SpotON – our blog around digital compliance in enterprises
SpotON – Digital Compliance
Read here regularly on selected topics, developments and news from the areas:
SAM & Cloud – use software legally compliant and cost-effective
IT Security & Threat Intelligence – protect the IT landscape effectively
Data & Digitization – manage digital assets across the lifecycle
Complion Insights – look behind the scenes of digital compliance consultants
21/11/2023
Der Gau: Ein Microsoft Cloud-Schlüsselverlust, irgendwann zwischen 2021 und 2023
In the summer of 2023, US authorities uncover a significant hack by Chinese malicious actors against US federal ministries. The attackers succeeded in spying on the email accounts of high-ranking civil servants. The attack vector was a stolen key. Microsoft's investigation still leaves some questions unanswered. Dirk Michael Ockel, founder and security expert at Complion, summarizes the incident and what is known about it in this article.
Strengthening customer loyalty through customer relationship management in compliance with data protection regulations in the run-up to Christmas
Christmas time is approaching once again and you want to thank your business partners for the successful cooperation in the past year, but you realize that you have to laboriously collect the contact data again. Customer relationship management can be helpful for this and other use cases. Read this blog post to find out what customer relationship management is and why data protection aspects also need to be taken into account.
When people in Cologne talk about Prince shortly before 11 November, everyone probably thinks of the carnival prince. After all, Cologne’s fifth season is just around the corner. We also had our encounter with PRINCE this week, although in this case PRINCE stands for PRojects In Controlled Environments. Find out what PRINCE2 and carnival have in common in this blog post.
The importance of IT license & contract management in M&A activities
The rumor mill has been bubbling for months and the M&A department is working at full speed. There is much speculation about what is in store for the company. But reliable information is a long time coming, until in the end the official announcement arrives: We have sold or spun off a part of the company, or we have acquired a new part of the company. But what does such news mean for IT license and contract management? During M&A activities, IT license and contract management is faced with major tasks and challenges in a short period of time. So with the official announcement, the game can now begin.
My life as a management consultant: Between freedom and obligations
As a management consultant in a dynamic consulting firm, I experience the exciting balance between two important dimensions on a daily basis: Time and place. These two aspects are fundamental to my professional activities and constantly present me with new challenges. In the following blog post, I would like to take a look at the flexible work environment at COMPLION.
Our company is made up of people and we want to introduce them to you in the coming weeks and months. Today we are chatting with Volker Albrich from our Software Asset Management Team. We'll find out what makes COMPLION means to him, what his daily tasks are, and what he does when he's not working on customer projects.
BSI IT-Grundschutz Standard 200-4 vs. 100-4 - This changes with the update
Whether it's technical issues, user errors, or ransomware, almost every modern business has to deal with incidents. To minimize the impact of these disruptions on day-to-day operations and protect critical business processes, business continuity management (BCM) systems use compressed planned and organized procedures that minimize resilience within their own organization as well as damage and downtime.
In the following article, we highlight the procedure according to the current BSI IT-Grundschutz Standard 200-4, compare it with the previous standard (Standard 100-4) and show how you can use it to sensibly secure your own company in the event of a disaster.
Atlassian – End of support for "Server" licenses: What are the alternatives?
As of February 15, 2024, Atlassian will end support for "Server" licenses. A switch to data center licensing or to the cloud is associated with a huge increase in costs. What alternatives exist for Atlassian customers and what options an Enterprise License Agreement (ELA) offers is examined in more detail in this blog post.
High-End Spyware and governments – Match Made in Heaven?
Complion supports Voice – Bundesverband der IT-Anwender e.V. with the weekly preparation of IT security situation reports as part of the Cyber Security Competence Center (CSCC). In September, these situation reports contained an increasing number of reports on actively exploited vulnerabilities in Apple operating systems and common web browsers. The exploitation was carried out by relevantly known, highly complex malware used by government agencies – high-end state Trojans. The names: Pegasus and Predator. In this blog post we will chronologically summarize the last calendar weeks. The series started with a news item on 7 September.
The Cyber Security Competence Center (CSCC): A review of the imH conference "Forum IT: Cybersecurity & Hacker Attacks"
On September 6 and 7, experts, decision makers and enthusiasts from the world of cybersecurity came together in the Austrian capital Vienna to exchange views on the latest findings and developments as well as the current threat situation. In cooperation with VOICE - Bundesverband der IT-Anwender e.V. we presented the Cyber Security Competence Center (CSCC) in Austria. In this blog post, we take a closer look at the current service portfolio and highlight the initiatives to strengthen cybersecurity in Germany, Austria and Switzerland.
In this blog post, I would like to provide a basic overview of the most widely used frameworks for effective and efficient enterprise IT architecture. IT architecture frameworks provide a structured and standardized approach, deliver best practices for implementing and improving IT governance, and ensure that IT resources, services and processes are implemented effectively and efficiently.
In a sea of data - How companies can create value from their data
It remains critical for companies to get the most value from their rapidly growing data. In order not to get lost in the flood of data, the realization of high data quality through effective data management and governance is crucial.
