Less paper, more security: electronic storage doesn't mean more secure files. (2003 Technology & Business Resource Guide: Document Management).In 4000 BC, Alexander of Egypt attempted to start a business called "Papyrusless Office." His business folded in less than a year, as the Egyptians just didn't understand the concept. Later, Apollo of Greece tried to sell people on the idea of "Parchmentless Office." It also failed miserably, given that no one could invent a replacement for parchment. But in 2003, we finally have the right combination of technology, hardware, know-how and software for firms to fully implement a "paperless office Long predicted, the paperless office is still a myth. Although paper usage has been reduced in some organizations, it has increased in others. Today's PCs make it easy to churn out documents. As one technology eliminates paper, another comes along to increase usage. " should they choose to do so. So, what are some of the things you need to think about when going paperless? Just the technology, right? Wrong. EVERYONE IN AGREEMENT It seems paperless office implementations are more challenging and stressful than any other technology implementation that I've monitored lately. Why? Because many times the system implemented hinders the workflow rather than helps the process. Also contributing to the problem is that organizations don't always solicit input from those people who will use the new system. Bob Hillery, a security instructor for the SANS Institute The SANS Institute (SysAdmin, Audit, Networking, and Security) is a trade name owned by the for-profit Escal Institute of Advanced Technologies. SANS provides computer security training, professional certification, and a research archive. in Maryland, says that when you are implementing a security system in an organization, you must find your "go-to" people--those people whom others go to for information on how to perform their tasks. I would argue these same people should be called upon when implementing a paperless system. This helps to create buy-in from everyone in your organization. Without acceptance, the system likely won't work. Cedars-Sinai Medical Center Cedars-Sinai Medical Center is a world-renowned hospital located in Los Angeles, California. History Cedars-Sinai is the result of a merger in 1961 between two major Los Angeles hospitals, Cedars of Lebanon and Mount Sinai Home for the Incurables, with Steve Broidy as turned off its computerized physician order system in January partly due to the lack of partnerships between physicians and firm leaders. Because paperless is technology, be prepared to roll out your paperless system in parts to allow users to get accustomed to and learn the new way of doing things. Devote some time to assembling and presenting how-to manuals. Test your presentation and documentation ahead of time with employees who aren't involved in the process to make sure instructions and processes are clear. LOCKDOWN Lockdown A specified period when an employee of a public company is barred from selling - and occasionally buying - their company's stock. Notes: These types of equity transaction restrictions can be imposed by securities regulators or underwriting firms if a company has Next, consider legal issues and retention policies. What documents do we need to scan and "lock" as permanent records? What documents are considered our work paper product that we can annotate annotate - annotation ? What security do we have to ensure that our documents will remain as they were scanned and cannot be altered? The same security steps you perform on your paper documents--ranging from locking up highly critical paper in a fireproof fire·proof adj. Impervious or resistant to damage by fire. tr.v. fire·proofed, fire·proof·ing, fire·proofs To make fireproof. Verb 1. safe to having a regular written retention policy--also are vital for your paperless documents. In addition, technology-related security measures Noun 1. security measures - measures taken as a precaution against theft or espionage or sabotage etc.; "military security has been stepped up since the recent uprising" security should be implemented. When you set up your computerized systems, perform a risk analysis of your network. Keeping in mind that the greatest security threats are from those computer users inside your network who can weaken your security systems in the actions that they perform. Many security experts recommend firewall and antivirus software on all computers that are connected--whether physically or virtually--to your network. Thus, consider that when you use remote connectivity to your network, you have just extended the security perimeter of your firm to your house. MAKING COPIES Backup and redundancies should be considered, both for your network storage and your scanning equipment. Consider the robustness of your scanner. Is it a better deal to lease a large copier style scanner that will scan many pages per minute versus buying a smaller desktop scanning unit? Your unit should be able to handle different sizes and types of paper. Accounting documents may not originate on letter-sized paper, thus the scanner you select should be tested with the paper you expect to use. If possible, test the equipment to ensure that your expectations are met. Also, obtain information about their support policies and procedures Policies and Procedures are a set of documents that describe an organization's policies for operation and the procedures necessary to fulfill the policies. They are often initiated because of some external requirement, such as environmental compliance or other governmental . Is it like a typical copier agreement, where maintenance is charged on a per sheet basis and the repair person comes to you? Or must you make arrangements for off-site maintenance, which will increase your down time when the machines break down? Determining the amount of down time that is acceptable for you is important. Don't merely look at the price of the object when you're shopping around--examine the entire financial transaction, which will allow you to make the best decision regarding your electronic document needs. When it comes down to it, none of us will have a "paperless" office. We will, however, constantly strive for a less paper environment. Susan Bradley, CPA (Computer Press Association, Landing, NJ) An earlier membership organization founded in 1983 that promoted excellence in computer journalism. Its annual awards honored outstanding examples in print, broadcast and electronic media. The CPA disbanded in 2000. , CITP (Certified Information Technology Professional) A specialty credential awarded by the AICPA to its CPA members who excel in the provision of technology-related business services. , MCP (1) See Microsoft certification. (2) (MultiChip Package) A chip package that contains two or more chips. It is essentially a multichip module (MCM) that uses a laminated, printed-circuit-board-like substrate (MCM-L) rather than ceramic (MCM-C). , GSEC GSEC GIAC Security Essentials Certification (computer security certification designation) GSEC Geophysical Survey and Exploration Contract GSEC Generalized Switch-And-Examine Combining is a partner with Tamiyasu, Smith, Horn Braun in Fresno. You can reach her at sbradley@tshb.com. |
|
||||||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion