Skip to main content

Latest Thinking

Amid security vulnerabilities, IT training remains vital

Businesses without either IT training or a strong IT services partner may be digitally vulnerable.

Software training is a complex and evolving field, as the solutions professionals need experience with are themselves in a constant state of flux. Fortunately, with eLearning solutions an option for business leaders, it is possible to bring workforces up to date with the facts. In some cases, knowledge about IT solutions is good-to-have information that will help organizations become more efficient. In others, though, the need is more pressing. Without adequate application training, users may be walking into the many security vulnerabilities that mark the modern business IT landscape. Hackers are always eager to breach major companies, and adequate training may be the only thing foiling them.

"Defense strategies are only possible for adequately trained and prepared IT departments."

Threats everywhere
Just how serious is IT risk today? A recent Qualys analysis of Microsoft patch efforts holds some valuable clues. The source explained that today, there are zero-day flaws in a number of important applications. In fact, one of the high-level tactics suggested by the source is uninstalling unused technology, going on the theory that items that have been removed can no longer pose risks. These types of strategies are only possible for organizations that have adequately trained and prepared IT departments. Businesses without well-educated professionals who understand their software ecosystems won't be able to make important calls about what should stay or go.

Another important defensive tactic that would be impossible without good training is the replacement of older solutions as they phase out of current patching. Either through IT training or external IT systems, leaders need to get help and remove items that are contributing vulnerabilities to their environments.

Qualys noted that Windows Server 2003 has now passed into this risky category. It is no longer receiving updates, and in its last-ever patch, it received several important patches. This means that attackers are still targeting the ecosystem. In a warning quoted by The Inquirer, Qualys urged users to get away from 2003 and update - an action that will likely require a well-prepared internal team or an active external partner.

The Inquirer noted that the whole way Microsoft distributes Windows updates will change with Windows 10. The Patch Tuesday routine is set to be replaced, and this is yet another reason why systems training is invaluable. With the solid Windows ecosystem entering a new chapter, there are plenty of important skills to pick up. Organizations without access to these abilities may find themselves at a loss, unable to reach peak efficiency and vulnerable to threats that arise.

"When 15,435 different flaws are logged, it's evident organizations are in danger."

Challenging environment
The need to be prepared for IT vulnerabilities is based on more than anecdotal evidence. As Network World contributor Michelle Drolet recently noted, a Secunia study found that 2014 held the highest recorded total of software risk factors. When 15,435 different flaws are logged, it becomes evident that organizations without well-prepared IT departments are in danger. Drolet noted that slow fixes and complacent attitudes are weakening companies further.

With software presenting ample risk factors, it's clear that there is a need to take at least one of two courses of action: Firms must either build knowledgeable and well-equipped internal IT departments or seek help from qualified providers in their fields.

Corporate Learning & Performance
Information Technology
Educational Publishing
IT Services

Add new comment