9 months, 18 days ago

A Shared Language for Supply Chain Security

In the world of technology, there are paradigms of language that arise organically and artificially over time. Necessity requires a shared mode of communication for ideas and as a result, descriptors, nouns, and technical designators are created and shared. The problem arises when certain words acquire a surfeit of meaning, so much so that they paradoxically become less meaningful. There are many examples of this but for our purposes, we’re going to look at “Supply Chain Security”.

10 months, 12 days ago

Solorigate: A case study for why supply chain security is critical for governments and businesses

By Jim Hietala (VP, BD and Security), Andras Szakal (VP and CTO), John Linford Security and OTTF Forum Director) – The Open Group

In potentially the most damaging cyber-supply chain attack ever, a leading IT systems management vendor became the latest hi-tech company to suffer a major cybersecurity breach with wide-reaching consequences. The malware that caused the attack has been dubbed SUNBURST by Microsoft and code-named Solorigate by FireEye, the security consulting firm that uncovered the breach after falling victim to it late last year.

After successfully infiltrating the development environment, attackers were able to observe and learn how to subvert the vendor’s development and operations pipeline. Hackers were then able to maliciously taint the vendor’s product by planting a sophisticated trojan. Once the software, which required broad systems access, was installed in customers’ environments, the attackers were able to leverage the tainted software to exfiltrate sensitive information from within an organization’s network.

11 months, 23 days ago

Updates to the Open FAIR™ Body of Knowledge, Part 3

The Open Group Security Forum is thrilled to announce the publication of an update to the Open FAIR™ Body of Knowledge (BoK). The Open FAIR BoK is comprised of The Open Group Risk Taxonomy (O-RT) Standard and The Open Group Risk Analysis (O-RA) Standard. The Open Group initiated a standards effort regarding FAIR ~10 years ago, and these standards define the official, open, vendor-neutral and consensus-developed definition of FAIR.

This blog post is the third of three in a series to describe updates to the Open FAIR™ Body of Knowledge. It will describe specific updates to O-RT to bring it to Version 3.0. The first post described revisions made to both O-RA and O-RT for consistency between the documents; the second post described specific updates to O-RA to bring it to Version 2.0.

1 year, 1 month ago

The Open Group at “Experience IT NM”

On November 4 and 5, 2020, the New Mexico Technology Council is hosting its virtual event entitled Experience IT NM. The New Mexico Technology Council a member-driven association of businesses, organizations, and tech professionals working together to promote the growth and success of New Mexico’s technology business sectors. Its members include a diverse mix of New Mexico companies, cities, and universities and colleges.

1 year, 4 months ago

The Open Group ‘Digital-First’ Virtual July Event – Highlights Blog

As an organization that is known for its world-class events and prides itself on bringing people together globally, this week The Open Group hosted its second virtual event following the success of the first ever #ogVIRTUAL in April.

It was fantastic to have over 2,100 attendees from 107 countries come together virtually to explore the topic of ‘Digital First’. Sessions and workshops were hosted by a plethora of industry experts and centered on the security, trust, and architectural issues which need to be considered when becoming a “Digital-First” organization.

1 year, 4 months ago

The Open Group to Hold “Digital-First” Event Virtually July 20-23, 2020

The Open Group, the vendor-neutral technology standards consortium, is hosting its upcoming “Digital-First” event virtually on July 20 – 23, 2020. The Open Group Digital-First July 2020 will bring together vendors and end-user organizations from across the globe to explore how they can make the radical, fundamental change towards becoming a digital enterprise – a topic that has never been more pertinent as business and technology leaders face the challenge of surviving and thriving in the ‘new normal’.

3 years, 10 days ago

The Digital Twin Organization: Can Enterprise Architecture Help?

One of the more interesting developments in the tech space taking place right now is the emergence of digital twin technology. For those of you asking What is a digital twin? right now, allow us to elaborate.  What is a Digital Twin?  A digital twin, a…

3 years, 16 days ago

Combining Structure and Data: Business Intelligence 2.0

In previous blog posts, we have written about various analysis techniques that help you get more value from your models, as well as dashboarding techniques to visualize data in all kinds of ways. These two topics point to a more general theme: the new …

3 years, 1 month ago

100 Questions to Ace an Enterprise Architect Job Interview

 Interviews are where jobs are won or lost. A résumé – especially a strong one – will ensure you get your foot in the door but to actually secure the position you need to shine during the interview, which means being prepared. Preparation makes you loo…

3 years, 1 month ago

Planning and Roadmapping: Advanced Functionality for Time-Based Analysis

In the two previous installments, we discussed planning and roadmapping in the context of enterprise architecture, and how you can use the concepts of the ArchiMate language to model your roadmaps. We showed how you can model the evolution of your ente…