IT – Process Street

All posts in IT


How Salesforce Built the Fort Knox of Data Security

Benjamin Brandall
November 15, 2017
IT

Think about what’s at stake if Salesforce suffered a breach…

  • American Express, Philips, Vodafone, Virgin, Western Union, GE, the U.S. government, and 150,000 organizations risk their communications leaking to the public
  • This includes trade secrets, financial documents, passwords, and bank details
  • Hackers could believably impersonate bank employees or government officials

It’s a terrifying concept for Salesforce customers, and just as frightening for Salesforce themselves; if a breach like that happened, their $61b company would suffer tremendously.

A company as well-known as Salesforce has a huge target on its back, so it needs to have the highest security standards even while scaling up and innovating rapidly.

Continue Reading

How to Be GDPR Compliant: A Guide for SaaS and Beyond

gdpr compliance header

A spectre is haunting Europe – the spectre of GDPR.

It seems to be the one thing everyone in the data security industry is talking about, Equifax aside…

Articles are being written, consultancy firms are popping up, and businesses are quietly panicking.

Yet, like so many grand legislative changes, many people are unsure what GDPR is, how it could affect their business, or whether they should even be worried about it at all.

In this article, we’ll be looking to clear up some of those misconceptions while presenting actionable steps for how companies can go about adjusting to the coming changes. We’ve scoured the available resources to find the answers to our concerns about GDPR and now we’re sharing it with you.

(Still employ a consultant though. As you’ll see, there’s too much at stake not to!)

We’ll explore not just the impact on European companies but also companies outside the European market who process or control data which could come under the scrutiny of these EU measures.  SaaS companies like Process Street will find themselves needing to adapt their services for their large European clients, and if you work within the SaaS field you might have to do so too.

Before we go further, let me give you a Too Long; Didn’t Read:

The best short summary of the ethos of GDPR I’ve read comes from Wired:

For companies that have more than 250 employees, there’s a need to have documentation of why people’s information is being collected and processed, descriptions of the information that’s held, how long it’s being kept for and descriptions of technical security measures in place

The GDPR broadly sets out:

  • You need to have a system in place to manage data and security.
  • You need to have that system fully documented.
  • You need to operate with the parameters of the GDPR, e.g.
    • Consent boxes cannot be auto-filled as “yes”.
    • Companies must respond to access requests from users within 1 month.
    • Requests for personal information must be processed free of charge.

At the end of this article, you’ll find a free Process Street checklist which uses ICO recommendations and Article 29 Working Party advice to guide you through assessing your company’s GDPR readiness!

Continue Reading

Web Maintenance: A Process-Driven Guide with 4 Handy Checklists

Websites are delicate, messy, and hard to manage effectively. Setup might be easy, but a beginner learning to maintain a website will hit a damaging snag sooner or later.

The main problem is that the tech behind any website is complex for beginners. The files that run your site are written in multiple different languages, depend on each other’s fixed locations, and are controlled by config files. In short, there’s a lot to grasp when you’re starting up a website.

To avoid making mistakes you need a basic knowledge of SQL, cPanel, and phpmyadmin, as well as a general idea of why and how websites work. Like I learned the hard way, tiny tweaks or careless uploads can take the entire site offline for days at a time, which is especially damaging when you have a recurring audience of any kind.

In this post, I’m going to go through the methods you’ll need when maintaining a website, and give you processes you can follow for each task.

Continue Reading

How to Create a Runbook: A Guide for Sysadmins & MSPs

Benjamin Brandall
September 20, 2017
IT

How do you name a new server, export config data, or fix that one really annoying bug that keeps popping up every 2nd Thursday?

For prepared IT professionals, that information is stored in a runbook. A runbook is a set of standardized documents, references and procedures that explain common recurring IT tasks. Instead of figuring out the same problem time and time again, you can refer to your runbook for an optimal way to get the work done. What’s more, you can also delegate tasks and onboard employees more effectively if you have documentation to train them with.

Whenever you do a task, think of this quote:

“Will you remember how to do these things 6 months from now? I find myself having to re-invent a process from scratch if I haven’t done it in a few months (or sometimes just a few days!). Not only do I re-invent the process, I repeat all my old mistakes and learn from them again. What a waste of time.” — Tom Limoncelli, The Operations Report Card

In short, the less time wasted figuring out how to do a task, the better it’ll be for your business efficiency, productivity, and sanity.

This post will look at runbook examples, documentation methods, and some processes you can use in your own business. Also, it will show you how to use Process Street as your cloud-based runbook for all IT documentation.

First, let’s look at some example runbooks so we can get context on what I’m going to talk about.

Continue Reading

7 Documented Processes for IT, MSPs and System Administrators

Benjamin Brandall
September 13, 2017
IT

Technical procedures — especially those affecting your client’s systems and operations — must always be documented. Details and specifics are too vital for you to just wing it, especially when you’re dealing with long lists of configs, server names, and other easily-forgotten information.

That could be why SOPs (and documentation in general) are so popular and well-supported in the MSP community. Thanks to the wealth of information out there, we’ve been able to put together 7 of the most in-demand IT processes among MSPs and sysadmins.

In post, you’ll get 7 processes you can easily edit, share, and use in your own organization. Since they’re built inside Process Street, when you add them to your account they’re stored in the cloud and provided to anyone in your organization with the right access permissions.

Continue Reading

8 IT Security Processes to Protect and Manage Company Data

IT security templatesAccording to the Computer Crime and Intellectual Property Section (CCIPS) more than 4,000 ransomware attacks have occurred every day since the beginning of 2016.

This represents a 300% increase on 2015.

Cybercrime is on the rise and it will continue. In May 2017 the British National Health Service was in crisis after an attack stole extensive patient data and held the NHS systems hostage.

However, this attack like many others was not just down to elite hackers breaking through technological walls. Like most attacks, the root cause was human error. The NHS had not updated its Windows XP after security patches stopped being released.

There was no process in place to keep the system secure.

That is why we have created this Process Street IT security processes pack to help you monitor and protect your organization’s important data.

Continue Reading

9 ITGlue Alternatives for IT Documentation That All MSPs Should Consider

Benjamin Brandall
August 9, 2017
IT

ITGlue is a collaborative, cloud-based IT documentation platform created to help MSPs standardize documentation, create knowledge bases, manage passwords and track devices.

As well as documentation, it lets you stay on top of what’s going on in your network by notifying you when key events happen, like an SSL certificate nearing expiry, or a firewall breach.

Continue Reading

Get a free Process Street account
and take control of your workflows today.

No Credit Card Required