Mission critical defense
Attackers don't work in silos. To defend against them, your defenses can't be siloed either. The teams, tools, and solutions you use in the response ......
May 2013- The IBM X-Force Trend and Risk Report is produced twice per year: once at mid-year and once at year-end. This report provides statistical information about all aspects of threats that affect Internet security, including software vulnerabilities and public exploitation, malware, spam, phishing, web-based threats, and general cyber criminal activity. They are intended to help customers, fellow researchers, and the public at large understand the changing nature of the threat landscape and what might be done ...
Financial Mobility-Balancing Security and Success
Financial services companies have been leery to embrace the enterprise mobility wave. Rightly so, regulations from Sarbanes-Oxley (SOX) to the Financial Industry Regulatory Authority (FINRA) and the Payment Card Industry Data Security Standard (PCI DSS) have given financial IT professionals extra concern for caution. From BYOD to Corporate-Owned, Every Mobile Device Protected
The good news is that with Mobile Device Management (MDM) iPhones, iPads and the ...
May 2013- In today's business environments, mobile devices make up the fastest growing segment of computing devices - outpacing desktop and laptop computers. As more employees prefer to use mobile devices in the workplace, organizations are rapidly moving towards a bring-your-owndevice (BYOD) model - allowing employees to use their own mobile devices for business purposes. This often leads to employees having a mix of corporate and personal applications on the same device, which gives the security team ...
May 2013- This white paper provides a general framework your organization can use to create or build upon an application security program. It includes guidelines that can be useful at different stages of your security program's maturity. By addressing key considerations, providing clear and actionable items, and offering real-world examples, these five steps provide an adaptable strategy to help your organization get started and maintain an effective, ongoing application-security strategy.
May 2013- This buyer's guide provides assistance in evaluating identity and access management solutions. It describes common identity and access management challenges and the capabilities required to address them, and it includes checklists for assessing vendors and their products.
May 2013- In complex organizations with sprawling role structures, managing user access and entitlements can be overwhelming. As part of an effective strategy for identity and access management governance, role management is a powerful method with which to strengthen and streamline the management process. Although role management solutions may help, many are overly complex and are not suited for business users. To find out how the integrated Role and Policy Modeler component of IBM Security Identity Manager ...
May 2013- IBM Security and IBM Information Management solutions for security work with the IBM System z platform to allow the mainframe to serve as an enterprise security hub, providing comprehensive, centralized security capabilities for organizations with distributed, multiplatform IT environments.
May 2013- Over the last 20 years, as we have moved towards a knowledge-based economy, the security challenges of maintaining the fidelity of the IT infrastructure have grown dramatically. There has been a massive increase in the number of malware samples encountered by security researchers around the world, from thousands of malware samples in a year to thousands of malware samples per day. On an operational level, endpoint security (desktop/laptops) has grown more complex, and IT security ...
May 2013- The most menacing type of cyberattack is invisible. Using sophisticated techniques to hide its presence, a stealth attack may operate outside of the OS or move dynamically across endpoints to conceal the attackers' actions. The risk to enterprises is real, with high-profile attacks such as Operation High Roller impacting companies around the globe. Traditional antivirus or intrusion prevention systems are no match for this new breed of attack; instead, enterprises need layered security controls that ...
Securely managing mobile devices, apps and docs doesn't have to be hard; in fact, with MaaS360, it's as simple as ABC...
We cover all the essentials from A-Z
A is for Android, fragmentation is scary
B is for BYOD, you can’t control what they carry
C is for Cloud, used for every device
To get to Z, download your copy of the ABC's of Mobile Device Management ...
Do You Know the Policies to Protect Enterprise Mobility?
Managing smartphones and tablets is only half the MDM story. Securing the data and access points between corporate systems and your workers' iOS, Android, Windows, and BlackBerry devices requires just as much consideration and planning as protecting the devices themselves.This white paper explores ten policy best-practices for secure and compliant enterprise mobility, including:
Industry Regulations: No two industries are created equally ...
BYOD May Be Overwhelming, But It's Not Hard
BYOD offers employees and corporations countless business benefits from increased efficiency to controlled costs on provisioning a mobile workforce.
For IT, BYOD is not as clear
Concerns over securing corporate data to managing a multitude of disparate devices present valid challenges, but none are insurmountable.
Download the Ten Commandments of BYOD today to learn:
BYOD policy considerations
May 2013- Security - and security breaches - are much more than a purely technical issue that exists only in the domain of the IT organization. Rather, security is an emerging C-level priority. Read this executive report to learn why organizations need a systematic, proactive approach to addressing security threats.
May 2013- In a hyper-connected era, a proactive integrated and strategic approach to security can empower businesses to do more than just cope with current threats - it can actually help reduce future risks. Read the IBM study, "Finding a strategic voice," and discover more insights from the 2012 IBM Chief Information Security Officer Assessment.
April 2013- Today, large enterprises are facing a host of security challenges: a growing regulatory burden, a shrinking pool of qualified mainframe workers, budget pressures and increasingly sophisticated attacks on their IT systems. However, organizations that rely on security automation tools like IBM Security zSecure to secure their mainframe systems find it easier to achieve regulatory compliance, to simplify and consolidate security management to reduce costs, to obtain real-time secure intelligence, and to detect threats and remediate ...
April 2013- With more than 1million Lines of Code (LOC), LivePerson, an industry leader and provider of chat-based services, was committed to finding the most commercially available Static Code Analysis Security solution on the market. Due to the size and complexity of the codes written by LivePerson’s 150+ developers, their code analysis requirements were extensive - resulting in the investigation of many Static Code Analysis solutions including open source applications. Download, “Case Study: LivePerson” to gain a ...
Historically, IT defense has focused largely on the threat. So-called "blacklist" technologies maintain an inventory of specific attack types, and provide defense against each. Today, the volume, variety and sophistication of attacks highlights the limitations of such approaches, as signature databases approach their upper limits and leave exploitable gaps in defense.
These changes in the threat landscape have led many organizations to consider the alternative to a blacklist approach. In contrast to blacklisting ...
Security-conscious organizations are increasingly asking themselves the following questions:
Do we know what's running on our machines - right now?
Do we trust it?
How can we stop untrusted software from executing?
If you see yourself in this scenario or have engaged in these types of discussions, download this whitepaper and learn how to use a progressive approach to build trust, monitor activity, tailor protection to your enterprise and ...
Download this workbook to create a personalized scorecard that assesses the effectiveness of your current security strategy and shows you why a trust-based security solution is your best defense against advanced malware. This workbook will:
Show you why traditional antivirus solutions are no longer effective against today's advanced threats
Offer tools to measure how your current security posture affects the productivity of your IT and operations staff and end users
Recognizing security defects early in the development cycle have traditionally posed real challenges for developers as current static analysis tools often generate significant false positive results and other major issues. Next generation tools address these issues by integrating static analysis as part of development teams’ normal ‘design, code, test and analysis’ processes. Download, “A Successful SAST Tool Implementation” to learn how these tools can:
Integrate with normal software engineering workflows
Accurately report ...
April 2013- Software security is a top priority for many organizations with many considering how they should integrate security earlier on in the software development lifecycle. A process change like this would benefit organizations in the form of reduction in costs and increased productivity as a result of minimizing flaws and removing defects via software patches. Download, “Enterprise Application Security: Source vs. Binary Code Analysis” to learn about the benefits of Source Code Analysis (SCA) and how ...
If your enterprise uses System z already, it's a safe bet that you're already aware of its legendary security. Being the only commercially available server with an EAL 5 rating is just one reason why so many of the world's top banks, retailers and other businesses that conduct high volumes of critical business transactions use System z.
With features such as cryptographic co-processors and integrated Public Key Infrastructure (PKI) support, System z has arguably ...
March 2013- Many organizations have found themselves drawn to virtualization and cloud computing architectures for the many benefits, only to find that the complexity of ensuring adequate data security was simply too great an obstacle. But the adoption of these technologies is inevitable. By deploying memory-based solutions for distributed database monitoring, enterprises will find that it is not only possible to protect sensitive information in these emerging computing models, but that the same architecture also provides both ...
March 2013- Organizations store their most valuable and sensitive data in their enterprise database, yet a large number of organizations do not engage in the timely installation of vendor patches after those patches have been released by database management system (DBMS) providers, placing that sensitive data at risk. In fact, a 2010 survey by the Independent Oracle Users Group revealed that of the 430 database administrators, consultants, and developers who were surveyed, only 37 percent installed Oracle Critical Patch Updates ...
March 2013- A serious data breach brings monetary damage in its many forms: business disruption, bad publicity, stiff ones for noncompliance, and undermined customer confidence. But most damaging of all is the trouble that it creates when it comes to signing up new customers. A tarnished reputation is a big objection for sales and business development to overcome. That's why data security in general and database security in particular are a crucial part of any company's overall ...
February 2013- Current market solutions are built to protect the enterprise and are too resource intensive for most organizations to manage. Learn about five key components that any risk-based information security solution must include to cost effectively and efficiently protect information and meet regulatory requirements - regardless of industry, organization size or security skill set.
View All Categories
Business Intelligence : Analytics, Business Process Management, Content management, Dashboards, Data Mining, Performance Management, Databases, Datamarts/Data Warehouses, Information Management, Knowledge Management, Data Quality
Hardware : Virtualization Hardware, Windows Servers, Utility/On-demand Computing, Unix/Linux servers, Supercomputers, Peripherals, Macintosh, Handhelds/PDAs, Grid/Cluster Computing, Desktops/PCs, Data centers, Blades, Processors
Infrastructure : ATM, Ethernet/Gigabit Ethernet, Frame relay, IPv6, Traffic Management, Network/Systems Management, PBXs, Printers, Remote Access, Routers, Switches, UPS, VPNs, WAN Optimization/Acceleration, Wide Area File Services
Internet : B2B, B2C, Browsers, E-Business/E-Commerce, E-retail, Google, Social Business, Internet Security, Search, Social Networks, Traffic Reporting/Monitoring, Web 2.0, Web Development, Internet Policy
Management : Career Development, Training, Small-Medium Business, Salary/Compensation, ROI/TCO, Regulation/Compliance, Recruiting, Personnel Management, Outsourcing, Legal, H-1B, Executive Insights/Interviews, Workplace Trends
Personal Tech : Blackberry, Bluetooth, Bluray, Digital Cameras, Digital Music, Digital Rights Management, Virtual worlds, iPhone, iPod, Peripherals, Smartphones, TVs/Home Theater, Global Positioning Systems
Security : Security Administration, End user/Client Security, Encryption, Cyberterror, Attacks/Breaches, Application Security, Antivirus, NAC, Perimeter Security, Privacy, Vulnerabilities and Threats, Storage Security, Intrusion Prevention
Services : Telecom/Voice Services, Business Process Outsourcing, Business Services, Disaster Recovery, Systems Integration, Hosted Storage, Internet/Data Services, Outsourcing, Software as a Service, Hosted Applications
Software : Web Services, Service Oriented Architecture, Server Virtualization, Productivity Applications, Operating Systems, Open Source, Linux, Hosted Software/Applications, ERP, Development Tools, Databases, Database Applications, CRM, Business Systems Management, Integration, Application Optimization
More Security Resources
Mission critical defense