What is monitoring?

Monitoring is the practice of routinely monitoring all the components within an organization’s network to track, measure, and troubleshoot performance issues, failures, or deficiencies.

The advantage of automated monitoring software is that it speeds up the very time-consuming areas of network monitoring. These tools help uncover what might be overlooked with manual network monitoring.

Network monitoring continues to be crucial for businesses in order to be productive and avoid serious threats from network failures and server downtime. 

Why monitor your network?

• To optimize network performance
• Eliminate the need for manual checks
• Take a proactive approach to staying on top of any potential issues.
• Diagnose issues
• Report issues

Some of the most common performance issues include:

• Poor network visibility: If you do not have the right monitoring abilities, your system can malfunction for hours before you are aware of what’s happening.
• New additions to your system: If new devices are not installed and configure correctly, this can cause complications.
• Reactive monitoring:To keep your network running well, you need to anticipate issues and be proactive.

How should I monitor?

When establishing your monitoring practices, you need to consider which reports you use as measurements. These are some common ones:

• Bandwidth usage:The maximum rate your system can transmit data. If you reach critical levels of bandwidth usage, your system will be overloaded and impaired.
• Connectivity:You need to monitor this metric to identify issues such as a broken connection or malware.
• Availability:  If your system routinely experiences downtime, or periods when your network is not available, your productivity and profits can be impacted.
• Packet loss: This metric measures how many data packets are “dropped” during your network’s data transmissions. The more data packets lost, the longer it takes to fulfill data requests. Monitoring this metric allows your IT professionals to improve your network’s processing speed.

Failure to monitor your network will cost you lost time and profits. Your IT Alliance member will establish a comprehensive monitoring program to meet the many challenges that your system faces. At a minimum, your monitoring program should employ the following steps:

·         Install Sophisticated Monitoring Tools

·         Monitor Incoming Traffic

·         Universal Remote Device Monitoring

·         Real-time Network Performance Monitoring

·         Track Video and Voice Performance

·         Automation

In Summary:

There are many involved reports that can be automatically generated by the monitoring software. The good thing about having all of this done automatically by your IT Alliance member is that anything outside of the parameters of normal will (mostly) be flagged immediately, and automatically fixed.

Failure to monitor in this modern way of working with remote users now becoming an everyday occurrence could cost your company in downtime as well as many other issues.

Contact us if you need any help with this.

A data breach involves any unauthorized access to confidential, sensitive, or protected information, and it can happen to anyone.

Internationally well known companies such as Apple, Meta, Twitter, and Samsung have all disclosed cybersecurity attacks this year.

In the most recent quarter, CERT NZ responded to 2,001 incident reports about individuals and businesses from all over New Zealand.

In New Zealand Phishing and credential harvesting remains the most reported incident category (from CertNZ).

This graph shows the breakdown by incident category for the past quarter in New Zealand.

Australian telecoms company Optus – which has 9.7 million subscribers, suffered a “massive” data breach this year. According to reports, names, dates of birth, phone numbers, and email addresses may have been exposed, while a group of customers may have also had their physical addresses and documents like driving licenses and passport numbers accessed.

IBM found the cost of a breach hit a record high this year, at nearly $4.4 million.

So how does a data breach happen?

Data breaches happen mainly when hackers can exploit user behaviour or technology vulnerabilities.

The threat surface continues to grow exponentially. We are increasingly reliant on digital tools such as smartphones and laptops. With the Internet of Things (IoT), we’re adding even more endpoints that unauthorized users can access.

Popular methods for executing malicious data breaches include:

• Phishing – emails in which hackers persuade users to hand over access credentials or the data itself.
• Brute-force attacks – hackers use software and sometimes even hijacked devices to guess password combinations until they get in.
• Malware – infects the operating system, software, or hardware (often without the user knowing) and steals private data.
• Disgruntled employees or political hacktivists can also be behind data breaches. However, more often than you would hope, the breach is due to poor cyber hygiene.

How to reduce risk to your business:

Here are some key tips for mitigating risks to your business. If you require help with these, please reach out.

• Identify what is exposed to the internet: to help mitigate this risk, it’s important to identify what is being exposed to the internet. Your IT Alliance member can help you do this. You can also use scanning tools like Nmap and Nessus to help assess your situation.
• Only expose what you really need to: Reducing the number of services you use lowers the number of targets that attackers have access to. This is known as reducing your attack surface.
• Segment your network to stop – internet-exposed services from reaching your internal network. If your more vulnerable services get compromised, a segmented network will make it harder for attackers to reach other devices.
• Patch services and devices exposed on the internet. Having the latest version will fix many of the vulnerabilities known to the vendor, and that means attackers have fewer known vulnerabilities they can use to gain access.
• Turn on multi-factor authentication (MFA) to add an extra layer of security and help prevent unauthorized access.
• Use logging and alerting to help monitor devices and services, especially any that may be exposed on the internet. These are potential weak points that attackers may target. This can help notify you of an incident and provide details of what has happened.

Don’t risk data breach damage

Data breaches cause business downtime and can cost your reputation and bottom line. Once you’ve had a data breach and it has been made public, your customers may lose faith in your ability to protect their private information.

A managed services provider can install protection and take precautions against data breaches. Contact our team here to discuss this further.

What should I be doing to secure my business? 

One of the first things about Security is realizing that security is much more than stopping people “hacking in”. 

It is fundamental to any business to have a business continuity plan (BCP). If you plan for a power outage what happens? Your IT systems will be down.  

Can I use the same plan if an outage occurs to my IT systems and it’s not a power problem?  

Security is the foundation of resilience. 

The hardest part about security is getting started. Often, it’s on the “to do list” until it’s too late.  

Hopefully you have already talked to your IT Alliance partner and had the security business continuity conversation.

If not “What should I do first” is a common question? Rather than recommend one single thing, the answer should be – “Have a plan”  

So, what does your plan need to cover? 

• Firstly, look at any existing business continuity plan. Is it up to date has it been tested? 
• Look at not just the worst case but also the best case and know that when an incident occurs it will lie somewhere in
• Most importantly have a plan, know what to do and who to call. 
• Understand your risks and apportion the appropriate resources to minimize those risks.
• Make the plan proactive. Be a fence at the top of the cliff and don’t rely on an ambulance at the bottom. 
• Prevent rather than recover.
• Inventory is a crucial starting point of any plan. What equipment do you have? what software do you have? What data do you have?
• Then look at where are the biggest risks. Is there a single point of failure?

Look at your plan as being a holistic business continuity plan, that is a living document. Continually revisit, update, fire drill, and improve.  

Many of the incidents we see disrupt business are due to poor Cyber hygiene not some advanced nation state hack.  

Do the following to enhance your security: 

1. Keep the software for your devices and applications up to date.
2. Access? How do I verify my user is in fact who I think they are? Is MFA (Multi factor authentication) on!!!
3. What information do I have? Where is it stored? Who has access?
4. What are my essential services?
5. What are the financial implications of these risks?
6. What are my obligations to customers, employees, and shareholders?
7. If I was breached, how would I know and when?
8. Am I running Microsoft 365 Business Premium?

Can my staff trust that the Cyber workplace is as safe and secure as possible? If it is, you will see productivity and creativity flourish, staff retention rises as well as the ability to recruit new staff. 

“She’ll be right” –  Is not a plan! “No surprises” is a plan. 

For further advice, contact your local IT Alliance member to discuss creating a plan for your business.  

By Paul Caldwell – Microsoft Security BDM 

Given the recent spate of storm events, and the weather experts saying we’re going to get more in the future, now is the time to check your IT equipment is protected from weather events. 

New research from NIWA (National Institute of Water and Atmospheric Research) has shown that extreme events have occurred four to five times more frequently in the last decade.

Many IT technicians had call-outs from clients after the recent storms. Thunderstorms can literally fry electronics, and this causes not just replacement cost, but also work disruption and even possibly data loss. 

Our technicians carry surge protectors in their cars, so that whenever they are working, they can ensure that sensitive IT equipment is at least surge protected. But for clients we see less often, or who are not on a managed service agreement, it’s easy for IT devices to not be surge protected. Your staff, cleaners or others will sometimes move plugs about. Be aware that this does matter.

Now is a good time to have a look at your computer equipment. Feel free to ask us next time we are on site.

Here are our top tips to protect your IT – how do you stack up?

Surge protectors

A surge protector guards against the damage that sudden power surges can cause.

• It’s recommended for almost any piece of IT hardware plugged into a power outlet.
• It will help protect against power spikes which can sometimes happen, especially if the power suddenly goes off. This happens more often than you might think; for example, your local lines company may be doing maintenance or upgrades to their system and will turn the power off for a period overnight.
• The surge protectors can protect against more distant lightning strikes but will not provide protection from a close or direct strike.
• Surge protectors can be built into power boards, so several devices can be plugged into them.
• Do NOT plug anything other than IT equipment into surge protectors / surge protected power boards. We have seen heaters plugged in to surge protectors! These types of devices can fry your electronics. Make sure non-IT gear uses a separate power point.

Things that people often forget to surge protect

• The Optical Network Terminal (ONT) that brings your fibre internet into your premises. The ONT is the little box that your provider installs. If the ONT blows up, you will have no fibre Internet until they replace it.
• Network gear in the cupboard, or wherever it is located at your place – routers, powered network switches, etc. If the network gear blows up, you will lose the network around your premises.
• Phones – while they are not as mission-critical as your ONT and network gear, it’s still annoying when they get fried.

UPS or Uninterruptible Power Supply

An uninterruptible power supply (UPS) is an electrical apparatus that provides emergency power when the mains power fails.

• Critical pieces of IT hardware, such as servers, key computers and network storage devices, should normally have a UPS between them and the wall power supply
• The UPS does more than a simple surge protector, but they do also provide some surge protection.
• This article does not cover UPS devices, but do make sure that they are regularly checked and batteries replaced.

Unplug IT from the wall

• This can be difficult to achieve as computer equipment is often in use. If you are concerned enough about an approaching storm, then consider properly turning it off and then physically removing the plug from the wall.
• If in any doubt – ALWAYS check with us first, as some IT equipment should not be unplugged.

Last thoughts

• If the surge protector has experienced a significant power surge, or a lightning strike, it may have done its job and no longer work. Replace it. Often they will have a little light which indicates they are working, so if the light goes out – probably time to replace.
• Don’t use the very cheapest devices and expect them to protect you.

In summary

Thunderstorms and lightning are real threats to IT and can cause not just cost, but also disruptions to your business. Surge protectors can last for years and all your IT equipment should use them. 

While surge protectors can last for years, it pays to keep a close eye on them and replace them if needed. Please feel free to reach out to our team at IT Centre to help you with this.  

Nothing is more true than the fact that IT moves quickly these days! 

Part of keeping up with IT, and the rapid changes is making sure that your business has the right equipment to do the task. 

In this article we will be providing a few ideas for how to make a plan/budget for new or replacement equipment, as well as offering you some information on leasing.  

Firstly budgeting for IT hardware

Most businesses will have a budget for IT hardware and other goods and services that they need to operate. 

Our advice is that if you have more than a handful of computers, you will benefit from forecasting and budgeting for IT expenditure. 

Once your business is established, there is a very good chance that you will need to replace your IT equipment every few years. Such a good chance, in fact, that you can plan on it! 

Drawing up an IT replacement schedule helps you plan well in advance, and helps ensure you have the funds when you need them.

This can be done in conjunction with our team here at IT Centre. If you don’t have a list already, we can assist you to do an audit of the IT equipment that you have, the date it was installed, and therefore when it is likely to need replacing based on its expected life. 

This asset management plan needs to be revised every year for budgeting purposes.

We strongly suggest that you do this years in advance of when you actually require upgrades. It’s not hard to do. 

This list can help you have a clear and actionable plan on existing equipment, when warranties expire, and the requirements for a staggered plan for new hardware. 

A look at leasing

Whilst many of our clients purchase outright as the overall cost is lower, leasing can be a good option for when you are starting out, if your business is expanding rapidly, or if cash flow is wrapped up in other parts of the business. 

Leasing turns capital expenditure which has to be depreciated, into a monthly payment that is immediately expensed. It can also be an advantage in keeping assets off your balance sheet – speak with your accountant or advisor about this.

Obviously the disadvantage of leasing is that you are using someone else’s money and so they will need to charge you for that, as well as for their efforts! You could arrange your own finance and purchase, instead of leasing, in which case it pays to do your research on interest rates. 

Upgrading your technology for modernisation and expansion and to get more reliable up-to-date technology is very important, as using outdated technology can cost money and time. Sometimes it is a case of weighing up your options here. 

Using leasing options, your business may be able to move forward more quickly then it otherwise may have been able to, financed in a way that suits your budget or cash flow. 

Whilst leasing is more costly than buying in the long run, one of the advantages is that you can establish predictable payment structures aligned to your needs, taking the stress out of an upfront payment. 

This all means that you can get the technology you need with the budget you have today by utilizing IT leasing arrangements.

“When I became self-employed 20 years ago, I got my first laptop and setup via Flexirent, as it meant I didn’t need to spend the cash and then have the asset/depreciation. Instead, I kept the cash, and the entire cost was a relatively small monthly expense. So, sometimes, especially for new start-ups, it means you can save your cash for something you do need, or as a reserve. For more mature companies, taking a lease for gear, means that the cash can stay with you, which can help with liquidity.” Comment from ITA member.

Leasing options: 

These are just a few of the leasing options that some of our clients use. This is by no means conclusive, and we are not aligned with any of these companies. All of our advice is simply that, advice. Please make sure you do your own thorough research on this subject.  Never before has the saying ‘read the small print’ been more applicable. We strongly advise that you speak with your financial advisor and or accountant about this. 

Feefunders
From Fee Funders website: Your business receives 100% of the customer invoice paid upfront, whilst your customers enjoy the flexibility of monthly installments. Fee Funders manages the monthly customer’s payments by direct debit over three, six, nine or twelve months . Your business achieves upfront cash flow at no cost. Your clients pay a basic interest rate to achieve a spread of their outgoings. It’s like outsourcing a spread payment option for free!	A simple, hassle free approach to funding for your business and your clients.Your business has the money in the bank within three working days of the customers first direct debit, giving enhanced cash flow with no debtor management distractions. Staff can remain focused on core business activities.
Flexicommercial
Flexicommercial offers your business flexible equipment finance solutions. The credit criteria for finance varies depending on whether you are an existing or new business and the required amount of finance.	Choose the equipment you need.Choose the type of lease that best suits your needs.Select the payment term to best suit your budget.Apply over the phone or through your supplier in store.Sign and return the paperwork for approval

Of course these are just suggestions and all leasing arrangements should be thoroughly considered before being entered into. 

Hint – Leasing companies will usually be quite happy to include IT engineer setup costs in the value of the lease. For larger or more complicated systems, this can be quite a substantial part of the project costs. This means you can also expense those costs as well.

In summary 

We can help you to do an audit of your current equipment, and make a plan for future expenditure.

Something that makes this type of IT cash-flow of forecasting easier, is if you are on an  MSP (managed service provider)plan. Being on a Managed Service agreement removes many of the fluctuations of IT budgeting as generally you pay a fixed monthly fee for IT support. 

Please feel free to reach out to our team at the IT Centre to discuss this further.