Do you need to backup Microsoft, Google, Dropbox, Box or AWS? This is why you should always do backups to another vendor – watch this!

How Sterling IT survived a data disaster with external backups

Introduction

Sterling IT is a company that provides IT services and solutions to various clients. In 2015, they faced a major data crisis when their vendor, who hosted their email and remote desktop servers, suffered a complete system failure and lost all their data. The vendor had promised to have geolocation backups, but they all failed as well. Fortunately, Sterling IT had their own external backups with different providers, and they were able to restore their clients’ data and operations. This story shows the importance of having external backups and not relying on the source provider alone.

Continue reading “Do you need to backup Microsoft, Google, Dropbox, Box or AWS? This is why you should always do backups to another vendor – watch this!”

Sterling IT in Wetherill Park Sydney NSW partnering

Sterling IT has a client base around Australia, and we are always looking at partnering with reliable, professional and caring IT specialists around Australia, New Zealand and Singapore.

We currently have a number of partners down the eastern seaboard of Australia. We might be located in Sydney however are not restricted by location.

Some of our partners include:

  • Techpath
  • Petras Technology
  • NCC Solutions
  • IT Switch
  • Diamond Creative – Web
  • Sidewinder Computer Services
  • Equipt
  • and some smaller companies as well just to name a few
Continue reading “Sterling IT in Wetherill Park Sydney NSW partnering”

Change and what to do in mandatory notifiable data breach regulations and notifications from 22nd February 2018 in Australia – NDB

The Australia Government is implementing a new initiative with regards to data security and privacy from 22nd Feb 2018, here in Australia.
If an Australia Business has been breached or lost data must report the incident to the privacy commissioner and notify their clients.

Continue reading “Change and what to do in mandatory notifiable data breach regulations and notifications from 22nd February 2018 in Australia – NDB”

New Australian Privacy Act 2014 and how will it affect many

The amendments to the Act are scheduled to come into force on 12 March and will enforce tougher security and privacy requirements on all organisations with an annual turnover of more than $3 million, along with government agencies.

Notable in the changes is the requirement for businesses to go beyond check box compliance where security tools were merely switched on without regard to proper configuration and monitoring; Federal Privacy Commissioner Timothy Pilgrim has stated organisations that fail to detect a breach will fall foul of the amended Act and risk penalty through the courts.

Exactly how far the Office of the Australian Information Commissioner (OAIC) would require organisations to go in purchasing, configuring and monitoring systems is described only as reasonable steps. (pdf Download from Govt Site)

The Privacy Commissioner could impose financial penalties of $1.7 million on serious or repeatedly breached organisations and could compel them to notify national or state newspapers.

CRN spoke to dozens of security and IT managers and engineers, under condition of anonymity. The lack of clarity around the requirement of reasonable steps was a consistent theme.

Only chief security officers at some of the largest Australian organisations claimed the reforms would mean little to them, given their existing strict compliance requirements and large security budgets.

Matt Ramsay, APAC regional director of security vendor Centrify, warned organisations that the uncertainty of the Act was similar to the US Sarbanes-Oxley (SOX) legislation enacted in 2002 to shore up the accuracy of financial reporting.

“While SOX has raised the compliance bar for corporate reporting, it has had the unintended impact of creating a lot of uncertainty because of its lack of precision,” Ramsay said in a statement.

“SOX compliance costs and complexity have run out of control in the US during the past decade. The SOX legislation is prescriptive without being descriptive: It tells you to jump, but not how high. As a result, US corporations need to jump a very high bar indeed to avoid the threat of non-compliance.”

Robson urged caution about conflating the experience of SOX in the US with the new requirements of the Privacy Act.

“The most helpful approach that Privacy Act and security specialists can take in relation to assisting organisations with their new Privacy Act requirements is to provide a sober assessment of what could be reasonably expected of them,” he said.

Source: Darren Pauli CRN 28.1.14