The KIT ─ Knowledge & Information Technology
No. 233 - 1 February 2019
Was this forwarded to you?
In This Issue
Business Process Modeling and Improvement
Two New Cloud Computing Guides
IoT Market Forecasts
OWASP Top 10 Security Issues for IoT
Two Books
The Worst Tech Job Titles
Seen Recently
Claude Baudoin

Consulting Services
  • IT Strategy
  • Enterprise Architecture Roadmap
  • Business Process Modeling & Analysis
  • Enterprise Software Selection
  • IT Innovation Briefings
  • IT Due Diligence
  • Executive IT Seminars
  • Cloud Computing
  • Security Maturity
  • Software Process
  • Knowledge Strategy
  • Technical Communities
  • Knowledge Capture
  • Taxonomy development
  • Enterprise Social Media
Contact Us:
cébé IT and Knowledge Management
www.cebe-itkm.com
info@cebe-itkm.com
+1 415 870 ITKM
Twitter: @cbaudoin
Archive:
Previous KIT Issues
Forward this issue to colleagues and friends: use the "forward email" link below at left, rather than "Forward" in your email software, to preserve your privacy, give the recipient more options (their own unsubscribe link, etc.) and to give us better click-through data. Thanks!
Business Process Modeling and Improvement
We just put online a new one-page flyer describing our approach to consulting on business process modeling, analysis and improvement. It is based on a simplified enterprise architecture (EA) framework, and on the use of BPMN, complemented when necessary by modeling cases in CMMN and decisions in DMN. Click here for the PDF.
Help Review Two New Cloud Computing Guides
The Cloud Working Group of the OMG (formerly the Cloud Standards Customer Council) has prepared two publications, which have entered the review phase:
  • A new "Practical Guide to Cloud Deployment Technologies," which explains what bare metal services, VMs, containers, unikernels, and function-as-a-service mean and how to choose from them. Review the final draft here, and provide comments here before February 27.
  • Version 3 (significantly revised and augmented) of the "Practical Guide to Cloud Service Agreements," which explains what those agreements should contain to protect the cloud customer against issues of performance, availability, security, privacy, and more. Review the final draft here, and provide comments here before February 17.
IoT Forecasts...
For each company that makes Internet of Things systems, there seems to be a market watch organization that spends time producing market forecasts about the explosion of this industry. Here are two recent predictions:
  • IDC forecasts that the worldwide spending on IoT will grow from $646 billion in 2018 to $745 billion in 2019.
  • MarketsandMarkets says that the smart home market will reach $151.4 billion by 2024 (don't you love that extra little 1.4 billion, a great example of totally useless precision?)
... and IoT Security (Again)
The OWASP Foundation (Open Web Application Security Project) released in December 2018 the results of its OWASP Internet of Things Project, in the form of the Top 10 IoT security issues. Drum roll? Not so loud! The list looks a lot like the non-IoT Top 10, which shouldn't be quite a surprise to anyone who has seen the same vulnerabilities come up again and again in all sorts of systems since Al Gore Vint Cerf invented the Internet (50 years ago, by the way). Guess what's at the top? "Weak, Guessable or Hardcoded Passwords." Only items 8, 9 and 10 (device management, insecure default settings, and lack of physical hardening) can be said to be somewhat unique to IoT systems.

This of course doesn't make the list unimportant. But it means that organizations are still not taking care of the basics of security and may be applying the wrong priorities to their efforts.
Books
From the ACM Skillsoft collection, we selected two books this month:
The Worst Job Titles in Tech
Indeed.com, an online search engine for job postings, published a couple months ago a list of the "worst" (most grandiose, or gratuitously metaphorical) job titles seen in openings. These include:

Talent Accelerator, Agile Coach, Chief Magic Officer, Ninja, Guru, Wizard, Chief Hacker, "In charge of disruption," "serial innovator" and its variants.

But those who live in glass houses should perhaps not cast stones. In "The Bogusness of Indeed.com," headhunter Nick Corcodilos excoriates Indeed.com for publishing meaningless statistics about its success. The recurring point is that none of the wonderful statistics about number of postings, number of visits, etc., say anything about the actual success rate -- the number of people who find a job or of employers who end up hiring someone.

Seen Recently...
"When I retire (someday), I will disappear from all social media and apps. I just don't like the companies behind this stuff anymore. Unfortunately some of this stuff is needed to keep a personal brand relevant."
-- Mike Kavis, @madgreek65