|
|
-
07:45 PM Tuesday, September 26, 2006
Sep
26
Tue
Many Chief Security Officers supporting Financial Services today are delivering empirical data to their management as proof of Security & Privacy compliance; however you need more tangible evidence to sell customers and partners beyond registry ticks and checks.
Most Fortune 500 CIO’s I speak with are worried the company’s reputation and brand highly valued by the board; “its hard thing to earn and keep -- harder to repair”
This does not mean endless amounts of investments aimlessly poured into Security & Privacy; rather a measured balance view is critical when making buying decisions. Additionally, you must level-set across your partner ecosystem. Your company could be 100% compliant, but when client data passes from your enterprise to your partner’s and they haven’t applied the same rigors -- “egg” is on everyone face when information leakage is detected.
Managing the FUD “Fear Uncertainty and Doubt” is becoming a full time job for CSO’s and top of mind with CIO when mission critical transactions are at steak. Business and Technology must work together thinking through processes end-to-end understanding and anticipating the “Chess Board” a few moves down.
Good practice starts with a scorecard tracking basic items like, new incidences, vulnerabilities thwarted, escalated & tracked, closed, and level of granularity of attack. Industry analyst’s clearly state threats are moving away from the operating systems and network now targeting applications.
One emerging software vendor focused on this application protection space is Cenzic, who provides breakthrough enterprise software and services for automated application security assessment and policy compliance testing. This platform allows corporations and government organizations to dramatically improve the security of commercial and custom applications. “Hailstorm” enables security experts, QA professionals, and developers to work together to assess, analyze, and remediate applications for security vulnerabilities, and verify compliance with security policies. Using a Stateful Assessment™ approach, Hailstorm is able to provide highly accurate results with minimal false positives.
Post cards from the edge…
Cheers,
Don
-
06:11 PM Thursday, August 03, 2006
Aug
03
Thu
When startups think of VC investments they’re first reaction is not typically “New York City”, unless it’s Financial Services and Wall Street related. Well, New York is known for its Financial Services technology & innovation, however now seems to be diversifying into biotechnology.
My curiosity was first peaked when NYC based Medidata a Clinical Trails Software-As-A-Service (SaaS) .NET Microsoft pure-play Independent Software Vendor backed by InsightPartners wins several local & national awards. I was thinking – OK, New Jersey has a ton of Fortune 100 Pharmaceuticals companies; therefore it’s somewhat normal for a few biotech investments.
From a few to trend - biotech takes in 1/3 of investment pool. According to Amanda Fung report in Crain's New York investment trend: "Venture capital firms invested $535.5M in 58 New York metro tech companies in the second quarter, up 40% from the previous year, according to a recent quarterly survey released Tuesday, August 1st 2006”...
She continues “About a third of the New York funding, of which $175 million, went into 11 biotechnology companies, according to the MoneyTree report by PricewaterhouseCoopers and the National Venture Capital Association”...
"'New York Metro's second quarter has a terrific story to tell,' said David Silverman, managing partner of PWC's venture capital practice in a statement.’To see this pace continue will only confirm the venture capital commitment to this region.'"
Investments in New York City’s early stage companies increased for the third consecutive year to $91.3M, up 55% from the previous quarter, and later stage companies were up for the fourth year to $214M, up 44% from the previous quarter. Highlights include 4 NY Metro companies within business products and services received $96M, one of which received $47.5M. While 17 software companies took in $70 million, and 3 IT services companies took in $46M.
Overall, New York Metro Investing Increased a Healthy $18M over Q4 2005 In Q1 2006 with $348M to view the full press release link to; http://www.nysia.org/member_press/pressrelease.cfm?pid=297
Nationally, venture capital investing reached its highest level since 2002 with $6.3 billion in 865 companies for the quarter, according to the survey. First-time financings reached a five-year high of $1.3 billion in 282 companies. PWC Money Tree shows investment by location nationally: http://www.pwcmoneytree.com/moneytree/nav.jsp?page=region
Cheers to the City that never sleeps – New York, New York!
Don.
-
07:28 PM Friday, July 28, 2006
Jul
28
Fri
More than a few of my emerging ISV company are asking me – what will Microsoft be like after Bill retires? Who will be taking the lead Research and Strategy role -- Ray Ozzie?
Well, I was quite interested in those answers myself and did a little digging finding a recent podcast with Global Chief Research & Strategy Officer Craig Mundie on Microsoft’s Channel 9. It’s a worthwhile 25 minute interview for the public to get the inside scope with one of Microsoft’s most influential though leaders driving next generation products and services. He describes in fare detail his relationship working directly for Bill Gates past 8 years and taking over many of his day to day line responsibilities over the next two.
One big surprise for me was his background in startups right out of Georgia Tech, developing Super Computing subsequently acquired by Data General, and speaking of those days with fond memories stating deep down he’s “a startup kinda of guy”.
He was hired by Bill Gates in 1992 to drive Emerging Business for Microsoft and confesses many of these endeavors were none PC based, i.e. WebTV, Phone etc. However gave him a good broad view across Microsoft and enabling strategic developments continually rising through the ranks.
I was very encouraged to hear Craig’s interview learning he has a passion for startups like I do supporting Microsoft’s Emerging Business Team and that the future for Microsoft will continue to be the leading innovator of technology by developing a rich ISV startup partner ecosystem.
Today The Emerging Business Team is lead by Corporate Vice President Dan’l Lewin who focuses his portfolio managers primarily on venture backed startups. Dan’l is expanding the team focus globally identifying high profile startups showing the world betting on Microsoft .NET = winning.
I’m a startup kinda of guy too!
Cheers,
Don.
-
08:57 AM Thursday, July 27, 2006
Jul
27
Thu
I had a unique opportunity to speak at Omni Resort & Hotel in Orlando FL, for NICE’s User Group Conference presenting emerging technology trends and Microsoft’s latest Security platform Forefront. The event hosted over 2,500+ customers focused on Compliance Quality Monitoring, Management Insight from Interactions using advanced analytics, and video providing specialty solutions within Public Safety and Private Equities Secure Content Management services.
Their innovative platform makes sure employees say please and thank you – while monitoring for transaction settlement compliance completion. Clients attend conference boast the who’s who of Wall Street firms including Deutsche Bank, J.P. Morgan Chase as well as other big named accounts in telecommunications - Avaya and Internet Service Providers like EarthLink.
NICE made a strategic technology decision 5 years back moving away from UNIX, Oracle and Sybase realizing that betting on Microsoft equaled winning big!
NICE holds a close unique relationship with Microsoft working closely with product groups, local field representatives globally and actively engaged for go-to-market synergies. Executives see the relationship from three strategic perspectives; identifying customer needs while leveraging existing in-house skills, partnering is one of Microsoft’s greatest strength’s, and best total cost of ownership for customers delivering best value.
Built 100% on .Net & SQL Server Windows platforms NICE applications captures hundreds of gigabytes of voice recordings, screen shots, and video communications (all encrypted) so that they can be evaluated for quality or forensic purposes. The company also provides enhanced voice recording and communications intelligence product to government agencies. Other products include specialized computer systems designed for air traffic control logging systems. NICE choose Microsoft’s Active Directory to ensure users have the appropriate credentials to gain access to high sensitive applications and data.
NICE is clearly one of Microsoft’s shining stars when it comes to presenting a compelling partnering story and valued relationship. NICE boast over $300M in annual sales and producing nearly 24% sales growth. The company is also expanding through Mergers & Acquisitions having recently acquired Proformix adding 200+ employees totaling over 1,400 FTE’s.
Cheers,
Don
-
02:34 PM Friday, July 21, 2006
Jul
21
Fri
Windows CardSpace enables users to provide their digital identities in a familiar, secure and easy way. In the physical world we use business cards, credit cards and membership cards. Online with CardSpace we use a variety of virtual cards to identify ourselves, each retrieving data from an identity provider. CardSpace is specifically hardened against tampering and spoofing to protect the end user’s digital identities and maintain end user control.
Windows CardSpace formerly known as “InfoCard” utilizes Microsoft’s latest .Net Framework version 3.0 formerly known as “WinFx” providing a secure user experience required by identity web-services and specifically enabling ecommerce internet based ePayments.
In fact Microsoft is well positioned to engage the mega-market on-line economy by investing in CardSpace and by developing an ISV partner ecosystem by working with Venture Capitalists investing huge capital in Financial Services ePayment space. One key indication of this emerging trend is explained by our Emerging Business Team’s Financial Services Banking Portfolio analytic Trends & Observations Report. Figures indicating an upward trend of 9 ePayment venture backed IVS’s totaling $34M in Q405+Q1 2006. A 22% increase ove prior quarters investments.
Anonymous Analyst quote;
“Indications clearly point to huge growth potential in the payment processing space, especially alternative payments such as PayPal.”
Other indications competitors and partners are giving this special attention is Google’s entry in the market with “Google pay” that has the potential to become popular pretty quickly. Though experts and industry analysts are not convinced yet – Microsoft is acting quickly to establish itself and partners as a serious player in this growth oriented market.
Speaking with Microsoft’s US Financial Services Industry Unit Lead Warren Lewis and Christopher McLendon US Retail Industry Unit Specialist – ePayment success will depend on reach, pricing, and strategic partnerships with online banker and retailers.
From an emerging trend to a growing number of traditional retailers have jumped on the internet bandwagon as to not lose sales to their virtual competitors. Traditional legacy payment platforms such as credit cards and bank transfers which currently control 90% of consumer transactions today will become increasingly threatened by new ePayment solutions offered by Microsoft back-end e-payment infrastructure partners like IP Commerce. These solutions offer a compelling proposition of ease of use, loyalty programs, security and ultimately low transaction charges.
Security is a crucial factor when consumers consider ePayments and demand multiform factor identification capabilities – no longer is just a “pin” secure enough for consumer confidence. Emerging trends point combining Identity, Authorization and Device address validation as the ideal situation.
Identity can be further enhances thru new software platforms like Microsoft CardSpace, in addition to edge devices that can detect bio feedback (i.e. fingerprint, renal scan, bio-pulse etc) in combination with traditional account numbers and pins.
Authorization will also change the way we use ePayments, most transactions under $25 near future will no longer require a signature. RFID or Bluetooth signals will enable and complete “touch-less” transaction (i.e. EzPass for tolls, airport parking, and fast food restaurants on New Jersey Interstate parkway).
Device identifications are a bit further out leveraging IPV6 as the key to identifying every IP server and edge device uniquely. This does not prevent spoofing entirely, however does give the customer and merchant or bank a higher degree of confidence within non-repudiation or transaction settlement.
For additional information on what Micorsoft is doing and it’s partners please leave a track back on this blog or check out ePayment Industry Architect Moin Moinuddin ePayment Blog at http:/blogs.msdn.com/mmoin.
Cheers,
Don.
-
12:11 PM Thursday, July 06, 2006
Jul
06
Thu
Easy - demonstrate enterprise capability solving real business problems, integrate Microsoft’s latest product features and demonstrate success at Securities Industry Association conference.
This year I attended Securities Industry Association (SIA) annual forum in New York Hilton, June 20, 2006 – housing over 500 technology booths showcasing latest SOA applications and services. The event draws a lot of attention due to capital market institutions and traders constantly looking for new ways to stay ahead of the game. And the formula for this years game is; technology + time to market = profits.
In the world of equity trading and investments, the power of Microsoft was demonstrated by one of my top-tier emerging partner Digipede. President & CEO John Powers team provide industry analysts and program traders several incredible real-time demonstrations of end-to-end Monty-Carlo portfolio calculation simulation using parallel HP clusters and common Office tools like Excel.
Stevan Vidich of Microsoft’s U.S. Financial Services Group worked closely with Digipede showcasing what promises to become one of the world’s most advanced modeling and trading platforms – the Microsoft Office Excel Services/Windows Compute Cluster Server solution.
What has Digipede accomplished? First they’ve integrated web-services features in Office 2007, delivered answer sets real-time to Excel Server and leveraged Compute Cluster Server (CCS) + Digipede .Net to deliver ultimate scalable parallel processing.
If you’re struggling with very complex Excel spreadsheet processing or .Net calculations and want real-time HPC performance, Digipede has the solution.
With the combination of Digipede, launch of Windows Compute Cluster Server and, later in the calendar year, Excel 2007 and Excel Services, Microsoft has a competitive offering in financial services with compelling points of differentiation relative to Linux grids:
- Leverage existing Windows OS, HW, and products Active Directory, Microsoft Operations Monitor etc.
- Works with Office applications, .Net and Visual Studio Integrated Developer Environment.
- Fully SOA enabled
- Turnkey operation with Office 2007, Excel Server, and CCS
Microsoft as a team is working closely with Digipede Technologies to enable seamless programmatic integration between .NET applications and cluster resources, and with Platform Computing to make sure that Compute Cluster Server nodes can be integrated with existing Platform-managed grids.
-
11:44 AM Monday, January 30, 2006
Jan
30
Mon
|
Microsoft Financial Services Developer Conference 2006 |
|
April 24-25, 2006 |
|
Millennium Broadway Hotel |
|
145 West 44th Street New York | Please join us for the annual Microsoft Financial Services Developer Conference. Now in its 4th year, it is the leading event for developers and architects in the financial services industry. This annual event offers developers the opportunity to gain insight into Microsoft's latest and upcoming technologies for the banking, insurance and capital markets industries. After attending this event you will walk away with best practices from industry peers, the latest tools and technologies from Microsoft, as well as information on security and the future roadmap for development technologies. In addition, the conference will offer an excellent opportunity for networking with your peers in financial services.
Building on the successful launch of the experience Financial Services vision, we will explore the practical implementation of industry leading solutions and give you tools and resources to help you apply it throughout your organization. We will feature distinguished speakers from the industry including our partner group and our Financial Services team. In addition, you will experience our customers presenting the value that they have realized through using .NET and the Windows Platform. We will also have showcase presentations from distinguished product managers from our corporate headquarters. Our sessions will be resplendent with demos, current case studies, and future visions of our next generation of Microsoft tools.
This year's event will be held at the prestigious 4 star Millennium Broadway Hotel, with the keynote delivered in the historic Hudson Theatre, the second oldest theatre in New York where stars such as Barbra Streisand and Louis Armstrong made their debuts, and the Tonight Show was first broadcast. It promises to be an event you will not want to miss!
AGENDA*
April 24
8:00am-9:30am Registration and Breakfast
9:30am-5:00pm Sessions
5:00pm-8:00pm Welcome Reception
April 25
8:00am-9:00am Breakfast
9:00am-4:30pm Sessions
4:30pm Depart
SESSIONS
Day 1 planned sessions include the keynote address, the latest on Microsoft in Banking, Capital Markets and Insurance, Building Smart Clients Solutions, Using Visual Studio Team Systems (VSTS), Developing Microsoft Office Solutions with Visual Studio Tools for Office (VSTO), .NET Security Framework, and Developing Cross Channel Applications with solutions like the Customer Care Framework (CCF).
Day 2 planned sessions include Windows Vista, Using SQL Reporting and Analysis Services, Prescriptive Architecture Guidance for Financial Services, Service Orientation and WSE, Platform Interoperability, Windows Communications Foundation (WCF), Windows Presentation Foundation (WPF), Threat Modeling, and other vertically focused sessions.
Visit our partner showcase daily featuring leading solutions, software, and resources for the Financial Services industry and get a chance to win one of several great prizes including an XBOX 360!
*Please note that the agenda is subject to change.
ACCOMMODATIONS
For your convenience, a block of rooms has been reserved at the host hotel, the Millennium Broadway Hotel. When making your reservations, please reference the Microsoft Financial Services Developer Conference to receive the reduced rate of $259. All reservations must be made no later than April 1, 2006 to receive the discounted rate.
Be sure to register by April 17th, 2006 as space is limited and fills up quickly!
http://www.financialdevelopers.com
-
07:44 PM Friday, December 30, 2005
Dec
30
Fri
 It’s amazing to me that many of the Security companies I talk with have no idea about IPv6 or plans to address this significant change. It’s sort of like looking at the ocean and saying; wow, why is the water pulling back into the ocean – well you’d be wise get running now!
The signs are everywhere, i.e. proxy server mania -- will the real IP address please stand up! Sorry it can’t – it’s been translated 6x before it renders it self at the intended target. Additionally, this is a safe haven for criminals – What? You mean criminals can translate / mask their identity address x number of times making it nearly impossible to track back to the source or Phishing site – yup! And what about those lagging gaps when talking over VOIP. Speaking over an IP circuit sometimes produces breaks in the conversation – why does it do that – it’s definitely not as good as a wired analog line? Well, quite frankly VOIP traffic looks the same as all IP traffic, with no such thing as priority IP packet shipping and added tax of layers of proxy servers the whole things gets a bit messy. Aside from the scary aspects, lets get to the practical side of managing the change and what this means to corporations and opportunities for security companies. Don’t go too crazy -- bridges are already built managing the traffic between IPv4 & IPv6, so companies can still operate over IPv4 – BTW, no IPv5 exists. However, the real challenge is to take advantage of the features and benefits of IPv6. Like being able to identity each device on the network individually – or a hottub, automobile, cell phone, or home PC (trusted edge!), etc. Each device will have a unique identity / IP address no longer requiring proxy translation, so you get smooth sailing throughout the network, or how about a speed lane for priority traffic like voice and video packets. This represents huge opportunities for emerging technology & security companies, especially startups whose development efforts are typically first in Go-To-Market schemes with products & services that no one else can claim. And the flip side, huge expense that corporations would rather not undertake. So what’s the big change? Virtually all data networks are based on Internet Engineering Task Force (IETF), IPv4 and not only tie in the network protocols but all the interdependent Application Programming Interfaces (API’s) i.e. LDAP! – are your light’s blinking yet! It’s not an incremental update; it’s a complete stack replacement. Why now? During the 90’s an explosion of internet device reveled limitations in IPv4, hence the need for NAT – Network Address Translation servers mapping and chaining IP addresses. This is no longer the case with IPv6 addressing schemes are now going from 32 to 128 bit. In addition, IETF made the administration easier to configure and manage networks, so we have a lot of good news to work with here. Mobility is especially enhanced, and if you look at any of the current IP projections & trends you know mobility is a key growth segment for services over the next five years. Other areas, phones, appliances, industrial, audio, video can now be IP enabled. What is Microsoft doing in this space? Although not fully supported, IPv6 (Internet Protocol version 6) is ready for developer testing. Microsoft’s Customer Services and Support (CSS) will now help ISV’s with technology guidance and technical help testing IPv6 issues. The current Windows IPv6 implementations (XP SP2, Server 2003 & CE4.2) are not intended for production however does provide a test bed platform for learning, planning, development and testing. More and more Asian government contacts are mandating it as part of their check list requirements for vendors – maily because the US has 75% of the IPv4 addresses. This migration effects network router, Ethernet based LANs, firewalls and Internet Service Providers (ISP’s) ATM & Frame Relay WANs and backbone carriers, as well as wireless carriers. To me, this has the making of a mini Y2k, however the legacy code is much more current, and therefore should be a much less burden some task of migrating & testing. Additionally, I see a huge opportunity for new services and capabilities opening up for new product & services. For further detail see Directions on Microsoft “Independent Analysis of Microsoft technology & Strategy” Cheers, Don.
-
07:44 PM Friday, December 30, 2005
Dec
30
Fri
 So what does a Senior Director of Microsoft do the week before Christmas Sunday morning@ 3am – sleep? Hardly, I’m waiting in line at Best Buy, Union City New Jersey standing in position 71 out of 102, in freezing temperatures. The whole thing stated when prompted by my wife the day before seeing 52 Xbox 360 units on BB web-site shipped on 12/18 -- hoping to acquire one of the ‘season must haves’ for our 15 yr old son.
We approach the store seeing people litterly camped out in tents – where my wife jumps out of the car hoping to secure a strategic position in line before anyone else gets in -- feeling as if every person is a threat to the goal. Before I park the car, and join her in line, she share’s with her line companions that I work for Microsoft – Oh Crap! The good news is that at least they see that Xbox 360 has no favorite children -- however I had to get an ear full how Bill Gates is a bad man for not meeting the seasons demand. We now have a small therapeutic group discussing the woes and impacts of going to catholic school, and other antidotal stories about cabbage patch doll scenarios from the 80’s. At that point 5am, I decide to go get coffee at Dunking Donuts and felt; heck – I’m in the holiday sprit and decide to go for the Box of Joe for our group and dozens of Munchkins. Needless to say, I was the line hero and befriend by all who stood by us – friend or foe. I made my contribution to humanity and coffee ultimately provided by bad Bill’s payroll. It was actually a feel good moment that defines a new story that’ll be told in the future and remembered fondly. Suddenly , a word from the know – a yellow jacketed store manager addresses the crowd at 6am, stating they only have 46 unit available, firmly indicating; this man here wearing the Jets football Jacket is the last person guaranteed – unless folks CC don’t go through, or others short of cash. Well, we were 25+ past Jets guy, so we decided to call it a night and said goodbye to our new line friends. Still searching…. Cheers, Don.
-
07:44 PM Friday, December 30, 2005
Dec
30
Fri
 Compliance means one thing to a corporation -- taxation. It’s all about managing the legislative lemons that are delta out by our government (and others) at an alarming rate. Ask any corporate executive about HIPPA, SOX, and GLB etc. They quickly have a look of fear and concern. No doubt, if neglected in any of these categories you liable for law suits or CEO prison – a different kind of pinstripes.
So how can we turn these Lemons into Lemon-aid? Well, technology can help, new innovative companies like Tizor can provide insight into vulnerabilities monitoring data streams real-time. Today companies not only cope with compliance mandates but must transition that effort into measured trust. And you know what’s printed on every dollar -- “trust”. How does this trust lead to corporate profits? Through building trusted peer relationships across the street or around the world. Once you and your external partners can agree upon the governing rules, trust monitoring should be the key. Like back in the 80’s when Regan met with Gobechev, the catch phrase during the nuclear talks were “trust but verify”, and that’s exactly what corporations my do today. Profiting together in harmony by demonstrating trust and eliminating / exposing dangerous combinations. Outsourcing is all the rage, but what’s happening with your (your customers) data at that site. What about the legislation governing that data, and in those country’s – can you discern today what pieces of data are venerable to your corporate health and in what countries? If this hasn’t struck a cord within by now you’re not in the Compliance game, but if it has you know all to well that this is exactly at the heart of the issue and must be addresses if companies are to being to collaborate horizontally in Financial Services, Health Care, and Supply Chain Management. Tizor – check’em out. Cheers, Don.
-
07:44 PM Friday, December 30, 2005
Dec
30
Fri
 On A quarterly basis I tabulate where the Venture Capital funding is flowing, and sort companies security taxonomies. This is by no means an endorsement of a particular trend or investment however it reveals some very interesting statistics, and surprisingly the total dollar amount invested in Security Startups in Q3 2005 is substantial.
Investment Overview; Estimated $315M new Investment in Q3 within the Security portfolio worldwide (34) deals, with the majority of investment $257M within US companies (27) by US VC firms, and (7) international. (18) Deals were primarily early stage (Series A and B) and averaged $8M. Largest deals were Series B for $12M, some highlights Vidient Systems; Hotung Venture Capital and Tizor; Hummer Winblad Venture Partners. Six Major Breakout Trends; Majority (10) investments were focused on $53mm Security Content Management companies (SCM) (consisting of; Delivery, Disposal, Filtering, Security, Digital; Assets/Rights/Signatures; Encryption; PKI). Second most active investments $34mm in (8) Identity companies (consisting of; Authentication; Authorization; Biometrics; Access Management; Protection; Single Sign-on; Smartcard; Theft). Third (8) investments in Antivirus for $88mm (consisting of; Anti; Cheating; Spyware; Piracy; Spam; Heuristic Attacks; Mobile; Phishing; URL Filtering). Fourth (6) investments focused on $54mm Security Event Management (SEM) companies (consisting of: Correlation & Analysis; Forensics; Intrusion Detection & Protection Systems (IDS & IPS); Vulnerability Assessments). Fifth, and most interesting (3) investments focused on $52mm in Managed Services (consisting of outsourcing; SCM; Identity; Antivirus; SEM, etc). Sixth investments (3) Networking companies $15mm (consisting of; Networking/Anti-Spam/Anti-Virus/Network (IDS – IPD)/VPN/Wireless).
Note worthy investments namely; Girisoft $50mm (retail Antivirus & firewall), WestTec Interactive $20mm (video surveillance), Identrus $20mm (digital identity authentication). Data calculations derived from Venture One feed as well as referrals from other groups throughout Microsoft and deals captured under the radar scope. Cheers, Don. PS. Picture taken by Sam Ramji, of me standing in front of Starbucks in the center of the Forbidden City in Beijing. I got what I needed; Vente Latte & t-shirts for the kids back home.
-
07:44 PM Friday, December 30, 2005
Dec
30
Fri
 While working with Venture Capitals and Emerging Business Security companies sometimes managing expectations is one of my most difficult challenges. Synergizing and aligning with Microsoft’s Partner Ecosystems value chain is what makes things work.
A bit tong-in-cheek, you need to keep two key things in mind; Tireless Patients and Manage Exuberant Expectations, as quoted by IDB key note speaker General Partner Sam Jadallah of Mohr Davidow Ventures. It's like walking up the tail of a dragon! Additionally, he listed key dos and don’ts; Do’s - Relevant Progress: know who and what you are – Enterprise class or Small or Medium Size Business (SMB).
- Cultivate Top priorities: organize initiatives and align your initiative with Steve Ballmer’s top 6 or 7 priorities and game plan – this is public information.
- Aligning yourself with priorities get you to jump in front of the parade. Field Contacts: Who’s motivated by your success, could be revenue pull through, or Systems Integrators.
- Partnerships with aligned goals are critical for success.
Don’ts - Thinking your going to be bought by Microsoft: It happens but so does stories about people getting hit by lighting – it’s rare.
- Focus on closing deal by a special date: is typically unrealistic and sets up everyone for a disappointment.
- Microsoft brings you the first customer: I had conversation with a startup on a competitive platform wanted me to convert the platform and position the first deal. Again, highly unrealistic.
- Skip the programs and go directly to Microsoft Corporate: Many Startups don’t realize that they need to go through due diligence with the appropriate program steps developing relationships with internal Microsoft advocates.
I’ve worked with many different types and personalities and witnessed first hand all of his observations and believe Sam advice is spot-on. Following a prescribed sequenced steps, building relationships, working the ecosystems and taking advantage of programs, greatly improves the odds now in your favor to accelerate deals and revenue. Cheers, Don. PS. My first published Art work -- Dragon pencil sketch, hopw it's not too scary :)
-
07:44 PM Friday, December 30, 2005
Dec
30
Fri
Last week I attend the Info Security event at Jacob K. Javits Convention Center in New York City – an awesome forum for Security professionals to get a handle on the latest defense against vulnerabilities. As you may already know I work for Microsoft overseeing 340+ Emerging Security companies who are typically Ventured backed, either contributing directly to Microsoft Partner ecosystem or believe or not complements our platform with competitive operating systems and languages.  Of special interest was two key note speakers; former US Sectary of the Department of Homeland Security Tom Ridge and Founder of Counterpane Internet Security Bruce Schneier, author of his lattes book Beyond Fear.
Tom Ridge’s speech was focused around the five aspects of driving a secure homeland starting with personal responsibility, governments, enterprises / corporations, coordination and Information technology Security. He made his point clear that these ingredients combined are necessary to have complete confidence going forward – he was a bit formal, however actually a very captivating speaker worth listening to.  Bruce Schneier was a bit more animated, as he approached the stage actually leaping vertically 5ft to the podium, sporting a 3 ft ponytail – I knew we were in for a wild ride with that entrance. Bruce took a more pragmatic approach describing the challenges that the audience was facing on a day to day basis within their profession.
******************************************************************* 10 trends; - Economic Value - protection must match the asset value.
- Network as Critical - is part of the computing value chain & vulnerability.
- Third Parties Controlling Information – i.e. financial information is kept by suppliers.
- Criminal are on the Internet - shift from hobbyists to criminals.
- Ever increasing Complexity - complexity is faster than security.
- Slower Patching and Faster Exploits – orchestration is formalized: i.e. Microsoft Patch Tuesday.
- Sophistication of Automated Worms– i.e. polymorphic / morphic worms.
- Un-trusted Worthiness of Endpoints – Bruce’s Mom’s PC is the culprit: confession pending.
- End user as the Attacker – Botnetworks!
- Regulatory Pressure – putting the punitive fines where the control is.
General observations; - Things are getting worse not better – primarily due to speed & complexity. - Non technical aspects of security; Political / Social / Economic - Political pressure is the key: punitive damages & suing. - Economics not computer science: aligning interaction & economics. - Externalities leveling: $$ + effort investment = security investment. - Who’s really exposed, it may not be the one who has the control. - Tradeoffs & Interests: it will change every six months. The event was great worth the $$, and met many of the companies that work with on a day to day basis (was like speed dating) and look forward to writing about in the near future. Cheers, Don.
-
07:44 PM Friday, December 30, 2005
Dec
30
Fri
 For emerging companies, building and nurturing strong partnerships is critical to your success. Start-ups, VCs, and business development executives are invited to this one-day symposium, hosted by Microsoft’s Emerging Business Team (EBT) to learn how to maximize opportunities, build strategic initiatives, and develop a successful partner engagement with Microsoft. For more information about EBT, go to http://www.microsoft.com/startups
Tuesday, November 29, 2005
8:00 am - 4:30 pm
Microsoft Silicon Valley Campus, Building 1, Mountain View, CA
-
07:44 PM Friday, December 30, 2005
Dec
30
Fri
 As part of my Job with the Emerging Business Team I get to work with cool innovative start-ups. Oakley Networks is a very interesting company based in Salt Lake City, UT working on keeping an eye on insider misbehavior.
“According to Gartner, 70% of security incidents that incur actual losses are inside jobs, making the insider threat arguably the most critical threat facing the enterprise.” Oakley’s roots were in information web-site behavior patterns & analysis, and recent past three years assurance solution provider to the Department of Defense. Oakley is now focused on securing extremely large enterprises (many of them more than 30,000 desktops) against the leakage of vital data before it leaves the company network. As you can imagine this type of technology is prefect for SOX, HIPPA, GLB, IP, HR compliance, vendor collusion, insider trading and profanity filtering utilizing a customable rules base engine tailored to your commercial enterprise policies. The simplest way to understand what this product does is; capture all keystrokes and text input into ‘any’ application and the ability to scan those strokes against the ‘corporate policy’ rules based engine. When a policy is violated, an alert is sent to SureView™ monitor for TiVo like playback – no matter the application form. Additionally, it captures the editing aspects of authoring; like the insertion & deletion of text; I.e. composition of web-based e-mail messages containing intellectual property and then subsequently deleting content upon reflection of better judgment. No matter, Oakley has already captured the before and after intentions, busted! – Pretty cool stuff. This innovative patent-pending technology enables companies to secure and sift vast volumes of communications without being overwhelmed with data while introducing and enforcing enterprise wide security policies. Again, whether inadvertent misuse, well-intentioned abuse or malicious exploit only, SureView alerts security personnel upon the violation of those policies, replays a unique pre-encryption or post-encryption video replay of the violation for investigation. Oakley Networks is a leader in the “Insider Threat Management” space serving the commercial and government sector. Additionally, the company is growing at a fantastic rate with over 130 employees, reaching sales to over $30M in 2004, and looking even better in 2005. Keep your eye on these guys…
|
|
|
