An Executive Guide to Corporate Defence Management (CDM)
[ Source: R.I.S.C. International ]
January 2008-
This whitepaper on the emerging discipline of Corporate Defence Management (CDM) is the first of its kind dealing with this subject. The whitepaper represents the 3rd installment in a series of papers designed to raise awareness of the requirement for corporate defence to play a more eminent role in corporate strategy. This paper is designed to act as a helpful guide to executives interested in the area of contemporary corporate defence and in particular in ....
PowerBroker Demo
[ Source: Symark ]
August 2008-
Symark PowerBroker is a policy-driven, root account access control application that provides granular privileged access delegation, detailed logging and reporting, and centralized administration across heterogeneous UNIX and Linux environments. It provides UNIX and Linux security and accountability by enabling system administrators to delegate administrative privileges and authorization without disclosing the root password and to grant selective access to UNIX and Linux-based corporate resources. Administrators can create powerful and granular security policies in PowerBroker to restrict ....
A Process-based Approach to Protecting Privileged Accounts
[ Source: Symark ]
August 2008-
This paper discusses best practices for privileged account access management and privileged password management (PPM), and shows how the Symark PowerKeeper appliance creates a “defense in depth” across the IT portfolio. PowerKeeper is a secure, hardened appliance that provides both a mechanism and a “process” to ensure best practices to secure and control access to any accounts deemed “privileged” or sensitive and thus sharply reduce the likelihood of fraud or theft of proprietary data. ....
Authentication Solutions Through Keystroke Dynamics
[ Source: BioPassword ]
January 2008-
The objective of this paper published by BioPassword is to provide a basic understanding of the biometric science of keystroke dynamics, and how BioPassword is using keystroke dynamics technology to deliver enterprise security software solutions for multi-factor authentication to monitor and authenticate users, implement cost-effective secure access, and substantially reduce fraud risk.
Server Virtualization Security: 90% Process, 10% Technology
[ Source: Tripwire ]
October 2008-
Server Virtualization demands updating management and security processes. You will need to revise security policies and day-to-day procedures to deal with issues such as handling virtual disks, patching offline systems, controlling access to new management tools, and enforcing configuration practices.
Identity Control: Realizing the Benefits of Roles Standardization & Cleanup
[ Source: Watson SCS ]
January 2008-
In a world of big solutions for big compliance and efficiency headaches, Identity Control is a welcome relief. It is the authors’ contention that ""cleaning up"" existing identity related processes & role related information will greatly help with productivity, compliance, and normal reconciliation procedures of every organization. Many organizations have tried to tackle role projects, only leading to failed attempts, costing time and money. The attitude is amalgam leveraging both a top down and bottom ....
Data Leakage Worldwide: Top Risks and Mistakes Employees Make
[ Source: IronPort Systems ]
November 2008-
The findings from a global security study on data leakage revealed that the data loss resulting from employee behavior poses a much more extensive threat than many IT professionals believe. Commissioned by Cisco and conducted by U.S.-based market research firm InsightExpress, the study polled more than 2000 employees and information technology professionals in 10 countries. Cisco selected the countries based on their diverse social and business cultures, with the goal of better understanding whether these ....
Get More from Your IT Budget
[ Source: MessageLabs, Symantec Hosted Services ]
February 2009-
In uncertain economic times, it’s critical to spend your budget wisely. Unlike software or hardware solutions, hosted email security is simple to implement, easy to manage and does not require any additional IT staff to maintain or upgrade. Additionally a hosted email and web security service provides faster ROI, predictable costs with no hidden fees. Learn more in this new whitepaper.
Automated Event Log Management for PCI DSS Compliance
[ Source: GFI Software ]
January 2008-
Hardware and software components on corporate networks generate a wealth of network activity information in the form of event log records. Utilizing and making sense of these records is however a slow and tedious process; one which often leads systems administrators to give up on using event logs as their primary source for network-wide security information. This white paper published by GFI Software highlights why organizations need to implement event log auditing as an integral ....
10 Key Considerations When Outsourcing QA and Testing Services
[ Source: AppLabs ]
March 2008-
Outsourcing is a strategic management option rather than just another way to cut costs. This paper outlines 10 key considerations that organizations should consider when outsourcing QA and testing services, based on AppLabs’ extensive experience in this field.