Can HyTrust build a chain of trust for virtualized and cloud computing environments?


HyTrust provides virtualization security, compliance, and access control solutions for VMware-based virtual infrastructure. It helps organizations to streamline security and compliance reporting for virtualized and cloud computing environments.

Software-defined data centers is the hot topic

“Starting with HyTrust, the security and compliance solutions provider is upgrading its virtualization appliance with the purpose of enabling enterprises to more easily virtualize mission-critical applications and deploy multi-tenant private clouds without taking on “unacceptable risks.”

These potential risks include potential damage caused by both employees and outsiders misusing VMware vSphere administrator privileges. A more specific example provided by HyTrust is an employee copying a virtual machine with confidential data, deleting the entire virtual data center, or misconfiguring tenant environments in shared infrastructure.

To prevent such mishaps, the update for the HyTrust Appliance 3.5 includes customizable behavior-based and threat-detection algorithms as well as support for the VMware Security Hardening Guide to conduct more than three times as many server configuration checks and remediation operations than before”. Source ZDNet – Rachel King


“HyTrust Appliance enables enterprises to virtualize mission critical applications and deploy multi-tenant private clouds without taking on large, unacceptable risks. It establishes visibility and accountability, defeats sophisticated attacks, and limits the impact of administrative mistakes by providing:

  • Real time monitoring, threat detection, and alerting of suspicious vCenter account activity Fine-grained role-based and resource-based authorization, enforcing separation of duties and least privilege, need-to-know access
  • Audit-quality logs that enable complete audit trails tied to individual users’ activity Strong, multi-factor authentication to protect access to the virtualization platform
  • Hypervisor configuration hardening to ensure platform integrity”


Virtualization Review selects HyTrust as Security Virtualization

best of breed:

“The Edward Snowden incident is just one in a long line of security breaches that has many enterprises wondering how secure data can be in the cloud. HyTrust aims to give enterprises some peace of mind by stopping up the gaps in enterprise security, especially the most important one: the system administrator. No longer will sysadmins be able to roam with the utmost privilege. This isn’t meant as a knock, but really it’s to protect sysadmins from themselves”.

Two Man Rule

The insider threat has come into greater focus in the wake of Edward Snowden’s admission that he leaked government secrets. The director of the NSA, Gen. Keith B. Alexander, said his agency would institute “a two-person rule” that would limit the ability of each of its 1,000 system administrators to gain unfettered access to the entire system, write the New York Times’ Christopher Drew and Somini Sengupta.

“The scariest threat is the systems administrator,” said Eric Chiu, president of our own HyTrust quoted in the New York Times, Wall Street Journal, USA Today, and numerous other media outlets. “The system administrator has god-like access to systems they manage.”


HyTrust announced this week a further $18.5 million of funding from new investors Intel Capital and Fortinet who join an impressive list of existing investors namely:  VMware, Cisco, In-Q-Tel, Granite Ventures, Trident Capital and Epic Ventures.

“The new funding will support the company’s rapid growth and operations, particularly in the areas of sales and marketing, and enable continued development on the cloud security platform as well as innovations in important technological areas such as Role-Based Monitoring (RBM)”. Source – HyTrust Press Release

WDGLL specs

HyTrust is in start-up mode and has c.100 customers which are typically large corporations and there is talk that the company is likely to be bought out by one of it’s own investors, for example Cisco or VMware.

HyTrust products provide high insurance around authentication and authorisation for VMware environments.

This capability is coined by Eric Chiu as a “Route of Trust”

Trust Management within the cloud environment

Use Intel TXT, VMWare Hypervisor and HyTrust to enforce a trusted compute pool


Leave a comment

Filed under Business

Gartner criteria for selecting external Multisourcing Services Integrators

GartnerDifferentiate Between MSI Offerings for Better End-To-End Service

Analyst(s): Jim Longwood, Gilbert van der Heiden

Gartner, Inc. | G00249250 – July 2013

As multisourcing services integrator offerings evolve, IT services sourcing managers are challenged to gauge their ability to deliver end-to-end services.

To assist in the process of evaluating and selecting external MSIs, Gartner has published details of three groups of criteria that clients need to evaluate potential offerings against

Track Record in Multisourced Environment Ability to Integrate Operations at First-Level Help Desk Ability to Deliver and Manage an End-to-End Service
1. Experienced in managing multiple vendors 5. Industrial-strength help desk 7. End-to-end service delivery quality
2. Service management framework 6. Supports multivendor service portfolio/catalog 8. Collaborative service management of multiple providers
3. Quality management framework 9. Understanding of business objectives
4. Value-added governance frameworks and OLA templates 10. Workable governance frameworks

One evaluation criteria has been selected from each category as an example of the report detail:

Evaluation Criteria 2. Service management framework

The MSI needs a sound multivendor service management framework based on a tripod of tools including the “communication” (ITIL V3 or ISO20000), IT service management (ITSM) and quality management (for example, Six Sigma or Lean) to manage providers effectively on your behalf.

Global providers such as Capgemini, HP and CSC, and regional providers such as Atos and Fujitsu, have particularly strong enterprise services frameworks and good integration with a configuration management database (CMDB).

Evaluation Criteria 5 – Industrial-strength help desk

Most providers use service desk tools such as CA Service Desk and BMC-Remedy, Tivoli or OpenView and have messaging links to the most commonly used service desk tools. So you need not insist that the MSI and providers in the ecosystem utilize your preferred service desk tool. It’s not just the ability to pass problem tickets, service requests and resolution responses easily between help desk systems, but also the ability of making sure problem tickets don’t bounce from provider to provider. We see that some specialist help desk providers, for example, CompuCom, are integrating their first-level service desk in with multiple second-level service desk toolsets and products, such as SolveDirect, to support a broader ecosystem of traditional and cloud service providers.

We note that most providers are at an early stage of integrating help desk services for addressing problems experienced in dynamically engaging with cloud service providers. In addition, consider how well the handoffs between providers are defined in their OLAs as this is key to ensure an E2E operational integration — the Unisys offering has a joint roles and responsibilities matrix to ensure key touchpoints don’t “fall through the cracks.”

Evaluation Criteria 8 – Collaborative service management of multiple providers

Most offerings have good ability to coordinate the efforts of both product suppliers and other service providers, but not all MSI providers are as strong on collaborative behaviors. Historically, Accenture, Capgemini, Fujitsu (in Europe), HP and IBM have been stronger in “command and control” types of approach whereas providers like Atos, HCL or Unisys are generally seen as more collaborative. Providers like CSC and CGI that are used to working as prime contractor or as a subcontractor to a prime, often have more collaborative working cultures. We are seeing all providers become more collaborative as the service ecosystem becomes more prevalent particularly with the growth of cloud ecosystems. Many are integrating the basic cloud services brokerage (CSB), integration and customization functions into their offerings.

The authors set out a simple approach [matrix] to conduct the evaluation and selection of shortlisted MSI offerings:

The published 10 Evaluation Criteria sit on the X Axis and MSI Offerings providers as the Y Axis

Mainstream Offerings – Accenture, Capgemini, CSC, Fujitsu, HP, IBM, Infosys, TCS & Unisys

Emerging Offerings – ATOS, HCL & CGI

This simple table is then populated with “Harvey Balls” denoting Adequate, Good or Very Good

The authors also review the different types of MSI offerings in much more detail than is presented below:

MSI Offerings With Consulting Origins

These offerings originated out of consulting firms, such as Accenture and KPMG, assisting clients in implementing an MSI approach, often on a build-operate-transfer scenario. TCS and HP also have some consulting elements related to their offering.

MSI Offerings With Sole Source Origins

These offerings originate from the needs to manage a broad array of IT suppliers in a typically sole- sourced contract arrangement, and thus these MSI’s are stronger in coordinating the delivery of each supplier and subcontractor, often managing via a command and control approach. These include the likes of Capgemini, HP, IBM and Fujitsu’s European offering

MSI Offerings With Prime or Subcontractor Origins

Providers such as CSC (globally, along with Atos in Europe, and Fujitsu and Unisys in Australia and New Zealand) are used to working in either prime contractor or subcontractor arrangements and tend to have more collaborative working relationships with other providers. Cognizant and Wipro are prime contractors in deals where they do MSI-like roles, but neither have formal MSI offerings.

MSI Offerings With Infrastructure Services Origins

Providers like Fujitsu, Unisys and HCL have a strong technology background and much of their approach is built on that capability, which tends to translate in a more control-driven approach. However, Unisys and HCL expanded it more from a workplace services perspective which commonly translates in a more collaborative style.

MSI Offerings with Program Management or Application Services Origins

A number of the Indian offshore providers’ offerings, such as Infosys and TCS, have offerings emanating out of their application development and related program management offerings, which evolved to cover infrastructure services. IBM’s offerings also include a thin-lead system-integrator- type approach for when the MSI role is used to manage a range of more project oriented activities.


IT services sourcing managers should:

  • Ensure the MSI has a good track record in managing a multisourced environment of similar towers, scale and complexity to yours.
  • Establish that the MSI can integrate operations with other tower and cloud providers in your ecosystem at the first-level help desk.
  • Assess how effectively the MSI can manage and deliver E2E service and business outcomes across multiple providers in a collaborative manner.
  • Assess how well the MSI’s IT services origins, culture and offering availability matches your specific requirements

Creating Successful Sourcing Stories

Thomas Young, partner at outsourcing consultancy and research firm Information Services Group (ISG)

How to Close Your Next IT Outsourcing Deal: Handshake vs. Contract – LINK

Should you trade your clear-cut written outsourcing contract for a simpler agreement and a handshake with your IT services provider? Thomas Young from Information Services Group (ISG) says you should consider what he calls ‘evolutionary contracting.’

“Our current approach to outsourcing contracts is completely out of touch with the needs of a business world,” says Young. “We need a new approach where the ‘contract’ for services is an understanding and a framework rather than a formal document.”

Young has been evangelizing what he calls “evolutionary contracting,” whereby outsourcing customers start with a bare bones contract and adjust the scope and commercial terms of the relationship on an ongoing basis. Young hasn’t found any converts yet, but says some clients are considering the approach.

WDGLL specs

Gartner research reports are of a consistent high quality apart from the most important section, namely Recommendations. The four recommended actions for sourcing managers to take are more common sense than leading edge practice.

The Gartner evaluation criteria and selection method will help shortlist MSI offerings however there is still significant value in hiring 3rd party advisory services like ISG (who purchased TPI) to set the relationship up on the right footing.

Thomas Young, ISG says that the market is moving from prescriptive “know what I want” RFPs to more flexible Request for Solutions where the client is able to articulate the business issue and requires a partner to help develop the solution and deliver the desired business outcome.

Request for Solutions will only be successful if the Procurement organisation, Legal, Advisory partner and Multisourcing Services Integrator maintain an open dialogue.

ISG state that a total of 886 active contracts valued collectively at $21.2 billion are set to expire in 2013.

Incumbent service providers will have to fight vigorously to keep clients. 

Leave a comment

Filed under Business

ITIL global best practice digital content must be dynamic and interactive

AxelosGBPFuture Opportunities ITIL/ITSM Workshop

“We are holding a three-day workshop focussing on the PPM and ITIL/ITSM portfolios from 16th-18th July.

We have invited a cross-section of represented interests (including vendors, practitioners, training organisations and authors).

This workshop, the first in a series, aims to define the priorities for ITIL and PPM and to take the opportunities for improving them from social media discussion to defined tranches of activity for implementation.

We will be sharing the output with the broader communities and further workshops will follow so watch this space for information and invites”

AXELOS Best Management Practice – eBulletin 3

“Key achievements included the development of ideas and concepts like the “Onion” or “Doughnut” (for PPMers) that provides a framework to enable community collaboration, development of modular materials and potentially tackle “two speed ITIL”.  It was also useful to discuss the needs of the wider global community and also what this all means to the end user or practitioner”.

Chris Barrett – AXELOS Director


So you can see from the above side by side view that the “Onion” concept is very similar to the ITIL v3 approach orchestrated by Chief Architect –Sharon Taylor where the outer layer (in yellow) comprises of dynamic content. I am not sure how successful The Stationary Office or The Cabinet Office were in harvesting upto-date content / materials.

The Onion Model comprises of:

  • “The centre has the very stable ITIL core
  • The next layer has modular content such as role or industry-specific information
  • And then further layers have more practical content such as templates, guides, and case studies
  • The very outside layer is community owned and community driven with AXELOS and the community curating and promoting this

Content is able to move inwards as it becomes accepted best practice”.

Stuart Rance HP

The major difference is that six years on the enabling technology for content co-creation and collaboration now makes it likely that the layers of the onion can be achieved.

Here is an example of how the core guidance books should become digital and more interactive.

Mike Matas demos the first full-length interactive book

for the iPad with clever, swipeable video and graphics and data visualizations.

Evolution of Content Creation

Georg Petschnigg, Co-Founder & CEO FiftyThree, Inc.

We don’t even know what the mechanisms are yet to get many people creating content together

Content Curation

Ann Handley – author of the book Content Rules

and Chief Content Officer, MarketingProfs

Content as a cornerstone of social media

WDGLL specsWith regard to the Onion Concept, why should individuals create industry specific and practical content?

Content that is free, such as White Papers or Case Studies, will continue to be commissioned by Vendors.

Moreover, content co-creation and sharing of ideas and leading practices will will result in the IT Service Management community of practitioners setting the strategy and direction of travel.


Paid content where “How to” leading IT Service Management practices can be purchased will require careful consideration in order to balance cost against value derived.

Who will be paid for creating this content, the author or Axelos?

Axelos stated that they project revenue growth to c. £100 million per annum, for me 90% of this figure will come from training [gamification] rather than deployment of leading practices content.

Back to the workshop and my tweet:

@AXELOS_GBP #futureofitil – was success achieved? Strategy & Roadmap outcomes. Chatham House rules apply but #jvCommunicating req. #itil

Expecting a formal response next week

In closing, when content is sent to Axelos what is the process / method for inclusion as a global best practice and who will own the IP?

Leave a comment

Filed under Business

Media moguls should watch out for Aereo internet streaming TV start-up

The annual Allen & Co Sun Valley Conference has been running for 31 years.

“The heavy weights of media and technology gather in Sun Valley, Idaho for Allen & Co.’s summer camp for billionaires, millionaires, and those that aspire to be either.

Allen & Co is a small investment bank that works on a lot of deals. It gathers people like Warren Buffett, Jerry Yang, Tim Cook, and others for a conference each summer in Idaho.

At the conference, the media moguls either start on big deals, like when Comcast’s Brian Roberts started talks about buying NBC, or they get closer to closing deals. Or, they just catch up with people in the industry and trade gossip”. Source Business Insider

The big deal buzz this year was the auction of Hulu but the media moguls that own Hulu opted not to sell.

“Speaking on the sidelines of the Allen & Co. conference in Sun Valley, Idaho, Disney Chief Executive Bob Iger said the decision to not sell “had nothing to do with the offers on the table,” which he described as “quite compelling.” Mr. Iger said the $750 million investment in Hulu will go to “people, technology and content.” Source WSJ


With Aereo you can now watch live, broadcast television online. On devices you already have. No cable required.

Watch and Record TV Online with Aereo

If the major networks are free, and everyone has internet access, why can’t we watch network channels online? A New York-based start-up, Aereo, is looking to solve this dilemma, by bringing broadcast signals online at a very low cost.

 Chet Kanolja – Aereo Founder is at

#17 in the list of Forbes Disruptors

“Two years ago Kanojia visited the ­offices of the four broadcast television networks to tell them about his plan to upend their business. How? Aereo makes tiny antennas that pick up broadcasters’ channels for free. For $8 a month you can rent access to an antenna that beams the live feed directly to your computer, iPad or iPhone—compared with $100 or more for cable TV. “The reaction was ‘We’ll see you in court,’ ” Kanojia recalls. True to their word, all four broadcasters joined suit against Aereo last year, arguing it threatened them with “substantial irremediable losses.” The U.S. District Court in New York sided with the upstart, but the networks have appealed.

Meantime, IAC Chairman Barry Diller has joined Aereo’s board and helped lead a $38 million venture round in January. Aereo is using that cash to expand from New York to 22 cities this year; it’s also battling to license select programming. As for the rest of the television industry, Kanojia has little sympathy. “What you have is a legacy business that’s predatory,” he says. “We have a chance to recast the whole system from the ’70s on.”” — J.J. Cola, Forbes

WDGLL specs

Aereo is expanding their streaming service aggressively across major US cities.

It will be interesting to see how events unfold and whether the on-demand TV streaming service will be launched in Europe.

For me, Chet Kanolja has a refreshing approach to challenging the media moguls and their cable bundles which do not allow the consumer to choose only what they want.

With Aereo individuals have the ability to choose what they like on-demand and also skip adverts. Why pay for what you don’t watch on cable.

I particularly like the “Skinny live with deep libraries” quote and the term “TV Everywhere”

Barry Diller is an industry veteran and has invested heavily in Aereo and the on-demand streaming service will work.

Leave a comment

Filed under Business

Keeping up with changes in Enterprise Mobility


IDC MarketScape covers a variety of vendors participating in the worldwide enterprise mobility consulting market which covers the advisory, assessment, plan, design, and implementation phases of the services life cycle.

“According to IDC analysis and buyer perception, Accenture is an IDC MarketScape Leader worldwide. Accenture helps its clients embrace mobility as a strategy to deliver real, measurable, and sustainable improvements in performance. Accenture Mobility combines technology capabilities, deep industry experience, world-class processes, proprietary assets, and infrastructure to improve business processes and enable its clients to reach new heights of growth, efficiency, and innovation. Accenture’s end-to-end mobility solutions — including consulting, software services, managed services, and business integration services — can be delivered globally at scale in any market and across any industry”.

“While IT remains the chief sponsor of enterprise mobility consulting services in an enterprise, the interest in and buying power of lines-of-business heads and the CMO’s office for enterprise mobility consulting projects are almost the same. Therefore, it’s ever more critical for enterprise mobility consulting providers to be able to penetrate both the IT and the business leads within their client base to succeed in winning deals in the enterprise mobility consulting space.” — Ali Zaidi, senior research analyst, IT Consulting and Systems Integration Services.

Hospitality industry leaders know that the key to success in this competitive business is delivering an unparalleled customer experience. In today’s environment, that means more than just turn-down service and a mint on the pillow.

The traveling public expects more from their hospitality services these days:

  • mobile and web-based reservations and confirmations,
  • mobile keyless room access
  • to remote concierge and check-in options.

Phunware Corporate Overview

Anticipate What Tomorrow Brings and

Be Ready for It with Mobility Lifecycle Management

Mobile Workforce Solutions

Mobile devices and applications let people work the same way they live—always connected.

Work Redesigned

Buy the right device that suits your personal needs rather than BYOD

WDGLL specs

So the above examples from big-time consulting, communications service providers and a pioneer in the field of MaaS show the application of different approaches to differentiation in the Enterprise Mobile market.

Dan Hays, PwC US Wireless Advisory Leader – LINK

“You could argue that today there’s very little differentiation in the mobile communications industry,”

“The phones are all starting to look alike. The services are all becoming fairly ubiquitous. It all feels very similar. That’s when there’s the potential for business model disruption.”

Accenture CIO Mobility Survey 2013 – LINK

“Small devices have become very, very big. The last time CIOs saw a groundswell this huge, it was back in the late 90s and called “the web.”

“being able to interact with customers and prospects no matter where they are, along with the ability to enhance customer intimacy and revenues”.

Leave a comment

Filed under Business

Forrester – how to boost Customer Experience to the Next Level


Six disciplines companies need to master to deliver

a great customer experience

The Path to Customer Experience Maturity

Why Customer Experience will become the #1 CIO Priority

“In the new era of always-connected consumers – what Forrester calls The Age Of The Customer – customer experience is so critical that I predict it will become the #1 priority for CIOs. In part because unhappy customers have the power to alter the course of any organization, as Netflix CEO Reed Hastings discovered in 2011, when his US customers forced him into an about-turn on his strategy to split movies-by-mail from online streaming”.

“Our research suggests CIOs and IT leaders are critical players in winning the customer experience game. And IT leaders need to understand their team’s role in customer experience. But to win, IT can’t simply pay lip service to customer experience. IT leaders must consider it a very real business discipline and see it as one of the most important roles of the technology team”.

Nigel Fenwick – LINK

You’re Doing Customer Experience Innovation Wrong

“Customer experience innovation happens at the intersection of consumer needs, business model, and brand. Companies that neglect one or more pieces of this innovation puzzle will be forever relegated to customer experience mediocrity, on par with throngs of other companies desperate to fix their experience issues and retain customers”. Kerry Bodine – LINK

WDGLL specs

My own favourite online customer experience is Amazon. I select a Kindle title and order with 1 click. I receive an email order confirmation in < 1 min and the eBook is available to download to my iPad. Frictionless.

I would call out Apple for a good in-store experience. Apple employees follow a 5 step approach to customer service:

  • Approach

  • Probe

  • Present

  • Listen

  • End with a fond farewell

Finally – a word from Jeannie Walters who is the Chief Customer Experience Investigator™ and founder of 360Connext

background noise level decreases, definitely worth listening to her Point of View

Leave a comment

Filed under Business

Is TFT13, not the ITIL joint venture, the way forward for IT Service Management Practices?


Chris Dancy TFT13 What’s it all about

“TFT, Tomorrow’s Future Today, is the world’s first 24-hour, global, follow-the-sun virtual conference. It has a size and level of innovation that has never been seen before.

Speakers are selected by their peers and elevated to a global stage overnight.

All content is accessible, without registration, pushed to Kindle and Evernote, available on iTunes, Vimeo, YouTube and SoundCloud.

TFT unites knowledge workers turning them into a global network of influencers, organizations and consumers”.

Source – Servicesphere website

TFT on slideshare – LINK

ITIL Joint Venture announcement: Chris Barrett Interview

NewCo Chris Barrett talks about relevancy, pragmatism and listening to ideas from all stakeholders in order to grow the community and take ITIL and PPM to the next level. Tread carefully NewCo as the next level could be either the penthouse or the basement.

Is it worth paying for stale ITIL Intellectual Property that is released at two different rhythms “2 speed ITIL” or access free cutting-edge content from TFT13 which is more freely accessible?

Peter Hepworth – ITIL Joint Venture – NewCo CEO

“Listening to and talking with as many people as possible at this stage will help us shape how we work in the future and ensure minimal disruption to all parties during the transition phase.

How do you plan to involve the practitioner community?

One of our key priorities is to involve practitioners. We want to jointly determine the best way to do this, which is part of the open dialogue we are starting now. We will increase our presence and voice via social media and also at community events and conferences. I want to see a two-way stream of communication as we move towards the real start of business in January.

My most recent experience in video games is interesting from a number of perspectives; the digital transition that games have been through; the importance of connected communities and the opportunities for simulation and the principles of game design to continue to improve training and learning”

WDGLL specs

So “Gamification” and simulations may help NewCo to improve “Best Management Practice” training delivery, which is estimated to be a $1bn global business, but the gamification topic is moving at a different pace with companies like Bunchball improving the user engagement experience for their clients.

One of the NewCo routes to growth will be served by “Building an online community supported by a collaborative / social platform”

In my view the community of IT Service Management practitioners will only free up an hour of their day to join a “BrightTALK” hosted webinar if the topic and presenter have an authentic / original point of view and message to convey.

Bill Gates wrote in 1996 that “content is king” with respect to the Internet and nearly 20 years on we are at a fork in the road for IT Service Maangement practices where you either purchase content from a Central Knowledge Repository (NewCo) or you create your own personal “Knowledge Locker” and openly share ideas and information.

Chris Dancy with his disruptive TFT13 model is providing a global digital platform for IT Service Management practitioners (consumers) to make the right hyper-connections with “cutting edge” content creators. Content submissions are voted upon and during speaker sessions the community is able to provide real-time feedback and further enrich the dialogue.

The TFT13 model of content creation for multi-channel consumption is the way forward and will continue to disrupt the IT Service Management industry.

Having contributed to the ITILv3 2007 edition, I am not interested in creating content for the JV central Body of Knowledge so that NewCo an profit from my ideas (e.g. End-to-End Service Model).  As I said in a previous Tweet – “I Think I’ll Leave” ITIL behind me.

Here is a link to the TFT13 videos – LINK – Check out the Mark Kawasaki clip which has generated much comment.

1 Comment

Filed under Business