Cloud Identity Buyer's Guide [ Source: McAfee ]

October 2012- The software-as-a-service (SaaS) application delivery model is growing rapidly. However, customers who adopt the SaaS model struggle to manage the overwhelming number of user accounts they have to create. Their users are constantly forgetting their passwords and calling the help desk. They are unhappy because they have to reenter their user ID and password every time they logon to an application during the day. Overwhelmed IT administrators take too long to create accounts for new ...

Enterprise-class API Patterns for Cloud & Mobile [ Source: Intel ]

October 2012- Dan Woods, Chief Analyst CITO Research, outlines enterprise architecture requirements for designing, managing, and protecting APIs and how the emerging API Gateway "proxy" deployment model is speeding deployment across industries.

In this model, authentication using OAuth and other lightweight protocols such as REST and JSON are all the rage but Enterprise-class security is still lacking. To present actionable solutions, Dan presents 5 core API patterns for mobile, partner, data control, and PaaS infrastructure with ...

Security Gateway Buyer's Guide [ Source: Intel ]

October 2012- This buyer's guide, written by independent industry security expert, Gunnar Peterson, will provide the analysis and decision support that will enable you to make an informed choice. Learn about Security Gateway architectural capabilities and common business use cases where they are deployed.

Securing the Cloud [ Source: F5 ]

October 2012- Cloud computing has become another key resource for IT deployments, but there is still fear of securing applications and data in the cloud. These concerns include authentication, authorization, accounting (AAA) services; encryption; storage; security breaches; regulatory compliance; location of data and users; and other risks associated with isolating sensitive corporate data. Add to this array of concerns the potential loss of control over your data, and the cloud model starts to get a little scary. ...

Gaining Security Intelligence Splunk App for Enterprise Security [ Source: Splunk ]

September 2012- Learn how security professionals are extending the use of Splunk with the Splunk App for Enterprise Security. This document describes how you can take full advantage of Splunk's analytics and visualization capabilities and unique ability to process big data.

With the ability to search and process known and unknown threats, you can use Splunk as your primary security data interface. Splunk and the App for Enterprise Security are equally suitable for a small ...

Vulnerability Shielding: The Patch Management Challenge [ Source: Trend Micro ]

September 2012- Each year thousands of critical software flaw vulnerabilities are reported in operating systems, databases, servers, and other applications. Patching these vulnerabilities can be disruptive and time consuming, requiring systems to be rebooted and impacting service level agreements. Even when a patch is available, it can take weeks or even months before the patch can be fully deployed.

Download "Vulnerability Shielding: The Patch Management Challenge" to learn about some of the key features and ...

Guide to Evaluating Multi-Factor Authentication Solutions [ Source: PhoneFactor ]

October 2012- Passwords are a known weak link and continue to be exploited at alarming rates. From simple phishing schemes to sophisticated, targeted phishing attacks, gaining access to a user's password is an easy and prolific attack. Regulatory agencies agree and are setting increasingly rigorous requirements for strongly authenticating users. Multi-factor authentication is no longer optional for many organizations.

Whether you're planning to implement multi-factor authentication for the first time or are looking to expand ...

Software-Based Authentication Delivers More Reliable and Less Costly Security [ Source: SyferLock ]

August 2012- Information security has never been a bigger challenge for organizations, given cloud computing and virtualization, remote access, mobile technologies and social networking. Many companies today rely on hardware-based authentication for security, but this method of authentication is flawed in a number of ways.

Modern software-based authentication solutions provide far more cost-effective ways to ensure strong, two-factor authentication.

Read this white paper to learn about the security challenges businesses face today, and ...

Evolving Endpoint Malware Detection: Dealing with Advanced and Targeted Attacks [ Source: Trusteer ]

May 2013- Advanced malware targeting employee endpoints is a major threat to corporate intellectual property, regulated data and financial assets. Perimeter and traditional endpoint defenses are struggling to meet this emerging threat in the face of a changing IT landscape: desktop virtualization, remote access, BYOD and Cloud migration.

This whitepaper explains how advanced malware challenges traditional defenses to take advantage of the increased exposure of employee endpoints. It review's the evolution of advanced targeted attacks, ...

Remove the Endpoint Blind Spot: Augmenting SIEM filters with Trust and Threat Indicators [ Source: Bit9 ]

August 2012- Today's evolving threat landscape requires a new approach to endpoint security. With the exponential growth in malware and the targeted nature of today's attacks, a reactive approach is just not effective enough.

Download this whitepaper and learn how Bit9 integrates into a SIEM console, provides the holistic view necessary to ensure an open network isn’t a vulnerable one, and provides a defense-in-depth security strategy that spans network sensors and endpoints.

2012 Bit9 Cyber Security Research Report [ Source: Bit9 ]

August 2012- Anonymous hacktivists, cyber criminals and nation-states are viewed as the top three threats in 2012 in this Bit9 survey of more than 1,800 IT professionals. And more than 60 percent of those surveyed believe that they will be the target of a cyber-attack in the next 6 months.

Download this research report to find out how your security and IT colleagues view the world of advanced cyber threats and find out how you compare.

Ponemon Institute: The Role of Governance, Risk Management & Compliance in Organizations [ Source: EMC ]

August 2012- The focus of this research is to examine the challenges global organizations face in meeting escalating enterprise Governance, Risk and Compliance (eGRC) objectives.

Enabling Cost-Cutting Initiatives with Governance, Risk and Compliance Management Technology [ Source: EMC ]

August 2012- Organizations must look to improve operational efficiency in enterprise governance, risk and compliance (eGRC) initiatives to meet current fiscal concerns while providing a framework on which to build a rigorous eGRC program.