News
4/1/2008
08:12 PM
Terry Sweeney
Terry Sweeney
Commentary
Connect Directly
Facebook
Twitter
RSS
E-Mail
50%
50%

Mission Creep And Storage

Anyone who has ever worked in an organization of, say, more than 50 people is aware of the phenomenon of mission-creep. It's always clear that it has occurred when the person whose initial job was ordering Post-its finds himself handling quality control, handling "external relations" (whatever that is), and traveling two-thirds of the time to make sure branch offices are using the right copying paper. Does any of this ring a bell for today's storage professionals?

Anyone who has ever worked in an organization of, say, more than 50 people is aware of the phenomenon of mission-creep. It's always clear that it has occurred when the person whose initial job was ordering Post-its finds himself handling quality control, handling "external relations" (whatever that is), and traveling two-thirds of the time to make sure branch offices are using the right copying paper. Does any of this ring a bell for today's storage professionals?Storage analyst Charles King calls attention to the new complexities storage managers face in the wake of networked storage, virtualization, and other centralizing technologies that do away with direct-attached or isolated storage gear.

Yeah, storage has become more than handling daily and weekly backups. State and federal laws concerning data privacy and preservation have turned storage pros into legal scholars, archivists, and enforcement specialists.

Handling tape rotation is a far cry from deciding how long untouched data remains on a server. Selecting a SAN vendor may look like a cakewalk after setting up corporate policies that decide who gets access to what data, and when. And IT is no longer defined by 18-month projects where it makes sure manufacturing has all the capacity it needs -- it's working more frequently as a team in a centralized data center, looking at the business and its challenges a little more holistically.

I've bloviated before about the demise of the specialist, and I'm not so sure that it's a bad thing. In this day and age when this index has crashed or that price peaks anew, it seems like someone with intimate knowledge of the business and the technical wherewithal to address its thorniest issues might have more job security (and make more money) than the guy who swaps out tapes every night.

Or buys the Post-its.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
Five Emerging Security Threats - And What You Can Learn From Them
At Black Hat USA, researchers unveiled some nasty vulnerabilities. Is your organization ready?
Flash Poll
10 Recommendations for Outsourcing Security
10 Recommendations for Outsourcing Security
Enterprises today have a wide range of third-party options to help improve their defenses, including MSSPs, auditing and penetration testing, and DDoS protection. But are there situations in which a service provider might actually increase risk?
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2013-7445
Published: 2015-10-15
The Direct Rendering Manager (DRM) subsystem in the Linux kernel through 4.x mishandles requests for Graphics Execution Manager (GEM) objects, which allows context-dependent attackers to cause a denial of service (memory consumption) via an application that processes graphics data, as demonstrated b...

CVE-2015-4948
Published: 2015-10-15
netstat in IBM AIX 5.3, 6.1, and 7.1 and VIOS 2.2.x, when a fibre channel adapter is used, allows local users to gain privileges via unspecified vectors.

CVE-2015-5660
Published: 2015-10-15
Cross-site request forgery (CSRF) vulnerability in eXtplorer before 2.1.8 allows remote attackers to hijack the authentication of arbitrary users for requests that execute PHP code.

CVE-2015-6003
Published: 2015-10-15
Directory traversal vulnerability in QNAP QTS before 4.1.4 build 0910 and 4.2.x before 4.2.0 RC2 build 0910, when AFP is enabled, allows remote attackers to read or write to arbitrary files by leveraging access to an OS X (1) user or (2) guest account.

CVE-2015-6333
Published: 2015-10-15
Cisco Application Policy Infrastructure Controller (APIC) 1.1j allows local users to gain privileges via vectors involving addition of an SSH key, aka Bug ID CSCuw46076.

Dark Reading Radio
Archived Dark Reading Radio
Cybercrime has become a well-organized business, complete with job specialization, funding, and online customer service. Dark Reading editors speak to cybercrime experts on the evolution of the cybercrime economy and the nature of today's attackers.