What IT Needs
-
But pretty much everyone takes credit cards these days, so if their system gets hacked they'll get shafted. A judge just ruled that the banks could sue Target for not taking adequate precautions.
-
@Nic said:
But pretty much everyone takes credit cards these days, so if their system gets hacked they'll get shafted. A judge just ruled that the banks could sue Target for not taking adequate precautions.
Not many people do. I've worked with a lot of companies, very few of them take credit cards. If you are thinking of retain stores, sure. But outside of the retail business it is relatively small. Most companies that do outsource that so that it isn't part of their IT. It is a few large CC processors that handle it for most companies.
-
True - most of that is outsourced. But they still have do PCI compliance no? I'm seeing more reports of smaller places being hit lately, so at the very least they'll have to eat the cleanup cost and notifying customers.
-
@Nic said:
True - most of that is outsourced. But they still have do PCI compliance no? I'm seeing more reports of smaller places being hit lately, so at the very least they'll have to eat the cleanup cost and notifying customers.
No, PCI compliance only applies to the companies handling the CC data, not to companies being paid in the end. PCI impacts very few companies (percentage wise.) Big retailers like Target store that data in house and are PCI governed, yes. But most small businesses are not as they never possess your CC data.
-
Ah that makes sense. Hopefully there will be some better standards that roll out at some point. I'm tired of having my data leaked by whoever I shop with. And if we're lucky some of that will filter down to SMB.
-
What would this look like if it were to be made into a thing? Just some ideas to follow that I want to expand upon, throw in your $0.02!
- Inclusive of all skill levels, Staples wage slave to CIO
- Reputation and skill based
- Provide a framework of titles and skill levels
- Isolated from outside influences (notably money, corporations and governments)
- International
- Relevant / useful to business and IT folks
-
Yeah, as far as credit cards go, the companies that accept credit cards never process them in-house. They all use a third-party service for that. That third-party service that actually runs the card has to be compliant, but the company that takes down the cardholder's name, the card number, the expiration, and the CID number (sometimes) are held to no such standard. I could see figuring out what companies take credit card for payment as very valuable information, as a lot of this info is stored in very insecure ways.
-
@thanksaj said:
Yeah, as far as credit cards go, the companies that accept credit cards never process them in-house. They all use a third-party service for that. That third-party service that actually runs the card has to be compliant, but the company that takes down the cardholder's name, the card number, the expiration, and the CID number (sometimes) are held to no such standard. I could see figuring out what companies take credit card for payment as very valuable information, as a lot of this info is stored in very insecure ways.
I agree with AJ. This is a no brainer to do 3rd party. Sure it cost a little extra, but of course the consumer just pays for that on the transaction
-
@MattSpeller said:
- Inclusive of all skill levels, Staples wage slave to CIO
I would say that defining a minimum level is important. I think that bench services (people doing hardware repair, selling products, etc.) are outside of the field. Assembling a computer is a factory job, not IT. HP line workers don't claim to be IT, people swapping out parts as their job description should not either. It should be technical jobs and higher only, IMHO.
-
@scottalanmiller said:
@MattSpeller said:
- Inclusive of all skill levels, Staples wage slave to CIO
I would say that defining a minimum level is important. I think that bench services (people doing hardware repair, selling products, etc.) are outside of the field. Assembling a computer is a factory job, not IT. HP line workers don't claim to be IT, people swapping out parts as their job description should not either. It should be technical jobs and higher only, IMHO.
Agreed, though I would push to include the poor sods who are curious about IT and just getting that first rung on the ladder. In this I would argue that including people like "geek squad" as "IT" gives someone a place to start and a much larger pool of potential users for this... whatever this is haha.
-
That's a tough one. Including people not involved it IT as it is normally defined (business infrastructure services) opens the door to a ton of grey area. Allowing people in as students, hopefuls or whatever is one thing. Allowing classification of non-biz-inf roles into the official fold, though, is problematic. I say make a strict definition of IT and stick to it.
-
@MattSpeller said:
Reputation and skill based
The hardest part to quantify and deliver! My thought is to blend several different approaches I've seen.
Reputation
- Community based feedback (similar to linked in)
- Input from previous employers?? dangerous but oh so powerful. Difficult to see why a business would participate in this part without a tangible benefit. Perhaps posting feedback gives access to the feedback left by others? Needs improvement / refining.
- Video interviews of the person answering some stock questions.....???
- Needs more quantifiers (suggestions?)
Skills
Demonstrable proof you've done something- Video tours of projects?
- Documentation you've created (excised / examples / excerpts?)
Completed coursework
- Must have a way to VERIFY completion
- Skill tree?
- Experience with products & proof?
-
@scottalanmiller said:
That's a tough one. Including people not involved it IT as it is normally defined (business infrastructure services) opens the door to a ton of grey area. Allowing people in as students, hopefuls or whatever is one thing. Allowing classification of non-biz-inf roles into the official fold, though, is problematic. I say make a strict definition of IT and stick to it.
Easy follow up question then - what is the definition of an IT worker?
-
You'd have to have levels. Like they do for electricians and other trade workers.
-
@Nic said:
You'd have to have levels. Like they do for electricians and other trade workers.
Absolutely, but unlike electricians or trade workers, it isn't a progression which makes it really hard.
