and are designed
to ensure that the need for eventual manageability is both appreciated and
taken into account at every stage of the development and implementation
process.
Managing sophisticated multi tier Internet infrastructure is hard. The
technologies are relatively new, and the pace of change is staggering. There
are only very limited sources of information on how to do it well.
This paper covers the technical platform required including a route map for
designing an optimised network. It then describes best practice for project
management enabling accurate deployment of applications into a fully supported
operating environment. Finally it describes the service management processes
needed to support the applications to ITIL standards.
The reliance of organisations on their IT systems to provide core business
functions has grown exponentially in the last 20 years with little sign of
abeyance. However, many businesses still house their IT systems in internal
computer rooms or Data Centres which were designed long before IT
infrastructure occupied such a pivotal role in their business.
Many of these facilities have fallen dangerously behind the required standards
of security, power supply and environmental control and now offer a level of
protection that is disproportionate to the criticality of the internal systems
or Internet applications they house.
This paper has been written to alert IT decision makers to the risks
associated with running mission or brand critical business systems from Data
Centres or computer rooms that provide insufficient protection. It is intended
to provide a checklist with which IT decision makers can audit their own Data
Centres and assess their suitability against the importance of the availability
they would like to deliver.
|