IT Executive Guide to Security Intelligence - Transitioning from SIEM to Total Security Intelligence [ Source: Q1 Labs ]

September 2011- Security intelligence, built on the same concepts that have made business intelligence an essential enterprise technology, is the critical next step for organizations that recognize the importance of information security to their business health.

In this white paper, you will learn how security intelligence addresses certain shortcomings and empowers organizations from Fortune Five companies to mid-sized enterprises to government agencies to maintain comprehensive and cost-eff ective information security.

In particular, we ...

Close encounters of the third kind [ Source: IBM ]

September 2011- This paper presents results of research performed by IBM into client-side JavaScript vulnerabilities using a JavaScript Security Analyzer (JSA), which performs static taint analysis on JavaScript code that was collected from web pages extracted by an automated deep web crawl process.

Integrated Application Firewall Security with NetScaler [ Source: Citrix ]

August 2011- Protect your network from application-layer attacks and deliver apps without compromising performance. Free guide shows how you can benefit from having an app firewall seamlessly integrated into your app delivery solution. You'll discover how Citrix NetScaler helps you consolidate your infrastructure, simplify security management and improve overall app performance.

Security Considerations for Small and Medium-Sized Enterprises [ Source: GFI Software ]

July 2011- It is never possible to guarantee that a company is totally secure or that a breach will not occur, however implementing the latest tools and providing ongoing, end-user education will minimize those risks and allow companies to focus more on growing their business rather than repairing it.

Economics of Spam [ Source: GFI Software ]

July 2011- Email security threats do not discriminate. Whether you're an organization with 50 employees or a global corporation with 50,000, the reality is that spam and viruses can wreak havoc on your business, drain users' productivity and take a major toll on IT resources. SMBs need to make sure they are armed with the best security solutions available - demanding enterprise-class protection paired with fast deployment, ease of management and flexible configuration options. And, all at a price ...

5 Reasons why Information Security is now a Business-Critical Function for Law Firms [ Source: Dell SecureWorks ]

June 2011- Information Security is a business-critical function for modern law firms. Through the insights in this report, lawyers and law firm executives will gain a better understanding of the threats, risks and realities challenging today's technology-enabled law firms.

This report seeks to help law firms of any size to ensure continued success and growth through reliable, productive and secure information systems. Understanding the threats posed by the widespread adoption of technology is a business-critical ...

Small Business IT Security: Outsource or In-house? [ Source: Dell ]

June 2011- Does it cost a business more to manage IT security internally than it does to entrust an experienced third party to do it?

Download this whitepaper to discover the 5 cost considerations, 6 best practices to security selection and whether your small organization is best suited for in-house security or for external managed security.

Multi-Program National Laboratory Stays Ahead of Next-Generation Malware By Deploying FireEye Web Malware Protection System [ Source: FireEye ]

May 2011- In this case study, a Multi-Program National Laboratory needs to continually enhance effectiveness of protection against escalating global cyber threats such as advanced malware, zero-day and targeted APT attacks that target sensitive data. The solution is the deployment of FireEye Web Malware Protection System 7000 Series appliance. As a result, rapid appliance deployment facilitated dramatic increase in speed of threat detection, notification and resolution. Appliance accuracy and low false positive rates have elevated usability and productivity, ...

Advanced Malware Exposed [ Source: FireEye ]

May 2011- This handbook shines a light on the dark corners of advanced malware, both to educate as well as to spark renewed efforts against these stealthy and persistent threats. By understanding the tools being used by criminals, we can better defend our nations, our critical infrastructures and our citizens. The "Operation Aurora" incident represents an example of how the threats have escalated, revealing how advanced malware is being used in a systematic, coordinated fashion to achieve ...

See, Analyze and Fix all of Your Endpoints [ Source: Promisec ]

January 2011- Findings of an inspection of over 100,000 endpoints across multiple enterprises confirmed some type of breaches in security and compliance. Typically, 10-35% of endpoints demonstrated some kind of security threat or compliance issue. The most notable findings of the 2010 study were a dramatic rise in unmanaged machines and miss-configured anti-virus software and other third-party agents.

Messaging and Web Security Best Practices for 2011 and Beyond [ Source: GFI ]

March 2011- In this white paper, Osterman Research discusses how the daily occurrence of malware within organizations has become decidedly worse over the past several years. The number of platforms from which threats enter organizations on a daily basis continue to grow and they include but are not limited to email, social media websites, smartphones, flash drives and direct hacker attacks.

Protect Personally Identifiable Information (PII) as if Your Business Depends on It [ Source: nuBridges ]

February 2011- Virtually every business acquires, uses and stores personally identifiable information (PII) about its customers, employees and partners. These organizations are expected to manage this private data appropriately and take every precaution to protect it from loss, unauthorized access or theft. Misusing, losing or otherwise compromising this data can carry a steep financial cost, damage a business’s reputation and even lead to criminal prosecution.

This white paper explores the business and compliance issues ...

A Pragmatic Approach to SIEM: Buy for Compliance, Use for Security [ Source: Tripwire ]

January 2011- Many organizations today are so compliance-focused that they take a bare minimum security approach to securing the organization's sensitive data. They simply purchase an SIEM and/or log management solution and view that as sufficient. What they're really doing is making sure they can check a compliance checkbox for regulations and standards like PCI, ISO 27001, NERC, and others that have log management or SIEM-related requirements. In reality, they're neither truly compliant nor secure.

...