Next Generation Network Defense: Why Does My Head Still Hurt?
[ Source: Interop ]
May 2009-The changing perimeter of the network has spurred on significant improvements in firewall rules. However, the firewall rule set remains unable to solve problems that plague the administrator. This talk by Geoffrey Cooper, vice president of the Network Security Business Unit at McAfee, will address how to make the network defense system more aware of these “administrator headaches” and more able to alleviate them.
Secure Electronic Records Management: DOD 5015.2-Certified Solution From Mdy, Kvs, Netapp, and Decru
[ Source: Network Appliance ]
January 2008-The Secure Electronic Records Management solution combines records management and archiving capabilities from MDY and KVS, providing a management and policy infrastructure that supports a wide variety of operational requirements. MDY’s FileSurf application has been integrated with email archiving capabilities of KVS Enterprise Vault for Microsoft Exchange to provide a seamless records management application platform. All data is secured by the Decru DataFort storage security appliance, and stored on Network Appliance’s highly scalable and manageable ....
PCI DSS Compliance in the UNIX/Linux Datacenter Environment
[ Source: BeyondTrust ]
November 2009-This document explains how BeyondTrust PowerBroker supports the Payment Card Industry Data Security Standard (PCI DSS) by limiting and tracking authorization to execute commands and programs that access servers and applications storing and using proprietary cardholder. BeyondTrust PowerBroker provides an auditable process that controls, monitors and records that access.
Employee Web Use and Misuse: Companies, Their Employees and the Internet
[ Source: MessageLabs, Symantec Hosted Services ]
November 2009-The Internet has created new opportunities for mischief and new challenges for managers. In the end, it comes down to choice. Where do you draw the line? How do you balance individual access with the overall protection and good of the business? What is the correct balance between monitoring and blocking? This white paper examines a Web security solution that gives companies the ability to monitor and enforce their Internet usage policies, bringing site monitoring ....
Zscaler Explains Its In-The-Cloud Service
[ Source: Zscaler ]
August 2008-Most of today’s security products—such as firewalls, VPN, IDS/IPS—protect corporate networks and servers from threats coming from the Internet. Newer threats, such as bots, phishing, and malicious active content, target end users accessing Internet resources and infect corporate networks. Other than deploying caching and URL filtering products, corporations have done very little to inspect user-initiated traffic and protect their users. Web 2.0 applications, such as social and business networking, create both ....
The Critical Need for Encrypted Email and File Transfer Solutions
[ Source: Webroot ]
October 2009-Email has become more than a means of communication. It has also become the default file transport mechanism within your organization. Its ease of use has made it simple to transfer files both within and outside the enterprise. As the value of the information contained in email attachments grows in importance, so does the need to effectively secure that information. A dedicated file transfer system can address many of the issues associated with email attachments ....
How To Secure And Audit Oracle 10g and 11g
[ Source: Guardium ]
April 2009-Guardium provides the "Hardening Your Database" chapter from the 454-page book "HOWTO Secure and Audit Oracle 10g and 11g" and learn how to navigate the many security options within Oracle (authored by database security expert and Guardium CTO, Ron Ben Natan, Ph.D.).
Fast-Start Failover Best Practices: Oracle Data Guard 10g Release 2
[ Source: Oracle ]
January 2008-Fast-Start Failover is an Oracle Data Guard 10g Release 2 feature that mechanically and reliably fails over to an elected, synchronized standby database in the event of loss of the manufacture database, without requiring manual intervention to execute the failover. In addition, following a fast-start failover, the original production database is automatically reconfigured as a new standby database upon reconnection to the configuration. This white paper explains Fast-Start Failover and describes Maximum Availability Architecture (MAA) ....
2009 Gartner Report On SIEM
[ Source: RSA, The Security Division of EMC ]
May 2009-Discover why Gartner puts RSA in the leader’s quadrant in its 2009 Report on Security Information Event Management (SIEM). Broad adoption of SIEM technology is driven by compliance and security needs.
A CISO's Guide to Application Security
[ Source: Fortify ]
November 2009-Security breaches are expensive. They cost time, effort, remediation, and reputation restoration. Many IT decision-makers tend to focus their security efforts almost exclusively at the network perimeter. They overlook the software applications that run their day-to-day agencies. These applications are often packed with Social Security numbers, addresses, personal health information, or other sensitive data.
Focusing on security features at both the infrastructure and application level isn’t enough. Organizations must also consider flaws in their ....
Research Paper: VIPRE Takes a Bite Out of Bloatware
[ Source: Sunbelt Software ]
January 2009-
Protect your servers, workstations and networks with security software that won’t slow you down.
Preventive antivirus and antispyware packages are “must haves” in today’s networking environments. No company from the smallest business with 10 users up to the largest enterprise with 100,000+ employees is immune from the security threats posed by rogue code – which include viruses, Trojans, bots, zombies, spyware, spam and blended malware. The threats have become more sophisticated, pervasive and pernicious ....
XSS (Cross-Site Scripting) Introduction
[ Source: V.A.P.T. ]
April 2008-
In this Whitepaper, we will cover the outline of how to prevent XSS attacks, how they work, and why they are so successful. Take a look at why this attack is so popular and how it affects some of the largest corporations in the world.
6 Important Steps to Evaluating a Web Filter
[ Source: St. Bernard Software ]
November 2009-
Determining the best Web filter for your organization can be difficult with so many choices on the market. IT Professionals know that there’s more to choosing a solution than looking at a few features and comparing prices. Other considerations may be just as important but you may not be aware of their significance. This informative guide discusses the critical considerations you need to make before you decide, and also, how thoroughly analyzing your options can ....
It's Time to Fix The Firewall
[ Source: Palo Alto Networks ]
June 2009-
For the last 15 years, port-blocking firewalls have been the cornerstone of enterprise network security. But much like a stone, they’ve stood still in the face of rapidly evolving applications and threats. It’s no secret that modern applications and threats easily circumvent the traditional network firewall – so much so that enterprises have deployed an entire crop of “firewall helpers” to help try to manage applications and threats, which has only increased cost and complexity ....
State of Internet Security: Protecting the Perimeter
[ Source: Webroot ]
October 2008-
Protecting the Perimeter is quickly becoming a critical point of protection for today’s business. Many fundamental business activities - marketing, advertising, customer support, research - are Web dependent. Making the Web the number one delivery method for malware which poses a significant security challenge to businesses of all sizes.
In this State of the Internet Security Webroot delivers the results of its survey of Web security decision makers in the US, ....
Trends in Information Security: A CompTIA Analysis of IT Security and the Workforce
[ Source: CompTIA ]
September 2008-
As global trends of workforce mobility and decentralization put a greater strain on IT security infrastructure, it is becoming increasingly more complex for corporate IT departments to safeguard information. More than ever before, firms are using diverse devices to exchange information faster and over longer distances, and the growing use of technologies supporting this trend - such as handheld devices or voice over IP – gives rise to new risks. As a result, corporate IT ....
Zscaler Explains Its In-The-Cloud Service
[ Source: Zscaler ]
August 2008-
Most of today’s security products—such as firewalls, VPN, IDS/IPS—protect corporate networks and servers from threats coming from the Internet. Newer threats, such as bots, phishing, and malicious active content, target end users accessing Internet resources and infect corporate networks. Other than deploying caching and URL filtering products, corporations have done very little to inspect user-initiated traffic and protect their users. Web 2.0 applications, such as social and business networking, create both ....
FISMA Compliance: A Holistic Approach to FISMA and Information Security
[ Source: Internet Security Systems ]
January 2008-
Threats and attacks against information systems are on the rise. Internet Security Systems (ISS) and other security companies are now identifying more than 150 new viruses, Trojans, bots and vulnerabilities each week. Attacks launched by dangerous adversaries are targeting information systems globally, including federal systems, to inflict irreparable damage and ultimately threaten the nation’s security. This white paper provides an overview of the Federal Information Security Management Act legislation and discusses how ISS strategic approach ....
A CISO's Guide to Application Security
[ Source: Fortify ]
November 2009-
Security breaches are expensive. They cost time, effort, remediation, and reputation restoration. Many IT decision-makers tend to focus their security efforts almost exclusively at the network perimeter. They overlook the software applications that run their day-to-day agencies. These applications are often packed with Social Security numbers, addresses, personal health information, or other sensitive data.
Focusing on security features at both the infrastructure and application level isn’t enough. Organizations must also consider flaws in their ....
Vulnerability Management Buyer's Checklist
[ Source: Qualys ]
November 2009-
Get this 12-point Checklist of key considerations every IT security professional needs to be aware of before choosing a vulnerability management solution.
6 Important Steps to Evaluating a Web Filter
[ Source: St. Bernard Software ]
November 2009-
Determining the best Web filter for your organization can be difficult with so many choices on the market. IT Professionals know that there’s more to choosing a solution than looking at a few features and comparing prices. Other considerations may be just as important but you may not be aware of their significance. This informative guide discusses the critical considerations you need to make before you decide, and also, how thoroughly analyzing your options can ....
Podcast: EXPERT SERIES -- Charlie Le Grand on Accountability and Authorization Objectives
[ Source: Sentrigo ]
November 2009-
Charlie Le Grand, the former CIO of The Institute of Internal Auditors Research Foundation, discusses how auditors and IT professionals need to work together to go beyond internal controls and perimeter security to minimize risk. (22 minutes in MP3 format).
How Dell Simplified Enterprise Security
[ Source: Guardium ]
August 2008-
In this case, study, learn how Dell replaced manual processes, scripts, and native logs with automated and centralized controls in 10 data centers worldwide, to provide real-time database security, closed-loop change control, and significantly reduced auditing overhead for SOX, PCI, and SAS70.
8 Steps To Holistic Database Security
[ Source: Guardium ]
June 2009-
Guardium provides this report on the eight essential best practices for a holistic approach to both safeguarding databases and achieving compliance with key regulations--such as SOX, PCI-DSS, NIST 800-53, and data protection laws.
Effective Solutions For Firewall Rule Cleanup
[ Source: Athena Security ]
October 2009-
Firewall rules that provide access to a wide array of services in a large network, while at the same time securing the critical assets from attacks, tend to become very large in size and redundant in functionality. As rule bases become large, administrators become hesitant to modify existing rules and instead add new rules for fear of causing an adverse impact on existing service availability. Over time, rule bases become very bloated, requiring not only ....
Next Generation Network Defense: Why Does My Head Still Hurt?
[ Source: Interop ]
May 2009-
The changing perimeter of the network has spurred on significant improvements in firewall rules. However, the firewall rule set remains unable to solve problems that plague the administrator. This talk by Geoffrey Cooper, vice president of the Network Security Business Unit at McAfee, will address how to make the network defense system more aware of these “administrator headaches” and more able to alleviate them.
Optimizing Infrastructure Control
[ Source: Tripwire ]
October 2009-
An investment in configuration assessment and change auditing solutions can stabilize IT operations, lowering the operational costs associated with the IT infrastructure; and provide a solid foundation that increases the effectiveness of the investment in information security. Discover why IDC Research says TripWire can claim complete configuration control as its own domain.
Belden Variable Frequency Drive White Paper
[ Source: Adventive Marketing, Inc. ]
October 2009-
A variable frequency drive (VFD) regulates the speed of a three-phase AC electric motor by controlling the frequency and voltage of the power it delivers to the motor. Today, these devices (also known as adjustable speed drives or variable speed drives) are becoming prevalent in a wide range of applications throughout industry, from motion control applications to ventilation systems, from wastewater processing facilities to machining
areas, and many others.
Top 5 NAC Challenges and How to Tackle Them
Business trends like mobility and outsourcing present IT with the challenging task of opening the network to a dynamic workforce, while...
State of Internet Security
Email only makes up about 15% of incoming malware - It's the other 85% that comes via the Web that needs your attention. Learn to effectively protect your enterprise...
|
|
InformationWeek Business Technology Network
|
 |
|
TechWeb
Events Network |
|
