This blog has moved
This blog is now located at http://blog.quality-matters.com/.
You will be automatically redirected in 30 seconds, or you may click here.
For feed subscribers, please update your feed subscriptions to
http://feeds.feedburner.com/~u/qualitymatters.
Posted: Saturday, 6 March 2010
Security Risks and Social Networks
MySpace, Facebook, Linkedin and Twitter, used by millions yet the risks are not fully understood or appreciated. Apart from the obvious threats from Trojans, viruses, stolen passwords and other malware, there is also the human risk of hurried messaging which has resulted in embarrassment and security threats to organisations. The big problem with social networks and email to the same extent is that once sent, the message or information is 'in the wild' and could, if the experts are to be believed, stay on the internet in one form or another indefinitely. How many of us had wished that they could recall an email one sent?
There are many people who believe that these social sites are secure. If you are foolish enough to publish details of your address, interests and other personal information you are providing sufficient data to allow your identity to be stolen or misused.
Unfortunately, the information you post today, about a subject you hold dear, may very well haunt you in years to come. A future employer may 'Google' your name and all that information could be recovered. This might be the difference between getting that job or being rejected.
Many companies are barring employees from using these networking sites as it has been shown that some company sensitive bits of information end up being discussed on these sites. During the last war the enemy used to gather information by listening in to casual conversations in pubs and sporting venues. A little bit here and a little bit there soon added up to a considerable amount of data once collated.
The same applies to company blogs and instant messaging systems of all types, indeed a Microsoft employee apparently let slip that the new 2010 office package would be available in March. This was swiftly denied by an official spokesman, but the damage has been done.
I always advise my clients that the internet is about as secure as writing the same information on a piece of paper and fixing it to a public notice board in the middle of a busy town. In short it is not secure at all, unless some elaborate encryption is used.
One final word on social network sites, if you must use them, please, PLEASE do not use the same passwords that you use on secure sites such as bank, shopping or business networks and think once and think once again before pressing SEND.
Enough said?
There are many people who believe that these social sites are secure. If you are foolish enough to publish details of your address, interests and other personal information you are providing sufficient data to allow your identity to be stolen or misused.
Unfortunately, the information you post today, about a subject you hold dear, may very well haunt you in years to come. A future employer may 'Google' your name and all that information could be recovered. This might be the difference between getting that job or being rejected.
Many companies are barring employees from using these networking sites as it has been shown that some company sensitive bits of information end up being discussed on these sites. During the last war the enemy used to gather information by listening in to casual conversations in pubs and sporting venues. A little bit here and a little bit there soon added up to a considerable amount of data once collated.
The same applies to company blogs and instant messaging systems of all types, indeed a Microsoft employee apparently let slip that the new 2010 office package would be available in March. This was swiftly denied by an official spokesman, but the damage has been done.
I always advise my clients that the internet is about as secure as writing the same information on a piece of paper and fixing it to a public notice board in the middle of a busy town. In short it is not secure at all, unless some elaborate encryption is used.
One final word on social network sites, if you must use them, please, PLEASE do not use the same passwords that you use on secure sites such as bank, shopping or business networks and think once and think once again before pressing SEND.
Enough said?
Labels: Social networking sites
No Gliding- worse luck
The weather hasn't been too good and it seems that my services are needed when the weather has been suitable for flying; whatever the reason I haven't been able to go gliding recently. I have resigned myself to waiting for the mad rush to die down. I was hoping that after the Christmas period I would be able to get up in the air, but still no such luck.
Gliding does become slightly addictive and I must admit that I have missed the freedom of being like a bird, albeit only for a short time. The M25 has been my tether and however hard I try to day-dream my journeys on that motorway I cannot escape the feeling of being restricted.
Enough of my ramblings! The economy is showing mixed data; although the media have declared that we are officially out of recession it does still seem very much in evidence.
Whatever the economy is doing, sensible business owners and managers are trying to increase efficiency and drive down costs. The lower costs are derived by 'getting it right first time'. This also has a morale boost for the staff as clearly repeating a job or dealing with complaints is wearing.
Happy staff are also more efficient.
Gliding does become slightly addictive and I must admit that I have missed the freedom of being like a bird, albeit only for a short time. The M25 has been my tether and however hard I try to day-dream my journeys on that motorway I cannot escape the feeling of being restricted.
Enough of my ramblings! The economy is showing mixed data; although the media have declared that we are officially out of recession it does still seem very much in evidence.
Whatever the economy is doing, sensible business owners and managers are trying to increase efficiency and drive down costs. The lower costs are derived by 'getting it right first time'. This also has a morale boost for the staff as clearly repeating a job or dealing with complaints is wearing.
Happy staff are also more efficient.
Labels: efficiency, recession
Posted: Monday, 22 February 2010
Continual Improvement and ISO9001
Could it be that we are coming out of recession? The messages are rather mixed at the moment, with one publication saying that we are still mired in recession and other saying that these mystical green shoots of recovery are showing.
One indication that we may be coming to the end of recession is the increasing interest in ISO9001 by companies of all types. It is pleasing to note that manufacturing companies are seeing an increase in demand for their products and want to maximise this effect. Continual improvement is the slogan for 2010 along with increased efficiencies.
ISO9001 has been the single most successful standard throughout the world, with more certifications that any other standard. Companies without ISO9001 are now looking to achieve certification to remain competitive. Indeed ISO9001 is an entry qualification for a good number of tenders/PQQ's (pre qualification questionnaires).
Then process for achieving 9001 is reasonable straight forward and if set up correctly will enhance the company's activities, provide structured reporting and enable the company to compete on equal terms.
Here at Quality Matters we have been putting quality systems into place since 1991 and our proud boast is that every company using our services has achieved an ISO 9001 pass at assessment and at the first attempt.
We are pleased to discuss your requirements and explain how 9001 can help you and your organisation, together with costs and a timescale.
One indication that we may be coming to the end of recession is the increasing interest in ISO9001 by companies of all types. It is pleasing to note that manufacturing companies are seeing an increase in demand for their products and want to maximise this effect. Continual improvement is the slogan for 2010 along with increased efficiencies.
ISO9001 has been the single most successful standard throughout the world, with more certifications that any other standard. Companies without ISO9001 are now looking to achieve certification to remain competitive. Indeed ISO9001 is an entry qualification for a good number of tenders/PQQ's (pre qualification questionnaires).
Then process for achieving 9001 is reasonable straight forward and if set up correctly will enhance the company's activities, provide structured reporting and enable the company to compete on equal terms.
Here at Quality Matters we have been putting quality systems into place since 1991 and our proud boast is that every company using our services has achieved an ISO 9001 pass at assessment and at the first attempt.
We are pleased to discuss your requirements and explain how 9001 can help you and your organisation, together with costs and a timescale.
Labels: continual improvement, iso9001
Posted: Wednesday, 3 February 2010
ISO27001 and loss of data
Once again there have been cases where sensitive data has been left on trains or in restaurants and most of these are either laptops, or memory devices. The sheer volume of data loss is reaching epidemic proportions.
ISO27001 is a good system to have in place but it must be enforced vigorously, otherwise it is just too easy to allow data to be lost or removed.
The prime method for theft of data remains the USB stick and this seems to be the method of choice for those wishing to steal data from systems.
There are a couple of things you can do to protect your data:
Let us all make sure that 2010 is not going to be a year when we lose data.
ISO27001 is a good system to have in place but it must be enforced vigorously, otherwise it is just too easy to allow data to be lost or removed.
The prime method for theft of data remains the USB stick and this seems to be the method of choice for those wishing to steal data from systems.
There are a couple of things you can do to protect your data:
- Set up computers and laptops to exclude USB devices and CD/DVD writers. It may seem harsh for laptop users not to be able to use the USB port, apart from a mouse but if the data you hold is sensitive then this level of protection is justifiable.
- Using group policy to prevent the export of data by email or other attachment.
- Enforce the encryption policy to make sure that any data stored on a laptop is secure; password protection alone is not enough.
- You could also set up your laptop systems to be 'thin client', that is to have all data stored on a server and using the laptop to connect to the server. No data can be stored on the laptop, so the laptop cannot be compromised.
- And finally ensure that paper documents are protectively marked if they are sensitive and enforce security protocols for restricted, confidential and secret documents.
Let us all make sure that 2010 is not going to be a year when we lose data.
Posted: Tuesday, 19 January 2010
Customer Satisfaction
May we wish you all a Very Happy and Prosperous New Year.
We, at Quality Matters want to ensure that our customers are very satisfied with the services we supply, indeed if any of our customers report that they are only satisfied, we carry out an internal investigation to find out why.
The company was established in 1991 and during that time we have received only one dissatisfaction report. On investigation it turned out to be a misunderstanding, however we apologised and refunded the fee in full; our customer was rather taken aback at this and said that he merely wanted to register his comment. The misunderstanding resolved this customer has recommended our services to others and used our services a number of times himself.
We believe that to achieve this level of customer satisfaction we need to go way beyond satisfaction and this we strive to achieve. This customer care ethic has been a primary driver for nineteen years and as we enter on yet another decade we are quietly confident that our customers will continue to maintain their association with Quality Matters.
We, at Quality Matters want to ensure that our customers are very satisfied with the services we supply, indeed if any of our customers report that they are only satisfied, we carry out an internal investigation to find out why.
The company was established in 1991 and during that time we have received only one dissatisfaction report. On investigation it turned out to be a misunderstanding, however we apologised and refunded the fee in full; our customer was rather taken aback at this and said that he merely wanted to register his comment. The misunderstanding resolved this customer has recommended our services to others and used our services a number of times himself.
We believe that to achieve this level of customer satisfaction we need to go way beyond satisfaction and this we strive to achieve. This customer care ethic has been a primary driver for nineteen years and as we enter on yet another decade we are quietly confident that our customers will continue to maintain their association with Quality Matters.
Labels: Customer Satisfaction, iso9001
Posted: Monday, 4 January 2010
Watch this Space ...... ISO 9004:2009
The ISO 9000 Quality Management series of Standards, although revised together in 2000 now have different revision dates.
Currently :
Both ISO9001 and 9004 were originally designed as a consistent pair of standards, but this link has now been broken with 9004 using the principle that retaining ISO9001 certification might need additional elements to be introduced to maintain the continual improvements needed for growth and success.
However, it should be remembered that 9001 is the Standard for certification and 9004 will never be assessed and certificated.
The new 9004 (subject of course to and final changes) will have the following main sections:
Currently :
- ISO9000 Vocabulary and Fundamentals re-issued in 2005
- ISO9001 Quality Management Standard Requirements re-issued in 2008
- ISO9004 Guidelines for quality improvement is still at the original 2000 issue
Both ISO9001 and 9004 were originally designed as a consistent pair of standards, but this link has now been broken with 9004 using the principle that retaining ISO9001 certification might need additional elements to be introduced to maintain the continual improvements needed for growth and success.
However, it should be remembered that 9001 is the Standard for certification and 9004 will never be assessed and certificated.
The new 9004 (subject of course to and final changes) will have the following main sections:
- Managing for the sustained success of an organization
- Strategy for policy formulation, planning and development
- Resource management
- Process management
- Monitoring, measurement, analysis and review
- Improvement, innovation, and learning
Labels: ISO9004:2009, New Standard
Posted: Wednesday, 25 November 2009
0 Comments:
Post a Comment