Never worked in a big shop have we?
Thank you Mr. Sarbane and Mr. Oxley. Where it is mandatory for a change to go through umpteen million reviews (as dictated by the SOX) before it can be implemented.
I'm sick of folks saying "their IT sucks" without any real world experience. Patching a few thousand machines is one thing. Patching tens of thousands of machines, guarding the 100s of other companies you are connected with all while following change control as mandated by auditing companies or else face full disclosure is another.
Cowboys aren't allowed in a large enterprise.
Anubis
No Lifer
Fritzo
Lifer
- Jan 3, 2001
- 41,885
- 2,125
- 126
Systems Administator for Eaton Corp. for 4 years. Critical patches like this were to be tested and implemented within 48 hours.
I know the type "Oh...another patch came out. I'll get to it after we have a meeting about having a meeting about how many meetings we have." It's that type of work environment that slows things down, and I see it a lot on my current job. I'm sure CNN fell victim.
guess you guys aren't public. If you are then name the auditors....I'd like to hire them so my group doesn't have to be handcuffed by SOX.
Yea OK, and how many Macs actually were affected to the point where a company went down? Zero. Ignore this troll.
you know, the funny part about that post of yours?
the fact that the companies werent running mac. hence why they didnt go down.
hence the "ZERO"
EKKC
Diamond Member
- May 31, 2005
- 5,895
- 0
- 0
it is pretty bad.
good story:
i left my previous employer 2 weeks ago. my current employer, a consulting firm has sent someone (basically a coworker now) in to resume my previous position so i work with her regularly to tell her the mess i left for her there. long story short, they were hit with this worm yesterday and whole network was down. the only one left running was my old IBM, which is running Windows XP because I reinstall it myself.
i had them thinking i was the one who set us up of a time bomb.
all their base are belong to me
good story:
i left my previous employer 2 weeks ago. my current employer, a consulting firm has sent someone (basically a coworker now) in to resume my previous position so i work with her regularly to tell her the mess i left for her there. long story short, they were hit with this worm yesterday and whole network was down. the only one left running was my old IBM, which is running Windows XP because I reinstall it myself.
i had them thinking i was the one who set us up of a time bomb.
all their base are belong to me
Fritzo
Lifer
- Jan 3, 2001
- 41,885
- 2,125
- 126
Yes they were. DJI symbol is ETN (they're the largest supplier of pressure hoses and valves to auto manufacturers in the world). I haven't been there for 3 years though, but the policy was when a critical patch came out, it was to be tested in our simulator servers for 48 hours and then deployed.
That's the way it should be. But with SOX around (wasn't a big issue 3 years ago) - tracking, documenting and auditing any change is a requirement for full compliance. Depending on the auditor you can get "emergency" changes through.
Anyone here using SUS? Because it STILL does not appear in approved items although a note in the log seems to indicate it downloaded the patch.
Using my Win2K box while the video card on my XP box is dead and I'm deciding whether to get a new AGP card or upgrade to PCI-E
No problems. This post is coming from another Win2K box at work.
No problems. This post is coming from another Win2K box at work.
I'm not all that familiar with SOX, but wouldn't the revenue losses from system down time exceed the penalties for failing to comply with SOX?
no. Failing to comply with SOX is a very, very bad thing and could cause a company's stock to plummet. Investors would lose trust.
AnitaPeterson
Diamond Member
- Apr 24, 2001
- 5,947
- 400
- 126
What a godsend for Microsoft! They have another reason to tell people: 'See? You need to upgrade to Windows XP - RIGHT NOW!!!"
I was thinking more about the penalties imposed for not complying, not investor trust.
I would think informed investors would be more concerned with accounting practices and finanical reporting than applying critical security patches. Go figure.
TRENDING THREADS
-
Discussion Intel current and future Lakes & Rapids thread- Started by TheF34RChannel
- Replies: 23K
-
Discussion Zen 5 Speculation (EPYC Turin and Strix Point/Granite Ridge - Ryzen 9000)- Started by DisEnchantment
- Replies: 10K
-
Discussion Speculation: Zen 4 (EPYC 4 "Genoa", Ryzen 7000, etc.)- Started by Vattila
- Replies: 13K
-
Discussion Intel Meteor, Arrow, Lunar & Panther Lakes Discussion Threads
- Started by Tigerick
- Replies: 7K
-
Facebook
Twitter