January 2015 Newsletter

Back to Newsletters

Winxnet Newsletter
Winxnet Monthly Newsletter
 
Are You Ready for Windows Server 2003 End of Life?
Posted on 12/16/2014 2:00:05 PM by Jared Simms

Windows Server 2003 (including Windows Server 2003 R2) support is ending on July 14th, 2015. In short, this means that Microsoft will no longer be releasing patches or security updates for this operating system (OS). To put this in perspective, even though Windows Server 2003 has been in extended support since 2010, Microsoft still released 37 critical updates in 2014 alone to address specific bugs and security threats. In order to keep your environment running as securely and efficiently as possible, the time to migrate to new servers is now. You're going to need a plan.

1.  Wait, what does "End of Life" mean? It sounds serious. It is. End of support for Windows Server 2003 R2 and 2003 Small Business Server (SBS) 2003 means there will be no more updates or patches from Microsoft to support this OS and thus, making compliance with industry specific standards and regulations impossible. No piece of technology -- software or hardware -- is a "set it and forget it" model. Mainstream support for Server 2003 ended in 2010 but Microsoft continued to release security updates as bugs and new threats were uncovered during the extended support phase, which kept Server 2003 R2 and SBS 2003 as secure as Microsoft could make this eleven year-old operating system.

Read more
---
Four steps you should expect from your ‘Security
Health Check'
Posted on 1/5/2015 11:49:23 AM by Dr. Eugene Slobodzian

2014 was another historic year for data breaches in businesses of all sizes and from all industries. Those with the most experience in the Information Security world agree, it is not a matter of "if" a data breach happens but "when". While this may seem like a depressing fact, there are things your business can (and should) do to mitigate the possible risk of a breach, control the damage a breach may cause and evaluate your Information Security Program. In my previous posts, I've outlined the basic steps to better security that organizations should take, many of which hinge on developing what I call a "culture of security" in your organization. But if you already feel like you have a sound culture of security, and are looking for a more "hands on" solution, a "Security Health Check" is a great entry-level tool that you can use to start the New Year off right.

There are many entry-level options available, each geared towards specific industries and sizes of organizations. It is important to recognize that a quality entry-level security health check solution simply won't do for a financial institution or really anyone in a regulated industry. These businesses have worked far too long under very strict requirements to benefit from any entry-level security program like a standard health check. A good Security Health Check should be a perfect fit -- both in scope of work and price -- for small to midsized businesses in an unregulated industry. The right Security Health Check solution will:

Read more
---
What You Need to Know About the HIPAA Omnibus Rule/HITECH Act
Posted on 1/8/2015 12:47:05 PM by Don Reczek

If you caught my first post, "HIPAA: How We Got to Where we are Today (In Five Minutes)", then you have a fairly good idea of all of the new rules and regs that are out there. So, what do they mean for you? These new rules and regulations mean that you absolutely must be sure that your organization is HIPAA compliant, period. The HITECH Act addresses five main areas of the HIPAA regulation with core changes to HIPAA, focusing on required disclosure to patients and breach of patient's information to unauthorized persons. While all elements of this act are important, here are the top four to be aware of:

1. Business Associates as well as subcontractors of business associates of covered entities are directly liable for compliance. This means virtually all businesses that you work with must be HIPAA compliant. IT services vendors, accountants, consultants -anyone who has to have access to your patients' EPHI or has a role in supporting you -- must be HIPAA compliant.

Read more ---
The top three cloud security concerns
used with permission from IBM ForwardView

Of all the IT buzz words and hot issues streaming across screens these days, there are probably two that have caught a bit of your attention: cloud and security.

Cloud may have piqued your interest because of the potential for cost savings by tapping into leading edge applications offered, managed and maintained by someone else -- helping you alleviate some of your IT backlog while enhancing business capabilities. And security, because of the boisterous headlines about breaches and cybercrime that seem to be monthly occurrences -- making you wonder if your business' data is as secure as it needs to be. International Data Corporation (IDC), a global provider of market intelligence, advisory services, and events for the information technology, telecommunications and consumer technology markets, has conducted extensive research in the managed security and cloud spaces.

Read more
---
In this issue:
January 2015
Are You Ready for Windows Server 2003 End of Life?
Four steps you should expect from your ‘Security Health Check'
What You Need to Know About the HIPAA Omnibus Rule/HITECH Act
The top three cloud security concerns
Upcoming Events:

New England Grows Tradeshow
When: Wed., Feb. 4th - Fri., Feb. 6th
Where: Boston Convention and Visitors Center, 415 Summer Street, Boston, MA
Register: To learn more about the event, visit the New England Grows Page


On the Moves:

Ben Consaul
Ben Consaul joins Winxnet as a Senior Systems Engineer. Ben brings with him over 14 years of IT experience including roles as a Team Leader at 3M Touch Systems, Senior Systems Engineer at RightPath Networks, Network Engineer at mindSHIFT Technologies and most recently, a Senior Network Engineer at Thrive Networks. Ben is on the Microsoft MCSE 2012 certification path, and holds a 3M Process Engineering Certificate as well as his 3M Six Sigma Certification. Ben's certifications and experience in a variety of environments will help Winxnet continue to provide the best service to its clients.

Paul Laskow
Paul Laskow joins Winxnet as the ERP (Enterprise Resource Planning) Practice Manager on the Business Solutions Team. With over 25 years of experience in product development with both hardware and software, Paul has deep expertise in ERP systems, operational initiatives, quality improvements, and cost reduction. Paul's experience as well as his commitment to clients will be a benefit to Winxnet as the company continues its rapid growth.

Kevin Paquet
Kevin Paquet joins Winxnet as a Senior Consultant with the SharePoint team. Kevin brings nine years of experience in Microsoft SharePoint to Winxnet, most recently with role as an IT Specialist at the Portsmouth Naval Shipyard. Kevin's technical experience and consulting background will make an immediate and positive impact to Winxnet and its customers.

Ken Tapscott
Ken Tapscott joins the Winxnet team as a Field Technician. With more than 20 years of experience in the technology industry, Ken has worked with a wide range of platforms. Most recently, Ken spent fourteen years working in Law Enforcement where he was a part of the New Hampshire Internet Crimes Against Children Task Force (ICAC). His roles with the group included IT support, digital forensic examination and investigation. Ken's technical experience as well as his tenure working with municipalities will make an immediate and positive impact to Winxnet and its clients.

Warren Bouvier
Warren Bouvier joins Winxnet as a Field Technician based out of the company's Methuen, Massachusetts office. Warren brings 25 years of experience in engineering and technical support to Winxnet, most recently with roles at the New England Carpenters Benefit Funds as a Network Administrator. Warren's technical experience and commitment to customer service will benefit Winxnet as the company continues its rapid growth.

About Winxnet
Providing innovative IT solutions since 1999, Winxnet is a leader in IT outsourcing and consulting, software development, and strategic technical advisory services to the private and public sectors. With offices throughout the Eastern United States, Winxnet provides a broad reach with local expertise.
 
www.winxnet.com
Corporate Office | P.O. Box 1700 | Portland, ME  04104-1700
© 2014 Winxnet. All rights reserved.
Change Email Preferences