Vulnerability Management Buyer's Checklist
[ Source: Qualys ]
November 2009-
Get this 12-point Checklist of key considerations every IT security professional needs to be aware of before choosing a vulnerability management solution.
PCI DSS Compliance in the UNIX/Linux Datacenter Environment
[ Source: BeyondTrust ]
November 2009-
This document explains how BeyondTrust PowerBroker supports the Payment Card Industry Data Security Standard (PCI DSS) by limiting and tracking authorization to execute commands and programs that access servers and applications storing and using proprietary cardholder. BeyondTrust PowerBroker provides an auditable process that controls, monitors and records that access.
Preventing Data Breaches in Privileged Accounts Using Access Control
[ Source: BeyondTrust ]
November 2009-
It is critical that organizations are proactive in their approach to mitigating insider threats. Week-after week there are disturbing, déjà vu-like stories of significant data breaches, arrests connected to insider attacks, or investigation reports emphasizing the necessity to control privileged accounts that hold highly sensitive data. This white paper explores insider attacks, threats and risks involved across every enterprise. Lastly, we will recommend a sound, cost-saving solution to prevent a disaster from happening to a ....
Handling Modern Security Issues
[ Source: ArcSight ]
November 2009-
A new class of organizational threats and risks are emerging, that include the trusted insider. This threat is magnified by complex applications and a dynamic workforce with privileged access. This whitepaper shows you that connecting the dots can be done through six simple best practices.
Mitigating Fraud with the ArcSight SIEM Platform
[ Source: ArcSight ]
November 2009-
Online fraud is fueled by data theft and increasingly sophisticated cyber criminals, relying on misdirection and gaps in detection systems. Although fraud may never be eliminated entirely, The ArcSight SIEM Platform offers solutions that can accurately detect fraudulent activity and thus mitigate overall business risk.
ArcSight Logger 4: Combat Cybercrime, Demonstrate Compliance and Streamline IT Operations
[ Source: ArcSight ]
November 2009-
Governments and businesses are increasingly vulnerable to cyber crime by hackers, malware, and insiders. Log files can be used for forensic analysis of all types of security incidents. The key requirement is collection, centralized storage and fast analysis of events from various devices and applications. These requirements are highlighted in a case study incident on Boeing Corporation.
Defeat Cyber Threats & Risks
[ Source: ArcSight ]
November 2009-
There are multiple useful technologies to monitor specific information risks, however tying these together through a single, comprehensive view will improve your security posture. The ArcSight SIEM platform provides this single “pane of glass” by aggregating, analyzing, and visualizing activity data across the organization.
Demonstrating the ROI for SIEM: Tales from the Trenches
[ Source: ArcSight ]
November 2009-
This whitepaper presents examples of organizations demonstrating the ROI of SIEM and Log Management technology within weeks of deployment. In addition to the “hard benefits” presented, “soft benefits” such as situational awareness and reduced risk should also be considered when evaluating both technologies.
Armed with ROI calculations, a security team can demonstrate the value and business alignment of both technologies by building a business case inclusive of all benefits.
8 Elements of Complete Vulnerability Management
[ Source: NTT America ]
November 2009-
Vulnerabilities are like fish in the sea. We can identify the different species and explore their individual varieties but there will always be others to discover. On average, 20 new vulnerabilities are found each day across equipment vendors, operating systems, and software applications. All companies should be implementing a comprehensive vulnerability management program, one that includes vulnerability detection, external and internal vulnerability assessments, frequency, application testing, policy scanning, remediation, and configuration. Conducting a vulnerability scan ....
Understanding the Importance of a Disaster Recovery Strategy
[ Source: CDW ]
June 2009-
Read this Tech Specialist interview with CDW's Moosa Matariyeh to understand the importance of having a disaster recovery strategy, and answers to questions like these:
> What can companies do to prepare for disaster recovery effectively, and what are some best-practice examples from medium-sized enterprises?
> How have companies successfully made the case for adequate funding?
> What role does data deduplication technology play in disaster planning and recovery? ....