Yesterday I had lunch with some colleagues who are lawyers that focus their work in/around compliance, intellectual property and cloud computing. It was neat to hear their perspective on where things are headed in IT. We came to the conclusion that IT professionals are going to have to learn as much as they can about the legal side of what we do.
I’m not talking compliance in general but also contracts, SLAs and the like. You’ve got to be able to inform management on what to ask for in SLAs (especially with cloud services), set their expectations on the realities of what their signing and also be prepared to raise some red flags when you find SLA or contract verbiage that’s not good for the business.
The harsh truth is many corporate lawyers and executives don’t have a clue when it comes to understanding the IT-related nuances in SLAs and contracts. So, step back and be prepared to help in this area – it’s only going to become more complex. There are some great legal resources on various blogs and Twitter. I’ll see if I can round some up for a future post.
“A business associate referred our company to Principle Logic when we were seeking a resource to perform vulnerability /penetration testing for our external and internal networks. We found Kevin Beaver to be professional, well informed, and easy to work with. His testing did not disrupt our networks, and his progress updates were timely.
His final report was very thorough and included security recommendations for our network environment. The executive leadership was so impressed with Kevin’s security expertise, they have extended their agreement to continue to perform periodic testing. We highly recommend Kevin Beaver and Principle Logic as a resource for network security testing.”