IT supplier relationship management
IT suppliers are taking greater responsibility for the delivery and implementation of IT, and increasingly IT supplier relationship management is a vital skill for IT managers to possess. Procurement and purchasing, sourcing, contract law and negotiation skills are required, as is understanding of key frameworks such as ITIL. We examine the best practice in effective IT supplier relationship management.
-
News
23 Apr 2024
Enterprise AI: Free, premium or a bolt-on?
SaaS providers will have to offer AI in their product mix. But they need to make a huge upfront investment in AI infrastructure, which impacts revenue Continue Reading
-
News
23 Apr 2024
Post Office boss used husband’s descriptions in 'Orwellian' ploy to downplay Horizon problems
Post Office CEO sought advice from husband on what words to use in reports to downplay known errors in software, inquiry told. Continue Reading
-
News
08 Nov 2023
Data-sharing management gap highlights cyber risk, says report
Organisations are struggling to secure their use of communications tools to share data with third-party partners and suppliers, and in the process are exposing themselves to heightened levels of risk, according to a report Continue Reading
-
News
07 Nov 2023
Post Office disclosure failures delay Horizon scandal inquiry again
Many of the 300,000 emails unearthed could be relevant to evidence from future and past witnesses in the Post Office scandal inquiry Continue Reading
-
News
06 Nov 2023
NatWest taps IBM skills for generative AI
NatWest and IBM are developing generative AI capabilities to expand the capabilities of the bank’s virtual customer assistant Continue Reading
-
News
06 Nov 2023
Shadow IT use at Okta behind series of damaging breaches
Okta now believes the initial access vector in a series of damaging breaches was one of its own employees who used a corporate device to sign into their personal Google account Continue Reading
-
Opinion
03 Nov 2023
Incident response planning requires constant testing
What goes into a good incident response plan, and what steps should security professionals take to ensure they are appropriately prepared for the almost inevitable attack, and secure buy-in from organisational leadership? Continue Reading
-
Feature
31 Oct 2023
The world's most advanced Arabic LLM is now available on open source
On 30 August 2023, Abu Dhabi-based Inception, a subsidiary of G42, announced the release of an Arabic large language model to open source Continue Reading
-
News
31 Oct 2023
SEC sues SolarWinds, alleging serious security failures
SolarWinds and its CISO have been charged with fraud and internal control failures by the US authorities amid allegations of a series of cyber security failings leading up to the 2020 Sunburst attacks Continue Reading
-
News
30 Oct 2023
UK government AI Summit already branded ‘missed opportunity’
The dominance of big tech firms, a focus on speculative risks over real-world harms, and the exclusion of affected workers, mean the AI Safety Summit is a wasted opportunity, say civil society groups Continue Reading
-
News
27 Oct 2023
Google launches bug bounties for generative AI attack scenarios
Google expands its bug bounty programme to encompass generative AI and takes steps to grow its commitment to supply chain security as it relates to the emerging technology Continue Reading
-
News
26 Oct 2023
Exploitation of Citrix NetScaler vulns reaching dangerous levels
Observed activity exploiting two new Citrix NetScaler vulnerabilities disclosed earlier this month is ramping up, and users may be running out of time to patch lest they be attacked Continue Reading
-
News
25 Oct 2023
Copilots, AI and Azure drive Microsoft revenue growth
AI dominated the Microsoft’s latest quarterly earnings. Copilot trials are being run by 40% of the Fortune 100 Continue Reading
-
News
25 Oct 2023
1Password caught up in Okta support breach
After breaches at BeyondTrust and Cloudflare, 1Password, a third customer of Okta operating in the same space, has revealed that it too was impacted in a breach of the IAM house’s support systems Continue Reading
-
News
24 Oct 2023
Cisco hackers likely taking steps to avoid identification
Cisco confirms that a drop in detections of devices compromised by two zero-days was likely the result of reactive measures taken by the threat actors to avoid discovery Continue Reading
-
News
24 Oct 2023
Customers speak out over Okta’s response to latest breach
Customers of identity specialist Okta have been attacked via a compromise of its systems, and are claiming Okta’s response leaves something to be desired Continue Reading
-
News
23 Oct 2023
Dell updates PowerStore, PowerMax and PowerFlex storage
Dell storage upgrades include improved AIOps, lower energy usage, real-time HA failover, seamless hardware replacement, and enhancements to take advantage of DPU acceleration Continue Reading
-
News
23 Oct 2023
Cisco pushes update to stop exploitation of two IOS XE zero-days
Cisco releases updates to thwart exploitation of two flaws affecting users of its IOS XE software Continue Reading
-
Feature
20 Oct 2023
Five key questions about disaster recovery as a service
Disaster recovery as a service builds recovery data and systems into the cloud, accessible from anywhere. We look at the difference vs cloud backup, DRaaS use cases, the cost, and the firms that provide it Continue Reading
-
Feature
20 Oct 2023
NetApp: NAS pioneer well set for the cloud revolution
In this storage profile, we look at NetApp, which built a reputation in file access storage but seems to be set fair to navigate a future of hybrid cloud, cloud-native and containerisation Continue Reading
-
News
19 Oct 2023
Fears grow over extent of Cisco IOS XE zero-day
Researchers have identified spiking numbers of victims of a recently disclosed Cisco zero-day, as users of the networking supplier’s IOS XE software are urged to take defensive measures Continue Reading
-
News
19 Oct 2023
Scality gets a jump with VMware Cloud Director integration
S3-compliant object storage specialist will use new OSIS integration with VMware’s cloud management tool to target service providers that want to deliver regional cloud offers Continue Reading
-
Opinion
19 Oct 2023
DORA: Moving into a new era of digital resilience
The EU’s Digital Operational Resilience Act will come into force in just over a year, the majority of risk management professionals are only at the beginning of their planning journey. Kate Needham-Bennett of Fusion Risk Management explains how to get things moving Continue Reading
-
News
18 Oct 2023
Former Post Office executive admits he wouldn’t sign unfair contract he pushed on subpostmasters
Former contract manager said contract that subpostmasters had to sign with Post Office “put them on the hook” for everything Continue Reading
-
News
17 Oct 2023
Five Eyes issues five tips on thwarting nation state threats
Intelligence chiefs from the UK, Australia, Canada, New Zealand and the US have published guidance on building resilience against nation state cyber threats Continue Reading
-
News
13 Oct 2023
US SEC launches probe into mass MOVEit breach
Progress Software is facing an investigation from the SEC for the breach of its MOVEit tool, as well as dozens of legal battles resulting from the exfiltration of personal data from the roughly 2,000 organisations affected Continue Reading
-
News
13 Oct 2023
‘Angry’ lawyer warned against Post Office computer investigation in 2010 email
Angered by his exclusion from an important discussion, former Royal Mail lawyer told colleagues of the risks to the Post Office if, as planned, they publicly investigate allegations against its computer system Continue Reading
-
News
12 Oct 2023
Scottish biometrics watchdog outlines police cloud concerns
Police Scotland’s response to the biometrics commissioner’s formal information notice ‘did not ameliorate’ his concerns about the sovereignty and security of the sensitive biometric information being uploaded to cloud infrastructure that is subject to intrusive US surveillance laws Continue Reading
-
News
11 Oct 2023
Public sector buyers of AI tech must interrogate its suitability
The Ada Lovelace Institute has published a review on public sector use of artificial intelligence foundation models, looking at the risks and opportunities associated with the technology, and how these can be dealt with from the early stages of procurement onwards Continue Reading
-
News
10 Oct 2023
Canalys sees glimmer of hope in PC sector
The PC industry experienced another quarter of decline, but the outlook is more promising Continue Reading
-
News
05 Oct 2023
Microsoft: Nation-state cyber espionage on rise in 2023
Microsoft’s latest Digital Defence Report outlines how nation-state cyber activity has largely moved from destructive attacks to espionage and intelligence gathering Continue Reading
-
News
04 Oct 2023
ICO issues guidance on workplace surveillance
Guidance on employee monitoring covers how employers can conduct their digital surveillance lawfully, transparently and fairly, and warns against businesses intruding on their workers’ private lives Continue Reading
-
News
03 Oct 2023
Cyber experts urge EU to rethink vulnerability disclosure plans
The European Union’s proposed cyber security vulnerability disclosure measures are well-intentioned but ultimately counterproductive, as making unmitigated vulnerabilities public knowledge increases the risk of their exploitation by various actors, experts claim Continue Reading
-
News
03 Oct 2023
Amnesia hides names of individuals behind Post Office’s ‘head on a spike’ strategy
Former Post Office lawyer deflects individual responsibility for a strategy that crushed subpostmasters, blaming the organisation as a whole Continue Reading
-
News
03 Oct 2023
Public sector needs systemic reform of capacity to innovate
Improving the public sector’s capacity to innovate requires a culture of innovation underpinned by people, skills and new ways of working with the private sector Continue Reading
-
News
29 Sep 2023
First subpostmaster Horizon conviction overturned in Scotland
Scotland has seen its first Post Office Horizon conviction overturned, taking the UK total to 92 Continue Reading
-
News
29 Sep 2023
Government ‘breached privacy’ of Horizon victims with compensation offer, says lawyer
The government breached the privacy of victims of the Post Office Horizon scandal through making a compensation offer public Continue Reading
-
News
29 Sep 2023
Scottish watchdog urges wider biometric oversight
Scotland’s biometrics watchdog urges Scottish Parliament to extend oversight of biometric information to include the entire criminal justice system, not just police Continue Reading
-
News
28 Sep 2023
Businesses disconnected from realities of API security
Business leaders feel confident they’ve got a handle on API security, but at the same time, incidents are through the roof, according to a report Continue Reading
-
Feature
28 Sep 2023
Cloud NAS, what is it good for?
We look at NAS file access storage, how it works, what it’s good for and the possibilities to access storage for files and unstructured data in the public cloud Continue Reading
-
News
27 Sep 2023
Five more subpostmasters have IT system-related convictions overturned
Over 90 former subpostmasters have so far seen wrongful convictions overturned since it was proved that software errors were to blame for accounting shortfalls Continue Reading
-
News
27 Sep 2023
City of Las Vegas masters cyber incident response with Darktrace
The high-rolling city of Las Vegas experiences unique cyber security challenges rarely seen elsewhere. CIO Mike Sherwood reveals how he turned to Darktrace to help address incidents quicker and with confidence Continue Reading
-
Feature
26 Sep 2023
IBM reorients to offset historic storage hardware decline
Storage profile: We look at IBM and the strategic shifts it has made towards the cloud, cloud-native and as-a-service offerings that aim to reverse a long-term decline in revenues Continue Reading
-
News
22 Sep 2023
UK-US data bridge to open to traffic on 12 October
Government forges ahead with the implementation of the UK-US data bridge, which will come into effect for real just under three weeks from now Continue Reading
-
News
22 Sep 2023
Cyber experts set out plan to secure future US elections
A group of experts are setting out to enhance election cyber security in the United States, and restore public faith in a process tainted by interference and misinformation in the past Continue Reading
-
News
19 Sep 2023
New revelations from the Snowden archive surface
A decade after Snowden exposed NSA’s mass surveillance in cooperation with the British GCHQ, only about 1% of the documents have been published – but three major facts can finally be revealed thanks to a doctoral thesis in applied cryptography by Jacob Appelbaum Continue Reading
-
News
19 Sep 2023
Post Office employee changed story for witness statement used to destroy subpostmaster
Post Office inquiry hears how an auditor changed her story about a subpostmaster to help win court battle Continue Reading
-
News
18 Sep 2023
Government offers £600,000 to subpostmasters with overturned convictions
Subpostmasters wrongfully convicted of financial crimes based on evidence from faulty Horizon software will be offered £600,000 compensation by government Continue Reading
-
News
15 Sep 2023
Las Vegas mainstay Caesars Palace likely paid off ransomware crew
Caesars Entertainment, owner of the lavish Roman Empire-themed Caesars Palace casino in Las Vegas, has revealed it also suffered a ransomware attack, and appears to have paid off its hackers Continue Reading
-
News
15 Sep 2023
Manchester police data breach a classic supply chain incident
The developing data breach at Greater Manchester Police follows a cyber attack on the systems of a key supplier of ID services to the force Continue Reading
-
News
14 Sep 2023
Data on over 3,000 Airbus suppliers leaked after breach
An emergent threat actor has leaked details of multiple sensitive Airbus suppliers after claiming to have accessed the firm’s systems having hacked customer Turkish Airlines Continue Reading
-
Feature
14 Sep 2023
CIO interview: Petra Tesch, Vizrt
Straight-talking when it comes to getting her messages across to the wider company, Vizrt CIO Petra Tesch revels in transformation and communication Continue Reading
-
News
14 Sep 2023
As vehicle safety regulations loom, carmakers fret over cyber risks
Global, UN-backed car safety and security regulations come into force next year, and automotive bosses say they are not only unprepared, but “swamped” by a tide of compliance and security risks Continue Reading
-
News
13 Sep 2023
GitHub fixes race condition that could have led to ‘repojacking’
A subtle flaw in how GitHub handled repository creation and user renaming could have had serious consequences for the open source community, but has now been fixed. Learn more about how it worked Continue Reading
-
News
13 Sep 2023
Patch Tuesday: Microsoft fixes zero-days in Word and Streaming Service
September 2023 brings a light Patch Tuesday, with two zero-days and five critical vulnerabilities listed in the latest release Continue Reading
-
News
12 Sep 2023
IT spending in Australia to grow 7.8% in 2024
The growth will be led by investments in cyber security, cloud, analytics and application modernisation as Australian CIOs look to improve cost and operational efficiencies Continue Reading
-
News
11 Sep 2023
Salesforce and Zoom embrace ethical hackers. You should, too
Software companies Salesforce and Zoom discuss their successful bug bounty programmes, what they learned at a recent in-person hackathon in which they participated, and why others shouldn’t be scared of hackers Continue Reading
-
News
08 Sep 2023
HGS to provide contact centre support for One Login
The partnership between the Government Digital Service and Hinduja Global Solutions will see the supplier provide contact centre services for the digital identity platform Continue Reading
-
News
06 Sep 2023
Okta customers targeted in new wave of social engineering attacks
Authentication specialist Okta has warned customers to be on alert for a campaign of social engineering attacks exploiting highly privileged users Continue Reading
-
Feature
05 Sep 2023
HPE storage comes with full IT stack, hybrid cloud and as a service
Storage profile: We look at HPE, its Alletra storage refresh, and Greenlake and the ways the company is re-branding as a full-stack provider across on-prem and hybrid cloud Continue Reading
-
News
05 Sep 2023
Ryder Cup testbed to feature tech firsts in Rome
This year’s Ryder Cup will test out technology to improve how fans digitally consume the event while reducing the workload on IT teams Continue Reading
-
News
04 Sep 2023
LockBit ransomware gang allegedly leaks MoD data after hit on supplier
The UK government appears to have become entangled in a LockBit ransomware attack after data was leaked from a third-party supplier online Continue Reading
-
Opinion
04 Sep 2023
Ethical perspectives on ChatGPT
In the final of three essays, Marc Steen uses ChatGPT as a case study for how to use different ethical perspectives, and practical steps people can take to start incorporating ethics into their projects Continue Reading
-
News
01 Sep 2023
Police Scotland five-year digital strategy approved
Police Scotland’s new strategy outlines how the force will approach and invest in its digital transformation over the next five years, but notes its ability to achieve its ambitions is subject to the availability of funding Continue Reading
-
News
01 Sep 2023
Threat actors exploiting unpatched Juniper Networks devices
A series of vulnerabilities in Juniper Networks firewalls and switches appear to be being exploited in the wild to enable remote code execution, with thousands of devices thought to be exposed Continue Reading
-
News
31 Aug 2023
Home Office and MoD seeking new facial-recognition tech
The UK’s Defence and Security Accelerator is running a ‘market exploration’ exercise on behalf of the Home Office to identify new facial-recognition capabilities for security and policing bodies in the UK Continue Reading
-
News
31 Aug 2023
Teams unbundled in European economic community
Following the European Commission’s antitrust investigation, the tech giant will offer cheaper Office 365 and Microsoft 365 suites without Teams Continue Reading
-
News
30 Aug 2023
Met police data platform deployed with data protection issues
Met Police deploys integrated record management system despite data protection ‘compliance issues' that would inhibit its ability to retrieve data, meet its statutory logging requirements, and respond to subject access requests Continue Reading
-
News
30 Aug 2023
Zurich Insurance slashes ServiceNow application development time
Insurance giant cuts time it takes to complete development of ServiceNow applications by days Continue Reading
-
News
29 Aug 2023
Zero-day that forced Barracuda users to bin kit was exploited by China
Mandiant has published details of how a Chinese threat actor targeted high-profile users of Barracuda Networks' Email Security Gateway appliances, including government agencies of interest to Beijing's intelligence goals Continue Reading
-
News
23 Aug 2023
Innovative UK SMEs spend half of turnover on tech
UK SMEs are increasing spending on technology, with dedicated IT teams set up to enable them to keep pace with tech change Continue Reading
-
News
22 Aug 2023
Met Police data platform £64m over budget
A freedom of information request has revealed that the Met’s Connect integrated record management system is running tens of millions over budget, and has already generated more than 25,000 support requests so far Continue Reading
-
News
22 Aug 2023
Clop’s MOVEit attacks drive ransomware volumes to record high
Such has been the scope of Clop’s activity since May that ransomware attack volumes have more than doubled year on year, according to the latest data Continue Reading
-
Opinion
22 Aug 2023
Alternative perspectives: relational and virtue ethics in tech
In the second of three essays, Marc Steen explores the benefits of grounding ethical considerations in an understanding of social and power dynamics, and how relational and virtue ethics can help Continue Reading
-
21 Aug 2023
Implications of SAP Rise premium strategy
SAP dropped a bombshell during its second-quarter 2023 earning results call that will negatively affect those using S/4Hana on-premise or through a hosted service provider. Continue Reading
-
News
21 Aug 2023
Cyber attack on Aussie energy services firm may hit UK CNI
Energy One, an Australia-based supplier of tech services to the energy sector, is investigating the possibility that some UK customers may have been caught up in an ongoing cyber attack on its systems Continue Reading
-
News
16 Aug 2023
NCSC expands Cyber Incident Response service more widely
The NCSC has added a level to its CIR programme to enable more cyber attack victims to take advantage of the service, which offers access to assured incident response specialists Continue Reading
-
News
15 Aug 2023
Biometrics and surveillance camera commissioner resigns
Dual biometrics and surveillance camera watchdog will step down at the end of October 2023, noting that while he agreed to stay on until the Data Protection and Digital Information Bill received royal assent, continuing delays to its passage means he will not be able to effectively discharge his functions Continue Reading
-
News
14 Aug 2023
CMA provisionally clears US healthcare giant’s purchase of GP IT supplier EMIS
US company UnitedHealth is looking to buy UK healthcare technology firm EMIS in a £1.2bn deal Continue Reading
-
News
11 Aug 2023
Google Help workers claim layoffs are retaliation for unionising
More than 100 Google Help workers claim that Google and Accenture’s decision to layoff two-thirds of the team was done in retaliation for their attempts to form a union, while companies claim decision was made well in advance of unionisation attempt Continue Reading
-
News
10 Aug 2023
Implications of SAP Rise premium strategy
SAP dropped a bombshell during its second-quarter 2023 results call that will negatively impact those using S/4Hana on-premise or through a hosted service provider Continue Reading
-
News
10 Aug 2023
Google speeds up security update frequency for Chrome
Changes to Google’s security update policy are supposed to help close the gap in which cyber criminals can exploit n-day vulnerabilities Continue Reading
-
News
09 Aug 2023
AI interview: Krystal Kauffman, lead organiser, Turkopticon
Remote Mechanical Turk workers are responsible for training artificial intelligence algorithms and completing other data-related business processes - we hear about the workplace issues they face Continue Reading
-
News
09 Aug 2023
Microsoft addresses Office vulnerability attacked by Russian spooks in latest update
Microsoft has issued fixes for over 70 vulnerabilities in its August Patch Tuesday drop, including remedies for CVE-2023-36884, which was disclosed without a fix in July and has been the subject of Kremlin-backed cyber attacks Continue Reading
-
Feature
09 Aug 2023
Huawei a big storage hitter despite international troubles
Huawei is a leading storage player with an enterprise product offer across file, block and object storage, and the cloud, despite controversy and trading difficulties Continue Reading
-
News
07 Aug 2023
Microsoft fixes Azure flaw that was subject of researcher criticism
Microsoft has confirmed a potentially-dangerous flaw in the Azure platform has now been fully fixed, and moved to reassure customers that despite criticism it is committed to responsible disclosure and timely fixes Continue Reading
-
News
07 Aug 2023
HPE’s Alletra MP marries storage to cloud and software-defined choices
HPE’s Alletra was launched in April with an architecture that ties in with GreenLake consumption purchasing, SaaS configuration and addition of software-defined storage services Continue Reading
-
News
04 Aug 2023
SAP called out by German user group for Rise U-turn
German SAP user group Deutschsprachige SAP-Anwendergruppe calls on SAP for clarity around on-premise S/4Hana product enhancements Continue Reading
-
News
04 Aug 2023
Biden’s SBOM mandate a ‘shot heard around the world’, report says
Two years and three months after Joe Biden mandated new standards in supply chain security, over 40% of UK respondents to a survey say they have implemented new SBOM policies in direct response Continue Reading
-
News
03 Aug 2023
UK government recruits panel to focus on semiconductors
A panel of experts is being recruited as part of the government's national semiconductor strategy to ensure the UK’s chip sector can grow Continue Reading
-
News
03 Aug 2023
Microsoft attacked over ‘grossly irresponsible’ security practice
The CEO of Tenable has launched a scathing attack on Microsoft, asserting that the organisation is deliberately keeping its Azure cloud customers in the dark about dangerous vulnerabilities and accusing it of a culture of ‘toxic obfuscation’ Continue Reading
-
News
02 Aug 2023
Ivanti MDM users told to patch against two dangerous flaws
Users of Ivanti’s mobile device management platform have been warned to act now to patch two vulnerabilities that were chained by a threat actor in a series of cyber attacks on the Norwegian government Continue Reading
-
News
02 Aug 2023
Cubbit offers cut-price cloud with DS3 distributed storage
Cubbit’s DS3 offers cloud at up to 20% the cost of the main providers via on-premise software that builds a cloud with other users and targets unstructured data use cases such as backup Continue Reading
-
News
28 Jul 2023
Risks of opening up AI
Meta has annouced that its Llama 2 large language model will be freely available under a community licence with certain restrictions Continue Reading
-
News
27 Jul 2023
Post Office tried to convince independent IT witness that he was wrong about Horizon
‘Delusional’ Post Office tried to influence an expert witness and get him to change his view about IT evidence which was detrimental to its case against a subpostmaster Continue Reading
-
News
26 Jul 2023
Cyber attack on IT supplier hits two major ambulance trusts
Ambulance trusts serving millions across southern England have been hamstrung for the past week after a cyber attack took down their hosted patient records system Continue Reading
-
News
26 Jul 2023
Artificial intelligence puts Microsoft Azure in top gear
Microsoft’s latest quarterly earnings results show the company’s public cloud business was the largest contributor to revenue Continue Reading
-
News
25 Jul 2023
Tetra radio users’ comms may have been exposed for years
A number of flaws in the encryption algorithms used in the secure Tetra radio communications standard have potentially left users exposed to snooping Continue Reading
-
News
25 Jul 2023
Mayor of London announces startup funding
Seven technology startups working on the Mayor of London’s Poverty Prevention Challenge will receive up to £50,000 each to further develop their proposals, designed to help alleviate the cost-of-living crisis for the capital’s most vulnerable Continue Reading
-
Opinion
24 Jul 2023
Transforming the financial system's plumbing
Executive heading up the Bank of England’s core system replacement project says the financial services sector plumbing is getting the attention it deserves. Continue Reading
-
News
24 Jul 2023
Bank of England’s project to replace ‘beating heart’ is foundation for continuous development
The Bank of England has reached a major milestone in its core system replacement programme, with next landmark in sight Continue Reading
-
Feature
21 Jul 2023
What the Product Security and Telecommunications Infrastructure Act means for UK industry
For years, many network-connected devices have lacked adequate security, putting their users and others at risk of cyber attacks. The UK’s PSTI Act aims to prevent this by mandating minimum security requirements, but what impact will this have on industry? Continue Reading