Congratulations to Lisa MacKenzie,University Enabling Technology Services, for your RecognizeIT nomination. Here is what the nominator had to say:
ColdFusion strikes again, this time focused on the long out of date CIF Admin and Online Photo applications.
On Wed Mar 15th, Lisa was notified of a new zero-day security vulnerability on ColdFusion. She quickly patched the in-support platform DEV/TEST/PROD by end of day (woo hoo!). The big issue was what to do with the 2 large and highly visible and long out-of-support CIF Admin and OLP applications, as NO fixes were available. Luckily, she and Jonathan Hebert on the Student team had been working on upgrading CIF Admin to the latest version and, due to Jonathan's skill and focused efforts, the application had just completed user testing and was scheduled for PROD in April. After excellent coordination with OSPIR by both, Lisa rapidly created the PROD environment and in a wonderful example of collaboration with IAM and Networking, deployed the FINALLY upgraded and in-support CIF Admin to PROD that Friday morning.
Next, was tackling Online Photo. Their earlier success with upgrading CIF Admin had recently encouraged the Registrar to attempt OLP (just that Monday!) It had already passed 80% of testing in DEV by the Thursday risk mitigation meeting. The Registrar agreed to upgrade OLP as soon as TEST and PROD were built and confirmed. In addition to building PROD for CIFAdmin, she also had to rapidly built TEST and PROD for OLP. Intense collaboration ensued with IAM, Networking, DBS, Architects, and Registrar to address issues with TEST. The decision was made to jump to a parallel PROD instead. Over the weekend and into the wee hours of Monday, they were able to validate and deploy PROD on Monday morning, Mar 20th.
Thank you Lisa for your dedication to securing such important applications and for your skill at pulling people together to get this massive effort done in such a quick time frame with such wonderful success, let alone addressing 2 long standing risk areas. This would not have been possible without Jonathan Hebert (Student team), Ray Storer (IAM), Dave Mehlberg (Networking), Vincent Melody (DBS), Brandon Rich (EntArch), and Paul Ulrich (Registrar). Thank you all!