NEWS

Recent News at CCL

CCL appoints Suzanne Miller – Director, Central Region

By | General News, Uncategorized

Suzanne Miller has been appointed Director, Central Region, spearheading the newly-merged CCL’s business across the greater  Wellington and lower-North Island regions.

Completing CCL’s top-table line-up, announced in May this year, Miller joins CCL from Spark, where she held the position of Customer Unit Lead.

A former general manager of Datacom’s government cloud services, Miller’s track-record in the IT industry includes roles for a slew of top-tier organisations, including HPE and, client-side, IRD, Capital Coast District Heath Board, and Westpac Bank.

CCL CEO Andrew Allan said he was delighted with Miller’s appointment. “Suzanne has a formidable CV, with technical and leadership skills tested and proven in some of the country’s most dynamic organisations,” he said. “Her experience in cloud services, transformational change, and central government make her ideally placed to lead CCL in the central region.”

With 700-plus employees and 11 offices nationwide, CCL is the country’s largest New Zealand-focused IT services company, providing end-to-end IT management and multi-platform expertise to some of New Zealand’s most important organisations.

Since announcing the merger late February, the company has maintained a head of steam, winning significant transformation project work for New Zealand’s primary workplace health and safety regulator WorkSafe, and Children’s charity Barnados, as well was adding muscle in the public cloud arena with new accreditations from Microsoft and Amazon Web Services (AWS).

Workers still falling victim to old cyber tricks

By | General News

Fraudsters prey on busy execs’ impulsive email behaviour  

Few people these days fall for unsolicited emails from Nigerian princes offering juicy commission to transfer funds from a multimillion-dollar inheritance. But still plenty of Kiwis are being sucked in by a rising number of email phishing scams – and you can blame their impulsive email behaviour.

CCL’s security awareness service, which each week sends phishing look-a-like emails to thousands of employees working in organisations across the country, is registering a phishing success rate of 20-to-30 per cent among participating employees presented with their first duplicitous email.

CCL’s Head of Security, Tim Sewell, said analysis showed that while people in all job roles fell victim to phishing attacks, certain personality types, especially Type-A personalities, often found working in sales and leadership roles, appear more inclined to click duplicitous links and attachments.

However, personality type wasn’t the only factor to determine susceptibility, he said. “Personal workloads, stress, timing and context also influence the success rates of phishing attacks. For example, receiving a phishing email that looks like a courier company when you’re expecting to receive a parcel – bingo.”

Sewell said CCL’s training and education programme had reduced phishing success rates to around five per cent, with well-trained employees now regularly reporting phishing scams and being part of the solution.

In the meantime, real-life phishing incidents were likely to remain high as phishermen got more sophisticated, launching scams from previously compromised email accounts and impersonating trusted providers, such as Microsoft Office 365, Amazon, Google, even the IRD and NZ Post, he said.

“More people are working in the cloud and using browser-based logins to access services. As this behaviour becomes routine, people tend to let their guard down, providing an easy in for fraudsters to steal user login credentials,” said Sewell.

A report published by cloud security firm Avanan shows one in every 99 emails is a phishing attack, using malicious links and attachments as the main vector.

Closer to home, CERT NZ figures show the number of malware reports from Kiwi organisations more than doubled to 43 in the three months ended 31 December.

Phishing campaigns containing malware and targeting business customers of some New Zealand banks contributed to the increase. And in three incidents reported to the NCSC this year, New Zealand organisations lost nearly NZD$800,000 to ‘successful’ fraudulent invoice emails.

Sewell said multi-factor authentication (also known as MFA) helped reduce credential theft – one of the main prizes from phishing attacks – by requiring users to authenticate themselves to a website by another method, in addition to the standard username and password login procedure.

However, he said the additional cost of MFA and the inconvenience to users who are quick to moan about laboured access discouraged adoption, increasing the “attack surface” for criminals.

“And that’s a big problem, because once the bad guys have captured a user’s credentials their behaviour goes largely unnoticed – because there isn’t anything to trigger a security alert,” said Sewell. “That gives the crims time to watch and learn, email customers with revised payment details, send out mocked-up invoices, gain the trust of contacts linked to the compromised email account, and reply to existing emails.”  

He said regular, friendly phishing exercises, multi-factor authentication, and anti-phishing technology were essential steps in the current cybersecurity landscape, though tweaking existing policies in some cases was the fastest way to bolster defences, he said.

“For example, financial policies should ensure requests to change payment details are authorised and properly validated, without relying on email. Don’t accept emails as authorisation of payment method. And if someone keeps taking the phishing bait, maybe they’re in the wrong job,” said Sewell.

CCL scoops Dell Solution Provider Workforce Transformation Award 2018

By | General News

CCL’s delivery of Dell solutions has been recognised at the vendor’s annual A/NZ partner event held last week in Nouméa, New Caledonia.

The Spark-owned provider took home the solution provider workforce transformation award 2018.

CCL was the only New Zealand partner to win among the 13 categories in the regional award.

The awards recognise the ways in which partners are growing their businesses within the Dell Technologies Partner Program, unlocking limitless possibilities for their customers with innovative transformational solutions, the vendor explained.

Read the full story.

CCL-Revera appoints executive leadership team

By | General News

CEO Andrew Allan appoints leadership team to extend company’s cloud and IT services leadership.

Seven executives from the ranks of Revera and CCL pre-merger have been appointed to the executive leadership team of the now merged entity, called CCL.

Joining CEO Andrew Allan at the top table is:

  • COO – Sri Gazula, who held the same position at Revera
  • CFO – Chris Fairfield, previously Revera CFO
  • Troy Myer – Technical Director (formerly Revera General Manager Business Development)
  • Cherie Roache – Director Southern Region (formerly CCL General Manager, Southern Region)
  • Guy Inglis – Director Northern Region (formerly CCL General Manager, Northern Region)
  • Rik Rogers – Director Client Delivery (formerly CCL General Manager Managed Services)
  • Richard Hansen – Director Enterprise Sourcing (formerly CCL General Manager Strategy).

The company is currently recruiting for an executive to fill the role of Director Central Region.

“The formation of this team is a significant milestone in what is a new beginning for two established businesses,” said CEO Andrew Allan. “Now we can leverage our collective strengths to accelerate our success in cloud and IT services.”

Allan oversees more than 700 employees, in offices across Auckland, Wellington, Christchurch and Nelson, in additional to Blenheim, Dunedin, Invercargill and Queenstown.

“The merger was conceived to create a single organisation providing end-to-end IT management and cloud technology services unrivalled in New Zealand,” he said. “Work continues apace as we streamline processes, culture, and customer experience – the results of which will bubble to the surface without too much fanfare.”

Since announcing the merger late February, the company has maintained a head of steam, winning significant transformation project work for New Zealand’s primary workplace health and safety regulator WorkSafe and Children’s charity Barnados, as well was adding muscle in the public cloud arena with new accreditations from Microsoft and Amazon Web Services (AWS).

Allan said the Spark-owned entity had full license to write its own rules for success  but was remodelling aspects of its services portfolio to support Spark Group’s strategy in the cloud.

Jolie Hodson, Customer Director at Spark, said the new CCL was the best form to leverage the company’s investment in the two businesses – a move that effectively created Spark Group’s IT managed services and cloud delivery engine.

“We want to extend our position as arguably the leader of IT management and cloud technology services in the country,” she said at the time of the announcement. “Combining these two businesses delivers the seamless end-to-end services and expertise more clients demand, and ensures we put a panoptic lens to their businesses.”

WorkSafe gears up for cloud transformation

By | General News

WorkSafe New Zealand has kicked off a transformation programme to deliver workplace systems from Microsoft Office 365, SharePoint, Azure, and Windows 10, supporting 500-plus staff with a single cloud platform to work and communicate.

WorkSafe, New Zealand’s primary workplace health and safety regulator, is working with CCL-Revera to deliver the project, slated for completion later this year.

WorkSafe’s move to a public cloud platform lays the foundation to deliver against the government’s vision for health and safety at work over the next 10 years.

Mike Foley, chief digital and information officer at WorkSafe, said the transition is consistent with government’s cloud first policy to improve services and deliver substantial cost savings.

“Smart cloud platforms provide the enterprise agility we need to become a world-class regulator,” said Foley. “The less time we spend on administration and bending legacy systems to new forms of work, the more focus we bring to improving health and safety performance.”

VMware’s Workspace One Digital workplace platform will provide secure multi-device access to WorkSafe applications.

Foley said CCL-Revera ticked all the boxes, including migration planning, platform setup, staged transition, user support, and ongoing management.

Andrew Allan, CEO of CCL-Revera, said his company won the competitive tender in a joint bid with Revera late last year. “The tender process confirmed the complementary nature of our businesses and the value clients place on a broad mix of services and capabilities delivered from a single engagement and support engine.”

Announcing the merger last month, Allan said the move was motivated by a market shift that saw more clients seeking out a single supplier to cover all their bases.