Renana Jhabvala discussing SEWA’s inclusive approach to basic infrastructure services for the urban working poor during the 5th WIEGO General Assembly, Belo Horizonte, Brazil. Renana Jhabvala is the national co-ordinator of the Self Employed Womens Association (SEWA) and Chair of the Women in Informal Employment: Globalizing and Organizing (WIEGO) Board.
Nuxeo Upgrades Its Open Source OSGi-Based Content Management Infrastructure
BOSTON, MA–(Marketwire – 11/09/10) – Nuxeo, the Open Source Enterprise Content Management (ECM) company , announces the latest release of Nuxeo Enterprise Platform , now with native support for JBoss AS 5.1, as well as JBoss EAP 5.0.1. The new 5.4 version of Nuxeo Enterprise Platform (Nuxeo EP) and Nuxeo Document Management (Nuxeo DM) also features support for Apache Chemistry OpenCMIS and …
Read more on Marketwire via Yahoo! Finance
2009 Top Remote Infrastructure Management Outsourcing Vendors, Black Book Survey 2009 Results
Free Online Articles Directory
Why Submit Articles?
Top Authors
Top Articles
FAQ
AB Answers
0 && $.browser.msie ) {
var ie_version = parseInt($.browser.version);
if(ie_version Hello Guest
Login
Register
Hello
My Home
Sign Out
Email
Password
Remember me?
Lost Password?
Home Page > Business > Industrial > 2009 Top Remote Infrastructure Management Outsourcing Vendors, Black Book Survey 2009 Results
2009 Top Remote Infrastructure Management Outsourcing Vendors, Black Book Survey 2009 Results
Posted: Mar 22, 2010 |Comments: 0
| Views: 157
|
2009 Top Remote Infrastructure Management Outsourcing Vendors, Black Book Survey 2009 Results
By: Minal
About the Author
Minal H
SEO
vinod.minal@gmail.com
http://www.aarkstore.com
(ArticlesBase SC #2027354)
Article Source: http://www.articlesbase.com/ – 2009 Top Remote Infrastructure Management Outsourcing Vendors, Black Book Survey 2009 Results
INFRASTRUCTURE OUTSOURCING: A RAPIDLY EVOLVING SERVICE
Traditional Infrastructure Outsourcing – versus -Remote Infrastructure Management Outsourcing – versus – IAAS
Outsourcing suppliers face the strategic dilemma in Infrastructure Outsourcing (IO) services, caused by the convergence of ‘traditional’ (multinational)
and offshore suppliers’ value propositions, a maturing remote infrastructure management delivery model, and adoption of labor
arbitrage by traditional suppliers.
During the last decade, the emergence and
rapid growth of new models of infrastructure services delivery, such as Remote Infrastructure Management (RIMO) and Information Management Services are showing signs of convergence with more traditional ways of delivering infrastructure service.
Offshore RIMO suppliers still hold a minor
share of the IO market; nonetheless, there are increasing signs of the sophistication of RIMO leading to a growing convergence of the models
of infrastructure delivery. The trend poses a challenge for buyers who need to understand the complexities of the offerings and suppliers who
must refine their strategies. The convergence of IO models is driving offshore suppliers to one of three choices:
- Continue to adopt key elements of the traditional infrastructure management outsourcing model,
- Build added value to their remote offering or
- Simply continue to focus on classical RIMO services that rely on labor savings as a key driver.
On the other hand, traditional IO suppliers
are confronted with a simpler, but not less challenging option:
- Focus on end-to-end infrastructure deals that avoid direct competition or develop variations of a converged RIMO/Traditional IO offering with an active role of labor arbitrage.
Evidence of convergence can be seen as offshore suppliers of remote management services are not limiting themselves anymore to targeting smaller companies with a basic labor arbitrage value
proposition.
Large buyers (above US$10 billion in
revenue) now account for 55 percent of the deals signed by offshore suppliers. Although the majority of offshore deals are still based on delivering remote services offshore, RIMO suppliers held 26 percent of more traditional deals in 2008 compared to only five percent in 2004.
KEY CLIENT EXPERIENCE FINDINGS
KEY FINDING: MOST IMPORTANT CUSTOMER SATISFACTION KPIs
Innovation, Trust, Reliability and Deployment are the most important attributes influencing Client Companies’ satisfaction with their infrastructure outsourcing providers.
KEY FINDING: ITO INFRASTRUCUTRE VENDOR SATISFACTION IS HIGHEST AMONG MIDMARKET VENDORS
Clients with annual revenues from $500M to $1B are significantly more satisfied with their Infrastructure Outsourcer than are Large Market Cap clients.
KEY FINDING: US VENDORS ARE SIGNIFICANTLY PREFERRED BY US CLIENTS
Latin American alternatives are challenging Indian infrastructure vendors as they evolve, although two vendors, HCL and TCS are commanding market growth share and commanding global user respect.
Table of Contents :
Introduction 6
Summary of Results 14
Overall Top Performers 18
Methodology & Overview 19
Ranking of ITO Infrastructure Vendors by Service Line
Ranking of REMOTE INFRASTRUCTURE MANAGEMENT OUTSOURCING VENDORS”
Industry: Sourcing: IT Outsourcing
Companies Mentioned
EDS, IBM, ACCENTURE, HEWLETT PACKARD, PEROT SYSTEMS, T SYSTEMS, CSC, WIPRO INFOCROSSING, ATOS ORIGIN, CAPGEMINI, HCL TECHNOLOGIES, TATA CONSULTANCY SERVICES, UNISYS, ACS, INFOSYS, GETRONICS, LOGICA, COGNIZANT, MAHINDRA SATYAM, CIBER, ONE NECK, CH2M HILL MANAGED SERVICES, IBM GLOBAL, ITC INFOTECH, MICROLAND, COMPUCOM, N FRAME, ACCEL FRONTLINE, ATG CORPORATE SOLUTIONS, CONNECTRIA, VERIZON, DIGICA,
COMPUCOM, BLUE HILL DATA SERVICES, OAO TECHNOLOGY SOLUTIONS, LARSEN & TOUBRO INFOTECH,
TECH MAHINDRA, SIEMENS BUSINESS SOLUTIONS, TECHTEAM, POMEROY IT, LIONBRIDGE, NIIT TECHNOLOGIES, LUXOFT, TIETO ENATOR, CPM BRAXIS, STEFANINI, ORACLE, SAP, PATNI, SUN MICROSYSTEMS, NORTHROP GRUMMAN, SAIC, CGI, S & T GROUP, DELL, HITACHI, CSS CYBERNET SLASHSUPPORT, CALENCE, WEBULANT, BT GLOBAL, CA, VERISIGN, ENTRUST, EMC, MICROSOFT, FUJITSU, ACXIOM, COMPUTACENTER, IGATE, STERLING COMMERCE, PROGRESS SOFTWARE, REDHAT – JBOSS, TIBCO SOFTWARE, E2E TECHNOLOGIES, IWAY SOFTWARE, FIORANO SOFTWARE, TMAX SOFT, NEC, ENTRUST, FIDELITY INFO SYSTEMS – FNIS, ATG CORPORATE, TERRADATA, NETEZZA, SYBASE, GREENPLUM, SAND TECHNOLOGIES, VERTICA, NETAPP, BROCADE, SYMANTEC, VIRTELA, HTC, BABLASOFT, CISCO, RSA, ACCEL FRONTLINE”
Keywords
Information, Technology, Outsourcing, Infrastructure, vendors, APPLICATIONS, MONITORING, HELP, DESK, SERVICES, DATA, CENTER SERVICES, DESK, TOP, SUPPORT, STORAGE, SERVERS, LAN, WAN, NETWORK, MANAGEMENT, SECURITY, DISASTER, SERVICES, INFRASTRUCTURE-AS-A-SERVICE, CLOUD COMPUTING, REMOTE, INFRASTRUCTURE , RIMO, OFFSHORING, INFRASTRUCTURES, VIRTUALIZATION, IAAS, support, networks, systems, SaaS, ITO
In 2009, the Black Book IT Infrastructure Management Outsourcing client/user survey investigates over 700 contracts held by 3100 of the top ITO spending corporations and organizations globally.
INFRASTRUCTURE OUTSOURCING: A RAPIDLY EVOLVING SERVICE
Traditional Infrastructure Outsourcing – versus -Remote Infrastructure Management Outsourcing – versus – IAAS
Outsourcing suppliers face the strategic dilemma in Infrastructure Outsourcing (IO) services, caused by the convergence of ‘traditional’ (multinational)
and offshore suppliers’ value propositions, a maturing remote infrastructure management delivery model, and adoption of labor
arbitrage by traditional suppliers.
During the last decade, the emergence and
rapid growth of new models of infrastructure services delivery, such as Remote Infrastructure Management (RIMO) and Information Management Services are showing signs of convergence with more traditional ways of delivering infrastructure service.
Offshore RIMO suppliers still hold a minor
share of the IO market; nonetheless, there are increasing signs of the sophistication of RIMO leading to a growing convergence of the models
of infrastructure delivery. The trend poses a challenge for buyers who need to understand the complexities of the offerings and suppliers who
must refine their strategies. The convergence of IO models is driving offshore suppliers to one of three choices:
- Continue to adopt key elements of the traditional infrastructure management outsourcing model,
- Build added value to their remote offering or
- Simply continue to focus on classical RIMO services that rely on labor savings as a key driver.
On the other hand, traditional IO suppliers
are confronted with a simpler, but not less challenging option:
- Focus on end-to-end infrastructure deals that avoid direct competition or develop variations of a converged RIMO/Traditional IO offering with an active role of labor arbitrage.
Evidence of convergence can be seen as offshore suppliers of remote management services are not limiting themselves anymore to targeting smaller companies with a basic labor arbitrage value
proposition.
Large buyers (above US$10 billion in
revenue) now account for 55 percent of the deals signed by offshore suppliers. Although the majority of offshore deals are still based on delivering remote services offshore, RIMO suppliers held 26 percent of more traditional deals in 2008 compared to only five percent in 2004.
KEY CLIENT EXPERIENCE FINDINGS
KEY FINDING: MOST IMPORTANT CUSTOMER SATISFACTION KPIs
Innovation, Trust, Reliability and Deployment are the most important attributes influencing Client Companies’ satisfaction with their infrastructure outsourcing providers.
KEY FINDING: ITO INFRASTRUCUTRE VENDOR SATISFACTION IS HIGHEST AMONG MIDMARKET VENDORS
Clients with annual revenues from $500M to $1B are significantly more satisfied with their Infrastructure Outsourcer than are Large Market Cap clients.
KEY FINDING: US VENDORS ARE SIGNIFICANTLY PREFERRED BY US CLIENTS
Latin American alternatives are challenging Indian infrastructure vendors as they evolve, although two vendors, HCL and TCS are commanding market growth share and commanding global user respect.
Table of Contents :
Introduction 6
Summary of Results 14
Overall Top Performers 18
Methodology & Overview 19
Ranking of ITO Infrastructure Vendors by Service Line
Ranking of REMOTE INFRASTRUCTURE MANAGEMENT OUTSOURCING VENDORS”
Industry: Sourcing: IT Outsourcing
Companies Mentioned
EDS, IBM, ACCENTURE, HEWLETT PACKARD, PEROT SYSTEMS, T SYSTEMS, CSC, WIPRO INFOCROSSING, ATOS ORIGIN, CAPGEMINI, HCL TECHNOLOGIES, TATA CONSULTANCY SERVICES, UNISYS, ACS, INFOSYS, GETRONICS, LOGICA, COGNIZANT, MAHINDRA SATYAM, CIBER, ONE NECK, CH2M HILL MANAGED SERVICES, IBM GLOBAL, ITC INFOTECH, MICROLAND, COMPUCOM, N FRAME, ACCEL FRONTLINE, ATG CORPORATE SOLUTIONS, CONNECTRIA, VERIZON, DIGICA,
COMPUCOM, BLUE HILL DATA SERVICES, OAO TECHNOLOGY SOLUTIONS, LARSEN & TOUBRO INFOTECH,
TECH MAHINDRA, SIEMENS BUSINESS SOLUTIONS, TECHTEAM, POMEROY IT, LIONBRIDGE, NIIT TECHNOLOGIES, LUXOFT, TIETO ENATOR, CPM BRAXIS, STEFANINI, ORACLE, SAP, PATNI, SUN MICROSYSTEMS, NORTHROP GRUMMAN, SAIC, CGI, S & T GROUP, DELL, HITACHI, CSS CYBERNET SLASHSUPPORT, CALENCE, WEBULANT, BT GLOBAL, CA, VERISIGN, ENTRUST, EMC, MICROSOFT, FUJITSU, ACXIOM, COMPUTACENTER, IGATE, STERLING COMMERCE, PROGRESS SOFTWARE, REDHAT – JBOSS, TIBCO SOFTWARE, E2E TECHNOLOGIES, IWAY SOFTWARE, FIORANO SOFTWARE, TMAX SOFT, NEC, ENTRUST, FIDELITY INFO SYSTEMS – FNIS, ATG CORPORATE, TERRADATA, NETEZZA, SYBASE, GREENPLUM, SAND TECHNOLOGIES, VERTICA, NETAPP, BROCADE, SYMANTEC, VIRTELA, HTC, BABLASOFT, CISCO, RSA, ACCEL FRONTLINE”
Keywords
Information, Technology, Outsourcing, Infrastructure, vendors, APPLICATIONS, MONITORING, HELP, DESK, SERVICES, DATA, CENTER SERVICES, DESK, TOP, SUPPORT, STORAGE, SERVERS, LAN, WAN, NETWORK, MANAGEMENT, SECURITY, DISASTER, SERVICES, INFRASTRUCTURE-AS-A-SERVICE, CLOUD COMPUTING, REMOTE, INFRASTRUCTURE , RIMO, OFFSHORING, INFRASTRUCTURES, VIRTUALIZATION, IAAS, support, networks, systems, SaaS, ITO
For More information please contact :
Retrieved from “http://www.articlesbase.com/industrial-articles/2009-top-remote-infrastructure-management-outsourcing-vendors-black-book-survey-2009-results-2027354.html”
(ArticlesBase SC #2027354)
Minal -
About the Author:
Minal H
SEO
vinod.minal@gmail.com
http://www.aarkstore.com
Rate this Article
vote(s)
0 vote(s)
Feedback
RSS
Print
Email
Re-Publish
Article Tags:
information, technology, outsourcing, infrastructure, vendors, applications, monitoring, help, desk, services, data, center services, top, support, storage, servers, lan, wan, network, management, security, disaster
Latest Industrial Articles
More from Minal
Microsoft, HP Announce ‘Infrastructure-to-App’ Partnership
A new three-year deal deal will see the companies work on turnkey packages that simplify deployments (02:24)
How To Setup ASP.NET AJAX – Our Focus in This Series
Focusing on behind-the-scene infrastructures. Learn how to build the infrastructure to add Personalization, Client Callable Web Services, Security and Profiling your Web Applications. (01:28)
How to use Symantec Backup Exec for Windows Servers
Check out the review of the 2010 R2 version here:
http://webinformant.tv/symbackup2010.html
(04:48)
Sendmail’s Sentrion for Enterprise Message Management
Sendmail isn’t your father;’s SMTP server. Sentrion is a fairly sophisticated messaging server that has wide-ranging policy management for data leak protection, message encryption, email sender reputation, and message routing purposes.
Price: Less than $13 per user, with a minimum of 1000 users.
Pros:
• Very complex message routing processes can be constructed for a wide variety of purposes
• Compliance and governance can be built into messaging infrastructure
(05:23)
Concierge services you can afford.
BusinessWeek features AskSunday as an affordable solution to get some basic outsourced help throughout the month. (03:30)
In 2009, the Black Book IT Infrastructure Management Outsourcing client/user survey investigates over 700 contracts held by 3100 of the top ITO spending corporations and organizations globally.
By:
Minall
Business>
Industriall
Mar 22, 2010
In 2009, the Black Book IT Infrastructure Management Outsourcing client/user survey investigates over 700 contracts held by 3100 of the top ITO spending corporations and organizations globally
By:
Minall
Business>
Industriall
Mar 22, 2010
In 2009, the Black Book IT Infrastructure Management Outsourcing client/user survey investigates over 700 contracts held by 3100 of the top ITO spending corporations and organizations globally.
By:
Minall
Business>
Industriall
Mar 22, 2010
Aarkstore announce a new report”2009 Top Mid Tier Infrastructure Management Outsourcing Vendors, Black Book Survey 2009 Results”through its vast collection of market reserach report
By:
Minall
Businessl
Jun 28, 2010
Aarkstore announce a new report”2009 Top Tier 1 Infrastructure Management Outsourcing Vendors, Black Book Survey 2009 Results”through its vast collection of market reserach report
By:
Minall
Businessl
Jun 28, 2010
Multi-user Vs Client Server Application
here is no denying the fact that the server is a multi-user computer where there is no unusual hardware prerequisite that turns a computer into a server and as such the hardware platform needs to be preferred based on application demands and financial stringency. Servers for client/server applications work unsurpassed when they are configured with an operating system that supports shared memory, application isolation, and preemptive multitasking.
By:
Kh. Atiar Rahmanl
Computers>
Information Technologyl
Aug 18, 2007
lViews: 942
lComments: 1
Electronic Marketing in the production facility
Dynamic marketing has many different uses on the shop floors of industrial factories and other places of work. Its focal use it to impart data to operatives, like production quotas, new working practices, health and safety issues, visiting fat cats and vital reminders linked with the day to day running of the organization. Any number of LCD menu boards can be based on the factory floor, depending on the size of area and number of staff.
By:
Graham Gallagherl
Business>
Industriall
Nov 09, 2010
Industrial Lift Tables Help Decrease Employee Injury
Industrial Lift Tables are high quality ergonomic solution to increase productivity, efficiency, safety and reduce workplace injury. Contact R & D Ergo Canada, for all types of lift tables & material handling equipment.
By:
Richard Lapointel
Business>
Industriall
Nov 09, 2010
Complete Servo Motor Repair & Servo Drive Repair in USA, Canada
For complete Repairs & Services of Servo Motor, Ampion Industrial Servo & Controls Repair Inc. an USA, Canada based company is always here to resolve your Servo Motor faults and provide complete customer satisfaction and best viable, cost effective, high standards quality at affordable prices which is best available in the repair industry.
By:
repairservol
Business>
Industriall
Nov 09, 2010
Renewable Energy Market in BRIC (Brazil, Russia, India, China) Countries
Bharatbook added a new report on “Renewable Energy – BRIC (Brazil, Russia, India, China) Industry Guide” which gives the analysis and forecast on Renewable energy market in BRIC Countries.
By:
bharatbookl
Business>
Industriall
Nov 09, 2010
The water filling machines industry created its own water culture
Bottled water consumption has grown exponentially over the past ten to fifteen years. This growth has taken place globally, but particularly in Europe and North America. The water filling machines industry has literally created its own water culture. For example, when one enters a gas station, grocery store or a restaurant in any country of the world, one is bound to find at least a few different brands of bottled water.
By:
sunnyl
Business>
Industriall
Nov 09, 2010
Plastic pipe extrusion line is increasingly replacing wood and metal for a variety of applications, is corroded where resistance against plastic conditions in rotting wood and metal particularly useful, for example in the field of design for the construction of doors and windows in the automobile industry to make vehicles components.
By:
sunnyl
Business>
Industriall
Nov 09, 2010
When Sterile Pipette Tips are not Clean Enough
Especially now, it’s critical that time and money are not wasted on lab results that fail because of sample-altering pipette tips. High-performance tips need to be free of any bioactive components, be it from external contamination or the plastic itself. From raw material selection, clean production, to safe packaging, RAININ’s 100% inert BioClean tips are the purest and safest on the market.
By:
Marie-Louisel
Business>
Industriall
Nov 09, 2010
Ore Washing Machine is applicable in washing, classifying and impurity removal in the industries such as metallurgy, constructiion material and hydroelectric power, machine of this series is applicable in washing work of fine size and coarse size materials.
By:
zhou yanjiel
Business>
Industriall
Nov 09, 2010
Aarkstore Enterprise -The Top 10 Companies in the Hospital Pharmaceutical Market in China: Growth
Aarkstore announce a new report ” The Top 10 Companies in the Hospital Pharmaceutical Market in China: Growth strategies, performance and SWOT analyses” through its vast collection of market research
By:
Minall
Healthl
Nov 09, 2010
Aarkstore announce a new report ” New Approaches to Gaining Market Access for Pharmaceuticals: Pricing & Reimbursement, Policy Development, and the Role of HTAs” through its vast collection of market research report.
By:
Minall
Healthl
Nov 09, 2010
Aarkstore Enterprise -The Future of Premium, Ethical and Healthy Snacks: The factors shaping
Aarkstore announce a new report ” The Future of Premium, Ethical and Healthy Snacks: The factors shaping innovation and key manufacturer opportunities
” through its vast collection of market research
By:
Minall
Food and Beveragel
Nov 09, 2010
Aarkstore announce a new report “Green Energy in China: Renewable sources, capacity growth and the future outlook ” through its vast collection of market research report.
By:
Minall
Businessl
Nov 09, 2010
Aarkstore Enterprise -The Top 10 CMOs in India: Market dynamics, competitive positioning and trends
Aarkstore announce a new report ” The Top 10 CMOs in India: Market dynamics, competitive positioning and trends” through its vast collection of market research report.
By:
Minall
Businessl
Nov 09, 2010
Aarkstore Enterprise -Next Generation Energy Food and Drinks: Success strategies for consumer targe
Aarkstore announce a new report “Next Generation Energy Food and Drinks: Success strategies for consumer targeting, natural and sustained release energy ” through its vast collection of market research
By:
Minall
Food and Beveragel
Nov 09, 2010
Aarkstore announce a new report “”The Medical Device Outlook in Emerging Markets: The role of healthcare and regulatory systems in presenting challenges and growth opportunities ” through its vast collection of market research report.
By:
Minall
Healthl
Nov 09, 2010
Aarkstore announce a new report ” The Future of Parenteral Nutrition: Key players, disease specific opportunities and market forecasts” through its vast collection of market research report.
By:
Minall
Healthl
Nov 09, 2010
Add new Comment
Your Name: *
Your Email:
Comment Body: *
Verification code:*
* Required fields
Submit
Your Articles Here
It’s Free and easy
Sign Up Today
Author Navigation
My Home
Publish Article
View/Edit Articles
View/Edit Q&A
Edit your Account
Manage Authors
Statistics Page
Personal RSS Builder
My Home
Edit your Account
Update Profile
View/Edit Q&A
Publish Article
Author Box
Minal has 1383 articles online
Articles Categories
All Categories
Advertising
Arts & Entertainment
Automotive
Beauty
Business
Careers
Computers
Education
Finance
Food and Beverage
Health
Hobbies
Home and Family
Home Improvement
Internet
Judaism
Law
Marketing
News and Society
Relationships
Self Improvement
Shopping
Spirituality
Sports and Fitness
Technology
Travel
Writing
Agriculture
Ask an Expert
Business Ideas
Business Opportunities
Corporate
Customer Service
Entrepreneurship
Ethics
Franchise
Fundraising
Home Business
Human Resources
Industrial
International Business
Leadership
Management
Negotiation
Networking
Non Profit Organizations
Online Business
Organizational
Outsourcing
Presentation
Project Management
Public Company
Public Relations
Sales
Six Sigma
Small Business
Strategic Planning
Team Building
Training
Need Help?
Contact Us
FAQ
Submit Articles
Editorial Guidelines
Blog
Site Links
Recent Articles
Top Authors
Top Articles
Find Articles
Site Map
Webmasters
RSS Builder
RSS
Link to Us
Business Info
Advertising
Use of this web site constitutes acceptance of the Terms Of Use and Privacy Policy | User published content is licensed under a Creative Commons License.
Copyright © 2005-2010 Free Articles by ArticlesBase.com, All rights reserved.
www.hp.com – Something interesting happens when technical intelligence and business intelligence are combined with a person you can actually have a conversation with.
Defending the email infrastructure: Why email requires comprehensive protection
Free Online Articles Directory
Why Submit Articles?
Top Authors
Top Articles
FAQ
AB Answers
0 && $.browser.msie ) {
var ie_version = parseInt($.browser.version);
if(ie_version Hello Guest
Login
Register
Hello
My Home
Sign Out
Email
Password
Remember me?
Lost Password?
Home Page > Computers > Security > Defending the email infrastructure: Why email requires comprehensive protection
Defending the email infrastructure: Why email requires comprehensive protection
Posted: Dec 15, 2009 |Comments: 0
|
Defending the email infrastructure: Why email requires comprehensive protection
By: MFrizzi
About the Author
This article was provided by Sophos and is reproduced here with their full permission. Sophos provides full data protection services including: security software, encryption software, antivirus, and malware.
(ArticlesBase SC #1584917)
Article Source: http://www.articlesbase.com/ – Defending the email infrastructure: Why email requires comprehensive protection
Defending the email infrastructure
Why email requires comprehensive protection
The increasing risk from email
It is impossible to imagine business without email.
According to analysts The Radicati Group, a typical employee spends 19 percent of their working day using email1, while IDC Research estimates that 97 billion messages are sent worldwide each day2.
As more of the world goes online, the popularity of email – and the business world’s almost complete reliance on it – will grow.
The proliferation and ease of use of email does, however, open it to abuse. Spammers bombard users with unsolicited messages daily or even more frequently, and organized criminal gangs systematically use email to disseminate malware and commit identity theft.
The barrage is relentless: in 2007 just 5 percent of all emails sent were legitimate, the other 95
percent of messages being spam or containing malicious links3.
Organizations also need to ensure that their own employees use email systems appropriately.
The spread of dubious content and malware via email has the potential to cause offense and reflects negatively on an organization. Inadequate protection of the email infrastructure no longer just costs businesses in terms of time, but also leads to bad public relations, lost revenue, damaged share prices and financial penalties in the form of fines and lawsuits.
What is more, it is estimated that 80 percent of an organization’s operational records are stored within the email infrastructure, and so it is easy to see how business-critical data can fall into unauthorized hands.
As the continued growth in external threats is compounded by internal threats, an email security solution must serve a dual purpose:
Block spam, phishing and malware attacks
Ensure that organizations control their intellectual property and avoid costly compliance mishaps.
Defending the email infrastructure: why email requires comprehensive protection
Overview of the email infrastructure
Email is a system constructed of multiple components that play differing roles. To ensure that each component delivers maximum performance, email security must also take a multi-layered approach. A basic email infrastructure is made up as follows.
Email gateway – also known as the email boundary or perimeter. This is the first line of email contact between your organization and the outside world. It is the point through which all inbound and outbound email travels.
Email server – in addition to all inbound and outbound mail, the email server handles all internal email, and acts as a storage depot for mail not yet downloaded by the email client.
Endpoint – the desktops and laptops and other devices, such as Blackberries and mobile phones,
that run email clients.
The inbound threat
In terms of volume, the most significant threat to the email infrastructure comes from external spammers and cybercriminals. They have long used email to advertise their merchandise and breach security defenses, and are constantly adapting their tactics in an attempt to bypass current security measures.
Spam
Spammers use increasingly creative ways to obfuscate their sales slogans, hiding them inside pdf attachments, images or even mp3 files.
Such techniques all attempt to outmanoeuvre traditional email filters, providing spammers with an unobstructed path to user inboxes.
Spammers have also become very adept at using social engineering to disguise the true content of a message in order to trick recipients into opening it and clicking on any weblink contained inside.
While a user may think they are accessing a YouTube video, e-card or software upgrade, they might end up accessing a website selling male enhancement pills, counterfeit branded goods, or indeed anything.
“Pump-and-dump” campaigns are also increasing in popularity. This tactic sees spammers talk up a public company’s prospects in order to falsely inflate its share value, allowing them to sell their shares and realize a substantial capital gain.
Phishing, spear phishing and whaling
Phishing involves sending out emails that appear to come from reputable retailers, banks or credit card companies. These emails lure victims to fake websites that are almost exact replicas of the real thing. From here criminals capture usernames and passwords, bank account numbers and PINs. In October 2007, 31,560 phishing campaigns were reported to the Anti-Phishing Working Group (APWG), with 120 different brands hijacked4.
Spear phishing is a phish attack launched at a specific organization. An email appearing to
come from a trusted source, e.g. the CEO or IT administrator, tricks employees into providing network passwords, intellectual property and confidential data.
Defending the email infrastructure: why email requires comprehensive protection
Whaling is a highly targeted phish attack directed at a high profile individual, such as a journalist, celebrity or business leader.
Malware and blended threats
In 2007, 1 in 909 emails contained malware, a sharp decline from 2005, when the figure stood at 1 in 446. While this figure might appear a positive move downwards, in reality, it only serves to highlight that cybercriminals have adopted more sophisticated techniques with which to infiltrate corporate networks. A popular tactic is to spam out emails containing weblinks that point recipients towards websites hosting malicious code. These emails contain no malware themselves, and so are more likely to bypass perimeter defenses.
Directory harvesting
Hackers use directory harvesting to continually probe an organization’s email server, guessing at email names and formats in order to gather bona fide addresses, which they can either use or sell on to other cybercriminals. The sheer number of server requests – and subsequent non-delivery receipts – can, in extreme cases, cause the server to fail, leaving the organization without email.
Inappropriate content and PUAs
Most organizations accept the occasional use of their email systems for personal reasons. However,
there is a risk that personal emails can harm the organization’s reputation if an employee is receiving pornographic or violent content. Incoming personal emails can also add extra strain to the network, especially if they contain large music, gaming or video files. Potentially unwanted applications (PUAs) such as remote access tools and automatic dialers, can also be difficult to manage and drain network resources.
The outbound threat
Email leaving networks is smaller in absolute volume than incoming messages, but it poses similar risks in terms of security and compliance.
Inappropriate content
Few organizations will allow pornography or other offensive content to be sent from their network, but the threat can come from a more innocent source.
Family photos and videos, links to non-business web sites and other personal content consume bandwidth and can negatively affect the image of the company if sent to unintended recipients.
Data leakage
According to IDC email is the number one source of leaked business information 7, and these leaks are usually accidental. For example, many email clients use an auto-complete feature when typing names in the ‘To:’ field, to help reduce the amount of typing. However, this feature makes it easy to inadvertently add an unintended recipient.
Research shows that half of employees have sent an email containing embarrassing or sensitive information to people by mistake8.
Why spam works
»» Millions of messages can be sent out in seconds through compromised computers.
»» Unlike physical mail, it costs virtually nothing to send spam.
»» Recipients respond to it. In February 2007, 5 percent of computer users admitted to buying goods sold via spam and by November 2007 this had risen to 11 percent5.
Vulnerable information
»» Personally identifiable information (PII)
»» Financial statements
»» Trade secrets
»» Customer lists
»» Business plans
Defending the email infrastructure: why email requires comprehensive protection
The Radicati Group also found that 77 percent of business users have, at times, forwarded businessrelated emails to their personal accounts9. This might help employees work more flexibly, but it represents a hole in the organization’s defenses and is particularly worrying for firms operating in highly regulated industries.
Botnets
Hijacked computers can become part of a botnet and, unknown to their owner, launch malware, spam or distributed denial of service (DDoS) attacks. Botnets will impact on network processing speeds and damage reputations, as offending messages will appear to come from a legitimate source. In extreme cases, an organization can find its domains and/or IP ranges are blocked by service providers and other institutions.
The internal threat
Many of the outbound and inbound threats are also found in internal email. Data leakage between departments, the circulation of inappropriate content and the distribution of non-essential applications all put email infrastructures at unnecessary risk.
In addition, the rise of regulatory compliance governing the security, storage and retrieval of information also has a direct impact on email use. With email often acting as the “corporate memory”, businesses must adopt strategies that keeps information safe and easy to locate. Under many countries’ laws, organizations are obliged to keep all recorded communications, including email. If they are later required in court, the absence of archived emails will be regarded as negligent.
A four-step approach to email defence
step one
Protect the gateway
The central pillar in the defense against email abuse is gateway protection, which should scan all inbound and outbound messages for spam. The Gartner Group recommends that 97 percent should be blocked or quarantined11. To achieve this the anti-spam engine must be able to detect new and emerging campaigns, using techniques such as reputation filtering, pattern matching, URL detection and image and attachment fingerprinting.
Multiple techniques are important as spammers use many tactics to evade spam filters.
In the same scan, emails identified as being part of a phishing attack, or containing viruses, spyware and unwanted attachments must also be blocked.
Organizations should also be able to choose how to handle encrypted, corrupt or suspicious messages. Gateway protection should guard against known and unknown (or zero day) attacks by incorporating sophisticated Host Intrusion Prevention System (HIPS) technologies, in addition to rapid signature updates. HIPS technologie proactively scan messages and their attachments and analyze likely behavior before any code executes, reducing the risk of a breach. The best products will provide proactive protection against new threats, even before specific detection rules are announced.
Gateway protection should also scan mail for sensitive or confidential content. Powerful content filtering and monitoring will prevent data leakage, protect valuable assets and ensure compliance with legal and regulatory requirements. This includes the ability to search for keywords, regular expressions and file types, as well as enforcing lists of allowed senders.
Protection at the gateway will also identify and provide an alert if an organization’s email server or endpoint computers have become part of a botnet. By assessing outgoing mails for spam- and malware-like traits, a business can ensure its infrastructure is used only for legitimate purposes.
step two
Defend the email server
Protection at the email server brings two benefits:
Spam or malware for which protection might not have been available when it passed through the gateway can be captured here
Internal threats sent between departments and not through the gateway can be blocked.
Scanning interdepartmental emails for spam, malware, unwanted content and sensitive information is critical. An employee might, for example, unwittingly visit an infected website and share the link with colleagues via email, thereby placing more endpoint computers at risk of infection. Equally, while the HR department might need to share confidential information about staff members, such as salary increases for example, scanning of the mail server will ensure that this data is not shared across the organization.
This level of defense will also protect message stores, ensuring that an organization’s email archives and those messages not yet downloaded to the local client remain malware-free.
step three
Secure the endpoint
Endpoint protection should underpin an organization’s security strategy, as it is the end user, and his or her confidential information, that is the ultimate target of any attacks. Cybercriminals attack the endpoint via numerous vectors, including websites, email, instant messaging (IM), P2P networks and USB drives. Once infected, computers can be hijacked to spy on corporate networks, steal network resources and unleash attacks on others.
Any endpoint defense also needs to take into the account the different operating systems that are in use. While the majority of computers use Windows a significant number of users operate Mac and Linux computers, and these are equally at risk.
The first ever virus for the Mac OS X platform (which spread using IM) was discovered in 2006 and a year later a Mac-targeting Trojan – malware that poses as something more benign – was also discovered12. Both attacks relied on the behavior of the user, not just the vulnerability of the operating system. This is why endpoint security requires protection for all major operating systems.
step four
Control access to the network
Network access control (NAC) manages who and what connects to your system, protecting
data and ensuring compliance with all regulatory requirements.
An effective NAC solution continuously assesses against defined policies the computers of guests employees who work out of the office, and unknown users. It can verify, for example, that anti-malware and firewall applications are up to date, security patches are installed, and prohibited applications are not being used.
A preventive approach to NAC stops problems before they happen by combining pre- and postconnect assessment of computers with multiple remediation and enforcement options. NAC will allow you to quickly define endpoint security and acceptable use policies (AUPs) for all end-user scenarios so you can detect and fix managed endpoint vulnerabilities before infection, quarantine infected computers and block unauthorized computers.
Choosing the right solution
Every organization has a point at which enforcement and/or management adds too much expense or overhead so as to offset the benefit of security. Even for large organizations with dedicated IT security departments, the less time spent on day-to-day administration, the better.
An effective security solution should be assessed against a wide ranging criteria:
High mail processing volumes that can handle millions of messages per day
A single scan that can identify spam, malware, data leakage, and all unnecessary applications
Small and rapid updates with minimal footprint
Directory services integration for simple and central enforcement of AUPs on an individual, workgroup or departmental basis
Powerful reports that deliver data on the integrity of the whole email system
A single consolidated view of all email traffic, even in multiple server environments
Performance monitoring that automatically alerts the administrator if corrective action is required
Managed appliances that can be remotely monitored and maintained by the vendor
A single vendor for streamlined deployment, management, maintenance and support.
Summary
Email threats continue to grow and can come from inside and outside an organization, while increasing regulatory compliance places additional demands on how email is managed and protected. Deploying defenses in depth – at the gateway, the email server and the endpoint – will close many security holes. Organizations should seek out solutions that, in addition to offering the best possible security, minimize the impact on network and IT department resources.
Retrieved from “http://www.articlesbase.com/security-articles/defending-the-email-infrastructure-why-email-requires-comprehensive-protection-1584917.html”
(ArticlesBase SC #1584917)
MFrizzi -
About the Author:
This article was provided by Sophos and is reproduced here with their full permission. Sophos provides full data protection services including: security software, encryption software, antivirus, and malware.
Rate this Article
vote(s)
0 vote(s)
Feedback
RSS
Print
Email
Re-Publish
Article Tags:
malware, antivirus, firewall, system security, windows, vpn, encryption, security software, anti malware, email security, nac, network access control
Latest Security Articles
More from MFrizzi
How to Protect your messaging network with SecureComputing’s Secure Mail
Learn how to use Secure Computing’s Secure Mail email security appliance combines several different but complementary protection technologies for both inbound and outbound emails in one easy-to-setup box.
Secure Computing www.securecomputing.com 1-800-379-4944
55 Almaden Boulevard, Suite 500, San Jose, CA 95113
(04:53)
Beginner’s Guide to Thunderbird – #9 – Privacy Settings in Thunderbird
E-mail privacy is important to you… and if it’s not, it probably should be. Think about all the private and personal information that’s sent through email. Think too that an email is considered to be as good as a signature in an increasing number of situations and jurisdictions and email security becomes that much more important. Thunderbird protects your email security and privacy by putting you in control. (02:13)
iPhone Security Flaw in 2.0.2 with fix
There is a Security Flaw with the iPhone running the Firmware version 2.0.2 this flaw potentially gives a person access to your email account and contacts when you have your iPhone locked. There is a quick but not permanent fix in the video (01:23)
How to Encrypt emails using Voltage Security Network
Learn how to use VSN, a plug-in for Outlook/Outlook Express that makes for sending and receiving encrypted emails literally a snap. There is a Web portal for users outside the enterprise, and a secure file transfer application add-on to Windows Explorer as well.
http://voltage.com/products/vsn.htm
(05:32)
Firefox 101 – #10 – Online Safety and Security in Firefox
Firefox offers a good balance of security and convenience. When visiting a web site, for example, your banking site, you can view the security certificate and other information associated with that site.
For sites that don’t contain quite such personal and personally identifying information, you can opt to have Firefox remember passwords for you. This is convenient but not recommended for things like online banking, sensitive email accounts and so on.
(02:00)
NAC at the endpoint: Control your network through device compliance
Protecting IT networks used to be a straightforward case of encircling computers and
servers with a firewall and ensuring that all traffic passed through just one gateway.
However, the increase in mobile workers, numbers and type of device and the amount of
non-employees requiring network access, has led to a dissolving of that network perimeter.
Access requests can come from anyone and anywhere, which is why organizations are
turning to network access control (NAC) technologies. This paper disc
By:
MFrizzil
Computers>
Securityl
Dec 15, 2009
NAC 2.0: A new model for a more secure future
As organizations turn to network access control (NAC) technologies to protect their networks
and data, the flaws of earlier versions of NAC are becoming apparent. New pressures from
a constantly changing threat environment and an increasingly mobile workforce require a
new NAC model that will offer more finely controlled network access, an increased agility of
response, and a better focus on network, desktop, and security operations. This paper looks
at where NAC 1.0 went wrong and describes how
By:
MFrizzil
Computers>
Securityl
Dec 14, 2009
lViews: 143
Top five strategies for combating modern computer security threats
Is anti-virus dead?
Today’s fast, targeted, silent threats take advantage of the open network and new technologies that support an increasingly mobile workforce. Organizations need innovative approaches to protect the web, email servers and endpoint. This paper discusses the security implications of modern threats, analyzes where emerging technologies can add real value, and highlights five key strategies for ensuring solid malware protection.
By:
MFrizzil
Computers>
Securityl
Nov 04, 2009
lViews: 219
Assessing endpoint security solutions: why detection rates aren’t enough
Evaluating the performance of competing endpoint security products is a time-consuming
and daunting task. Enterprise decision-makers have to rely on independent competitive
comparisons, performance benchmarks, and detection certifications, all covering different
solutions and criteria, providing conflicting results. This paper highlights the pitfalls of
simply looking at virus detection rates and investigates the effect of the rapidly developing IT
environment and fast-moving threat landscape on
By:
MFrizzil
Technology>
Communicationl
Dec 18, 2009
Assessing endpoint security solutions: Why detection rates aren’t enough
Evaluating the performance of competing endpoint security products is a time-consuming
and daunting task. Enterprise decision-makers have to rely on independent competitive
comparisons, performance benchmarks, and detection certifications, all covering different
solutions and criteria, providing conflicting results. This paper highlights the pitfalls of
simply looking at virus detection rates and investigates the effect of the rapidly developing IT
environment and fast-moving threat landscape on
By:
MFrizzil
Computers>
Securityl
Dec 15, 2009
Is virtualization a black hole in your security? 5 ways to ensure it isn’t
The ease with which virtual computer image files can now be downloaded means there is a
much higher risk of end users running unauthorized applications – from games to browsers
to beta software – in a virtual environment, making corporate systems and data much more
vulnerable than in the past. This paper describes the hidden threats raised by unauthorized,
unsecured desktop virtualization, and gives five effective ways to secure yourself against them.
By:
MFrizzil
Computers>
Securityl
Dec 14, 2009
Effective email policies: Why enforcing proper use is critical to security
The unmonitored and unguarded use of email by employees poses a multitude of risks to
organizations. The distribution of inappropriate or offensive content, malicious emails, and the
risks of data leakage all threaten working environments, IT resources and an organization’s
reputation. A comprehensive, transparent and enforceable email acceptable use policy
(AUP), combined with robust email security solutions, dramatically reduces exposure to
these risks. This paper investigates why organization
By:
MFrizzil
Technologyl
Dec 18, 2009
lViews: 210
Webroot – The Importance of Protecting Your PC from Viruses and Spam
Today the internet is a mine field of malicious code looking to harm your computer. Hackers want to have access to your PC for both fun and profit. You must be diligent in your ability to detect and then protect your important computer data.
By:
Eddie Smithl
Computers>
Securityl
Nov 08, 2010
Lean and Mean Antivirus You Need? Vipre Antivirus Premium At Your Service
Looking for TOTAL security? VIPRE Antivirus Premium is lean and mean security that delivers antivirus and antispyware protection, personal firewall, and malicious website filtering technologies that protect you from todays malware threats.
By:
Eddie Smithl
Computers>
Securityl
Nov 08, 2010
What is Security Essentials 2011?
Security Essentials 2011 is a rogue antispyware program that was designed having malicious intentions. It’s a program that simulates actions of security tool though it doesn’t have any useful functions. Security Essentials 2011 doesn’t ask for user’s permission to be installed and does that without any authorization. The program is also configured to be started right after computer boots up.
By:
Renata Ml
Computers>
Securityl
Nov 08, 2010
What HDD Defragmenter virus does – How to Remove HDD Defragmenter virus?
What HDD Defragmenter virus does – How to Remove HDD Defragmenter virus?
By:
jery smisl
Computers>
Securityl
Nov 08, 2010
Uninstall/ Remove the Security Essentials 2011 – How to Remove the Security Essentials 2011 From Your Computer
By:
jery smisl
Computers>
Securityl
Nov 08, 2010
What is System Lock 2011 – How to Uninstall/ Remove System Lock 2011 Completely
What is System Lock 2011 – How to Uninstall/ Remove System Lock 2011 Completely
By:
july boousl
Computers>
Securityl
Nov 08, 2010
Remove Security Inspector 2010 – How to Uninstall/ Remove Security Inspector 2010 Completely
Remove Security Inspector 2010 – How to Uninstall/ Remove Security Inspector 2010 Completely
By:
july boousl
Computers>
Securityl
Nov 08, 2010
Remove System Lock 2011 – The best way to Uninstall/remove System Lock 2011 Rapidly
Remove System Lock 2011 – The best way to Uninstall/remove System Lock 2011 Rapidly.
By:
ji abmal
Computers>
Securityl
Nov 08, 2010
Internet Marketing and More Free App Tricks
In this article we will examine some ways in which application developers could be more forthcoming with the users by not labeling apps as free when they require payment for full functionality.
By:
MFrizzil
Computers>
Softwarel
Jul 16, 2010
Types of Remote Control Software Connections
In this article we will focus on the ability of mobile workers to connect to their home computers from work or another secondary location through the use of remote desktop software.
By:
MFrizzil
Computers>
Softwarel
Jul 16, 2010
EB5 Immigrant Investor Visa and A1 Visas Compared
In this article we will take a closer look at the A-1 and Eb5 Green Card visas to see how the two visa programs compare and contrast.
By:
MFrizzil
Finance>
Investingl
Jul 15, 2010
PC Remote Access and Screen Monitoring
In this article we will examine some ways in which this monitoring ability can be practically used in real life situations.
By:
MFrizzil
Computers>
Softwarel
Jul 02, 2010
ColecoVision to iPhone Games – Part 21
In this twenty first part of the series we will examine some more of those classic moments where video game designers undoubtedly got it right and delivered a memorable, enduring and progressive gaming experience.
By:
MFrizzil
Hobbies>
Video Gamesl
Jun 07, 2010
SEO and Online Marketing Advice: 7 Tips to Improve Email Marketing Effectiveness
In a world of cluttered email inboxes, promotional material has become an even harder sell through the email medium. This article highlights seven top tips for increasing your email marketing efficiency.
By:
MFrizzil
Internet>
Internet Marketingl
Apr 29, 2010
How Remote Control Software Works
In this article we will examine the nuts and bolts of remote control software and how it enables us to increase productivity, enhance tech support and perform all the tasks that its connections allow.
By:
MFrizzil
Computers>
Softwarel
Apr 27, 2010
Comparing The United States Eb1 And Eb5 Visas
In this article we will take a closer look at the EB1 and EB5 visas and see how the two compare and contrast.
By:
MFrizzil
Finance>
Investingl
Apr 15, 2010
Add new Comment
Your Name: *
Your Email:
Comment Body: *
Verification code:*
* Required fields
Submit
Your Articles Here
It’s Free and easy
Sign Up Today
Author Navigation
My Home
Publish Article
View/Edit Articles
View/Edit Q&A
Edit your Account
Manage Authors
Statistics Page
Personal RSS Builder
My Home
Edit your Account
Update Profile
View/Edit Q&A
Publish Article
Author Box
MFrizzi has 91 articles online
Articles Categories
All Categories
Advertising
Arts & Entertainment
Automotive
Beauty
Business
Careers
Computers
Education
Finance
Food and Beverage
Health
Hobbies
Home and Family
Home Improvement
Internet
Judaism
Law
Marketing
News and Society
Relationships
Self Improvement
Shopping
Spirituality
Sports and Fitness
Technology
Travel
Writing
Computer Forensics
Computer Games
Data Recovery
Databases
E-Learning
File Types
Hardware
Information Technology
Intra-net
Laptops
Networks
Operating Systems
Programming
Security
Software
Need Help?
Contact Us
FAQ
Submit Articles
Editorial Guidelines
Blog
Site Links
Recent Articles
Top Authors
Top Articles
Find Articles
Site Map
Webmasters
RSS Builder
RSS
Link to Us
Business Info
Advertising
Use of this web site constitutes acceptance of the Terms Of Use and Privacy Policy | User published content is licensed under a Creative Commons License.
Copyright © 2005-2010 Free Articles by ArticlesBase.com, All rights reserved.
This article was provided by Sophos and is reproduced here with their full permission. Sophos provides full data protection services including: security software, encryption software, antivirus, and malware.
2.Explain the development of medical services which took place in India?
these 2 qns are from the indian economic development book,chapter8-infrastructure.
class xi cbse.
i need d answers right now.
