Secure Group Knowledge: Difference between revisions

From Secure Group Wiki
Jump to navigation Jump to search
Line 158: Line 158:
= Information Security =
= Information Security =


{| class="wikitable"  
{| class="wikitable" style="font-weight:bold; text-align:center; vertical-align:middle; color:#222;"
|- style="font-weight:bold; text-align:center; background-color:#c0c0c0;"
|- style="background-color:#ACB9CA;"
! Business Function/Category
! Business   Function/Category
! Concept
! Concept
! Description
|- style="text-align:center;"
| style="font-weight:bold;" | IS Department Management
| IT Policies
| style="text-align:left;" | Which are the user oriented IT policies of the company?
|- style="text-align:center;"
| rowspan="16" style="font-weight:bold;" | Network Security
| rowspan="3" | Network Security principles
| style="text-align:left;" | What are the different functionalities in network security?
|-
|-
| What should be done in case we suspect a security breach?
| IS Department Management
| style="font-weight:normal;" | IT Policies
|-
|-
| How to ask to implement new tool in the company?
| rowspan="3" | Network Security
|- style="text-align:center;"
| style="font-weight:normal;" | Network Security principles
| rowspan="6" | Network Attack Types
| style="text-align:left;" | What is DDoS, MitM attack?
|-
|-
| What is fishing attack?
| style="font-weight:normal;" | Network  Attack Types
|-
|-
| What is scam email/website?
| style="font-weight:normal;" | Network  Attacks' Prevention
|-
|-
| What is ransomware, malware, adware, spyware, computer virus?
| rowspan="9" | Services  Management
| style="font-weight:normal;" | Virtualization
|-
|-
| What is social engineering?
| style="font-weight:normal;" | Microsoft  Server / Linux Server
|-
|-
| What is shadow IT?
| style="font-weight:normal;" | Docker
|-
|-
| rowspan="7" style="text-align:center;" | Network Attacks' Prevention
| style="font-weight:normal;" | Active  Directory Management
| What is Network Access Control?
|-
|-
| How to securely access company resources and minimize the risks of network attacks?
| style="font-weight:normal;" | Mail  services management
|-
|-
| How to set a strong password?
| style="font-weight:normal;" | Atlassian  Products Management
|-
|-
| How to perform a malware scan of your workstation?
| style="font-weight:normal;" | Accounting  Services
|-
|-
| What is the importance of firewalls in network security?
| style="font-weight:normal;" | File  sharing
|-
|-
| What is secure remote access and VPN?
| style="font-weight:normal;" | PBX  Services
|-
|-
| What is Data loss prevention?
| rowspan="3" | Network and IT  Infrastructure management
|- style="text-align:center;"
| style="font-weight:normal;" | Firewall
| rowspan="26" style="font-weight:bold;" | Services Management
| rowspan="5" | Virtualization
| style="text-align:left;" | What is virtualization?
|-
|-
| What is the difference between virtual and physical host?
| style="font-weight:normal;" | DNS  Services
|-
|-
| What is VMware Server/Desktop application and how does it work?
| style="font-weight:normal;" | Network  Infrastructure
|-
|-
| How to replicate VMs?
| rowspan="3" | IT Services Operation
| style="font-weight:normal;" | User access management
|-
|-
| How to restart VMs?
| style="font-weight:normal;" | Troubleshooting  user issues
|-
|-
| rowspan="5" style="text-align:center;" | Microsoft Server / Linux Server
| style="font-weight:normal;" | Incident  management
| What is the main function of a server ?
|-
|-
| Which are the servers that should be accessed by the department?
| Hardware Management
| style="font-weight:normal;" | Workstations management
|-
|-
| What are the services that should be used by the department?
| rowspan="2" | Day-to-Day User  Operations
| style="font-weight:normal;" | Workstation operation
|-
|-
| How to use Guacamole?
| style="font-weight:normal;" | Network  device management
|-
|-
| How to access a server via RDP or SSH?
| Purchasing
|-
| style="font-weight:normal;" | Subscriptions and Hardware
| style="text-align:center;" | Docker
| What is docker and how is it used ?
|-
| rowspan="3" style="text-align:center;" | Active Directory Management
| What is  an Active Directory?
|-
| What is GPO ?
|-
| What is the function of selfservice (Adaxes) and how to use it  ?
|-
| rowspan="4" style="text-align:center;" | Mail services management
| What is Microsoft Exchange Server?
|-
| How to configure outlook client?
|- style="text-align:center;"
| style="text-align:left;" | How to use webmail service?
|-
| How to manage events on the calendar? How to book a room?
|-
| rowspan="3" style="text-align:center;" | Atlassian Products Management
| What is the main function of Bamboo, Bitbucket, Jira and Confluence?
|-
| How to use Jira and Confluence?
|-
| What is space and project?
|-
| rowspan="2" style="text-align:center;" | Accounting Services
| How to access Navision?
|-
| What are the main functions of Navision?
|-
| style="text-align:center;" | File sharing
| How to use Next Cloud ?
|-
| rowspan="2" style="text-align:center;" | PBX Services
| How to use Digium PBX ?
|-
| What are the codes for dialing ?
|- style="text-align:center;"
| rowspan="16" style="font-weight:bold;" | Network and IT Infrastructure management
| rowspan="5" | Firewall
| style="text-align:left;" | What is firewall?
|-
| How mail quarantine functions?
|-
| What are the NAT rules?
|-
| What is Port forwarding used for?
|-
| How to set up port forwarding?
|-
| rowspan="3" style="text-align:center;" | DNS Services
| What is the function of DNS?
|- style="text-align:center;"
| style="text-align:left;" | What are A, MX, CNAME, TXT, SPF, AAAA, SRV records?
|-
| What are the differences and relations between Internal DNS and External DNS?
|-
| rowspan="8" style="text-align:center;" | Network Infrastructure
| What is the difference between LAN, VLAN?
|-
| What is TCP and IP?
|-
| What are the differences between UDP and TCP and when to use each one of them?
|-
| How to connect to the company VPN?
|- style="text-align:center;"
| style="text-align:left;" | How to check network connectivity ?
|-
| What are the most common CMD commands and what are they used for?<br />(Ipconfig, Ping, Dir, Nslookup, Tracert)
|-
| How to use web tools: mxtools, visual trace route, dnstools, etc…?
|-
| How to define the IP address of the workstation?
|- style="text-align:center;"
| rowspan="10" style="font-weight:bold;" | IT Services Operation
| rowspan="3" | User access management
| style="text-align:left;" | How to use your AD account : which accesses does it give you?
|- style="text-align:center;"
| style="text-align:left;" | How to access services via  idaptive ?
|-
| Which are the personal accounts that you have ?
|-
| rowspan="5" style="text-align:center;" | Troubleshooting user issues
| What are the accesses to company resources that you need regarding the KAI?
|-
| How to request access for a tool?
|-
| What is a command line?
|-
| What are the basic CMD commands to execute a network troubleshooting?
|-
| How to address an issue with a tool or a hardware?
|-
| rowspan="2" style="text-align:center;" | Incident management
| What is the internal Statuspage?
|-
| How to define incidents' priority and how address them?
|- style="text-align:center;"
| style="font-weight:bold;" | Hardware Management
| Workstations management
| style="text-align:left;" | What's advanced hardware in terms of: terminology, troubleshoot and the relation between them?
|- style="text-align:center;"
| rowspan="5" style="font-weight:bold;" | Day-to-Day User Operations
| rowspan="4" | Workstation operation
| style="text-align:left;" | What are the universal keyboard commands for operating systems?
|-
| What are the hardware components of a workstations?
|-
| How to set up a working station and advanced drivers configuration?
|-
| How to execute basic troubleshooting of  Windwos, installed software, Linux, networking?
|-
| style="text-align:center;" | Network device management
| How to connect to and use company's network devices?<br />Printers, IP Phones, TV Screens, White Boards and other network devices
|-
| rowspan="3" style="text-align:center; font-weight:bold;" | Purchasing
| rowspan="3" | Subscriptions and Hardware
| How to address orders for IT equipment?
|-
| How to address subscription requests ?
|-
| How to check if a tool is already available in the company?
|}
|}


= Business Development =
= Business Development =

Revision as of 13:30, 3 February 2021

The Secure Group knowledge management strategy enables our organization to create, apply, and share information, breaking down silos and increasing the usage of valuable data.

Secure Group (SG) knowledge is all about understanding the company’s products and processes, the way all teams work, the concepts that are part of their scope, and how they contribute to the overall corporate strategy. It includes technical knowledge for non-technical people and business knowledge to technical people. For this category of knowledge, we provide pieces of training because this way we can ensure that everyone has the complete knowledge set to be a high-performer in our company.

The progression in this type of knowledge starts from "having a basic understanding of their team's domain and Secure Group's strategic plan, industry, and market space" and going forward to "having a thorough understanding of the entire business, organizational strategy (strategic maps), including all department's domains, and how they contribute to the overall strategy.

SG Knowledge is part of the KAI of every framework because it provides context regarding all the teams in our company. Therefore, in order to progress in the development path, employees are required a level of proficiency in the following items:


Software Engineering

Business Function/Category Concept
QA/Automation Main testing techniques
Automation
Programming Programming languages
Tools
RestAPI, JSON
Basic arithmetic functions
Variables
String manipulation
Looping - flow control
Version control
Conditionals
HTML/CSS
SDLC
Android Secure OS
Android Studio
Adb command
Android SDK
Android OS architecture
Android App log
SQL
Encryption Basic encryption
Development Development process
Documentation Documentation process

Marketing, Product and Client Services

Business Function/Category Concept
Marketing 101 The four Ps of marketing
B2B / B2C / B2G
Digital Marketing
Marketing funnel
Social media marketing
Email marketing
Inbound marketing
Outbound marketing
Content marketing
PPC
SEO
Basic Google Stack
Marketing Strategy Setting goals
Market analysis
Target audience/Buyer personas
Marketing channels
Metrics and KPIs
Tactics
Planning and budgeting
Branding
Web Development Programming languages
Domain management
Hosting
CMS Platforms
Front-end frameworks
Basic security
Basic optimization
Design UX/UI
Web design
Mobile APP design
Print vs. optimized for web
Micro content
Marketing Automation and Lead Management CRM
Inbound marketing methodology
Marketing and sales funnel
Marketing Services for Partners Marketing Starter Pack
Additional marketing services

Information Security

Business Function/Category Concept
IS Department Management IT Policies
Network Security Network Security principles
Network Attack Types
Network Attacks' Prevention
Services Management Virtualization
Microsoft Server / Linux Server
Docker
Active Directory Management
Mail services management
Atlassian Products Management
Accounting Services
File sharing
PBX Services
Network and IT Infrastructure management Firewall
DNS Services
Network Infrastructure
IT Services Operation User access management
Troubleshooting user issues
Incident management
Hardware Management Workstations management
Day-to-Day User Operations Workstation operation
Network device management
Purchasing Subscriptions and Hardware

Business Development

Business Function/Category Concept Description
Hardware manufacturers sourcing and management Production management What are our product hardware specs?
Where is our product assembled?
Account Management (Master Distributors) Results and behaviors of Master Distributors Who are our top-performing Master Distributor partners?
Where do they operate?
What are their markets?
Channel credit policy What is our channel credit policy?
What happens when a credit limit by a channel partner is exceeded?
Channel Management Problem resolutions What are the more typical problems related to channel management?
Distribution chain How is our product distributed?
What are the different stakeholders involved in the distribution of the product?
Compliance Compliance management How do we ensure we partner with compliant companies?
Pricing Management Product pricing How much is our product sold to the end-customer?
What are the average margins our partners are making?
What are the active promos we are running?
Product costs What are our average product costs?
Product Management Partnership levels How do you become a partner as a Master Distributor, Distributor, Reseller, Sales agent?
Logistics Management Logistic and order fulfillment Where is our phone logistic center located?
What is the purpose of our logistic center?
Where do we ship our phones to?
Return shipping What is our product warranty?
SIM logistics and order fulfillment How do we ship SIM cards?
Where do we ship SIM cards to?
Sales automation and lead generation CRM and document management Which platform do we use for our CRM?
Which platform do we use for document management?
Lead generation What is a sales lead?
How do we generate leads?
Lead Management Buyer personas What are the typical characteristics of our end-customers?
What are the typical characteristics of our channel partners?
Partner Services Management Partner services What are the additional services we provide to our partners?
Strategic Suppliers Management Suppliers Who are Secure Group's strategic partners?


Partner Success

Business Function/Category Concept Description
System Administration Linux server set-up What are the main stages in a Linux server/workstation distribution installation?
Remote servers with SSH connection What is SSH connection?
How to use SSH to remotely connect to a server?
Users management How to create, remove and modify users on a Unix system?
How do groups work?
File permissions How to grant/remove different levels of access to different parts of the file system with chmod and chown?
How to read files permission?
Init systems How to configure an Init system to start/stop processes at specified run levels?
How to start and stop services?
Basic monitoring What's free memory, disk usage, load average and other metrics for server performance?
Package manager How are software packages maintained and kept up to date?
Web server What is a static web server?
What is a LAMP server?
Basic docker management and administration What is Docker engine and what is a docker controller?
How is the docker environment being used in the context of SG?
How to create, RUN, Pause, Unpause, Start, Stop Restart, Kill container?
Active directory What are the major features in Active Directory Domain Services (trees, trust, forest)?
How to create a user, add a mailbox, etc?
How to create a Group policy and how to enforce it?
How to troubleshoot and configure Windows 2008 R2 - 2012 R2?
How to use the administration tools (Active Directory, DNS etc)?
Storage What is NFS, ISCSI, Samba?
How to share folders in windows?
What is a Security Descriptor?
What is Access Control List (ACL)?
What is a parent directory and a child directory?
E-mail server What's the difference between a transaction e-mail and an email API?
What's the relation between Simple Mail Transfer Protocol (SMTP), Mail Transfer Agent (MTA), Domain Name System (DNS), Mail Exchanger (MX), Post Office Protocol (POP), Internet Message Access Protocol (IMAP)?
What are the SPAM rules and how to use SPAM engines?
Reading logs What are the basic network events?
Intrusion detection, packet blocked or allowed, access log
How to read the MSexchange tracking log and understand an event?
XMPP What's the XMPP protocol and how to use it?
What are the main extensions?
SIP Protocol What are the main features of SIP?
What's the relationship with Voip?
System Administration Day-to-Day Operations MDM Administration What is MDM?
What are the basics of User Group Management?
What's the general structure of SAS?
How to perform reporting, searching, log analysis?
What are the basic differences between Device, Application and OS Policies?
What is the concept of the enclosed environment/instance?
What are the relationships between SAS and the other microservices within an eco-system?
Root cause analysis What is cause and effect and how are they related?
What is an event in a system log?
How to navigate an event using a timestamp?
Escalated Support Triage and Testing What are the basic concepts of Incident Escalating?
How to perform root cause analysis for triage and testing?
What is crisis action plan and to manage them?
What are the steps to reproduce?
Release Management Release What are Alpha, BETA and Release processes in the context of SG?
What are the Product Demos and which are the Product Ceremonies?
IT Services Operations Service Desk What is Incident Management and its basic concepts?
How is the PS team's Client interaction process and Ticket Management?
Problem Management How's PS department prioritizing incidents and events?
What's the definition of resolution?

Secure Group Management Model

Business Function/Category Concept Description
SGMM
(Employee Development & Performance Management)
Individual Contributors Path What are the level categories for the Individual Contributors Path
How the 6 levels for Individual Contributors can be explained/exemplified per category considering the reality of the department?
What are the step categories for Individual Contributors?
Management Path What are the 4 roles in the Management Path?
What are the perspectives of Leadership present in the Management Path?
What are the level categories for the Management Path?
How can they be explained/exemplified through the reality of the department in the 4 levels?
KAI categories What are the KAI categories?
Extensive Knowledge and SG Knowledge
KAI grades What are the 6 KAI grades and how to explain/exemplify each of them considering the reality of the department?
Mid-Probation review What is the structure of the mid-probation review?
When should it be completed?
Probation review What is the structure of the probation review?
When should it be completed?
What are the required steps from the manager and employee after completing the review?
Level and Step review What is the structure of the Level & Step review?
When should it be completed?
What are the required steps from the manager and employee after completing the review?
K-POC How to set-up a K-POC?
How to create SMART goals for personal development?
What are the required steps from the manager and employees to sucesfully achieve the K-POC?
Salary grid How are the salaries calculated?
What are the sources considered for salary calculation?
What is the rule for getting a salary raise based on market increase?
Progression/Stagnation What is the main rule for requesting a Level and Step Review?
What is the minimum and maximum amount of Level and Step Review the employee should undergo per year?
What is the rule for Leveling Up if you start in Secure Group as a Level 1 or 2?
What is the rule for Stepping Up if you start in Secure Group as a Level 3 or UP?
What is the definition of an average performer?
Changing Paths What are the 3 rules that enable an employee to change paths?
Strategic Planning and Positioning Balanced Scorecard What is strategic theme?
What are the 4 perspectives of the Balanced Scorecard and how to manage goals?
What are initiatives?
How to report on initiatives and tasks in Jira?
What's a KPI?
What's the difference between leading KPI and lagging KPI?
How to manage KPIs on a concept level and on a tool level?
Social media marketing and employer branding Branding What is our employer value proposition?
What are we focusing in communicating in each stage of the candidate journey?
How to promote your personal branding in social media that will reflect in SG image?
Management Model explanation and promotion Wiki Which information can be found in the wiki?
How to navigate through the different sections of wiki?
Candidate Selection Management Ground Zero process How to define a role in the ground zero?
What are the steps and expected outcomes of the hiring process?
Internal HR Management Escalated conflicts How to administer a CAP?
Internal rules What are the internal rules and where to find them?
Turnover management How to communicate turnover depending on the different scenarios (probation, non-probation, voluntary, involuntary)?


Operations

Business Function/Category Concept Description
Purchasing Purchasing process How to make a purchase request?
How to follow-up your purchase requests?
Office Management Office management process What is clean desk policy?
How to request office supplies?
How to properly use common spaces in the office?
How to use SG library?
How to order lunch via BambooHR?
HR Management Internal HR What are the Company's Internal Rules?
What is the Employee Code of Conduct?
What is the Employee Attendance and Working Hours Policy?
What is the Remote Office Policy?
What is the purpose of your BambooHR account?
How to manage your documents in BambooHR?
How to inform the employer about a change in personal information (ex. id card, address...)?
How to request specific documents from the employer?
What is the process of requesting and receiving approval for a time-off?
What types of time-off you can request?
How to inform the employer when you are sick leave? How to present your sick leave document?


Accounting and Finance

Business Function/Category Concept Description
Accounts Payable Documentation What billing details should you use when buying new tools/services/goods?
What proper purchase invoices look like?
Accounts Receivable Wiki Which AR related information can you find in the Wiki?
How can you check the amount a client owns?
Sales Where can you find a sales invoice?
When should we invoice a client?
What is a properly documented sale?
AR collection How we assure client's payment?
How to proceed with clients that didn’t pay in past transactions?
Finance Business organization In which countries our companies are based?
Which activities are reported in the different companies?
Why are our activities split into different countries/companies?
Budgeting How to set and update the department’s budget?
What is your department’s budget?
How to check actual vs. budget progress?
Financial statements Where you can find financial information for our companies?
How is the information presented in financial statements?
How to draw the correct conclusions when you read financial information?
Government Filling for companies VAT Which conditions determine whether we charge VAT or not?