Sort results by: Published date | Company name
Showing items 1-25

Unified Security Management vs. SIEM: A Technical Comparison [ Source: AlienVault ]

September 2014- SIEM solutions have been widely adopted to help IT teams correlate data from a variety of security point products. However, traditional SIEM deployments require a great deal of time, money and expertise to properly normalize data feeds, create correlation rules to detect threats and tune those rules to limit false positives. Download this white paper to learn more about how a different approach - Unified Security Management (USM) - is delivering improved threat detection, starting ...

Beginner's Guide to Open Source Intrusion Detection Tools [ Source: AlienVault ]

March 2015- If you aren't already running network IDS, you should be. Whether you need to monitor hosts or the networks connecting them to identify the latest threats, there are some great open source intrusion detection (IDS) tools available to you. This guide provides an overview of some of the most popular Open Source IDS tools, along with pros/cons of each and learn more about implementing intrusion detection tools.

Principles & Policies of Perpetual Paranoia: The New Rules for Enterprise IT Security [ Source: Certes ]

March 2015- Enterprise users are putting many more demands on IT security than ever before. At the same time, the IT security architecture is being tested by hackers at unprecedented levels.

In the middle of this "perfect storm" of demands and challenges, how is IT security to cope? How do the stakeholders in network, applications and information security departments gain clarity and alignment to ensure gaps are plugged and compliance needs are met? An emerging ...

Epic Security Fail: Roots of the Hacking Crisis [ Source: Certes ]

March 2015- The worldwide hacking crisis continues. In case after case, hacked enterprises had firewalls, intrusion detection, incident response and other systems in place. So why did these security measures fail to prevent so many breaches? In every documented case, it was because networked applications were not properly secured. This infographic explores the three primary IT security gaps that enabled hackers to get a foothold in enterprises and exfiltrate sensitive data.

Think Like A Hacker: A New Approach to Vulnerability Risk Management [ Source: NopSec ]

March 2015- In 2014, there were 7,945 security vulnerabilities identified. That is 22 new vulnerabilities a day. Nearly one an hour. While the number does not appear alarming at face value, when you multiply that by the servers, applications and endpoints across the IT environment, the number is staggering.

Making sense out of mountains of threat data is just one of the many challenges organizations face as part of their vulnerability risk management program. So how can organizations ...

Who are you trying to protect? [ Source: Gemalto ]

August 2014- If we are to progress towards more secure and convenient authentication solutions, we have to start thinking beyond passwords. Multi-factor solutions that operate independent of passwords, are the future. But not all users are created equal. Some need more stringent forms of authentication than others. So who are you trying to protect?

Deploying a Next-Gen IPS Infrastructure [ Source: F5 ]

May 2014- Enterprises require intrusion prevention systems (IPSs) to protect their network against attacks. However, implementing an IPS involves challenges of scale and performance. Leveraging the power of an Application Delivery Controller allows enterprises to efficiently deploy a next-generation IPS infrastructure. Read this white paper to learn how installing the right solution allows the IPS to focus on identifying and mitigating threats to the network, and ensure that no application is left unprotected.

Turning the Corporate Network Inside Out [ Source: Zscaler ]

December 2013- The world of IT security is undergoing tremendous change as the corporate perimeter disappears and employees are increasingly mobile. These always-on, connected employees become a point of vulnerability as they access the corporate network through unprotected Wi-Fi. This white paper talks about a new approach needed in order to protect the network from Internet security threats. It also highlights how Zscaler's Security-as-a-Service platform, built from the ground up and 100% cloud, protects organizations and employees irrespective ...

Selecting a Next-Generation Firewall: Top 10 Considerations [ Source: Cisco ]

March 2015- Many midsize companies have reached a critical moment with their network security. They must reinforce their traditional security solution to address new trends arising from mobility and cloud, and meet a rising threat landscape. These dynamics complicate the challenge of maintaining network security, and tax the network's ability to perform optimally for the business. Are you ready to learn more?

Implementing SAP Security Solutions [ Source: Onapsis ]

January 2015- Gaps in security practices of business-critical applications running on SAP are causing organizations to rethink their current approach and embrace a new strategy.

Device Fingerprinting - Low-Friction, BYOD Authentication [ Source: SecureAuth ]

January 2015- The explosion of user devices has left enterprises scrambling to secure access control to their resources while meeting the user expectations for a clean experience. Resolving the conundrum of adding layers of authentication without compromising ease-of-use has proven to be an elusive task for enterprises... until now. This paper will examine SecureAuth IdP's Device Fingerprinting and its numerous benefits, including more secure authentication without user friction.

Spiceworks Survey: Crypto Chaos - Data Traffic Security is a Mess [ Source: Certes ]

December 2014- Poor network security and inadequate traffic segmentation were chief causes of data breaches in 2013 and 2014, compromising billions of data records costing corporate hacking victims, banks, retailers and credit card issuers billions of dollars to clean up.

In November 2014, Certes Networks worked with Spiceworks and its community of more than 6 million IT professionals to discover how companies across the globe handle data in motion and other IT security issues. The results made one ...

A New Set of Network Security Challenges [ Source: Dell ]

December 2014- This new IDG survey reveals optimism about the ability of next-generation firewalls to help IT balance productivity and security. With two issues becoming increasingly crucial, IT faces conflicting mandates from the business. On one hand, employees demand access from devices beyond the firewall-smartphones, tablets, home PCs and laptops. On the other hand, risk management dictates corporate data must remain protected. The overarching challenge: balance productivity and security. Within that mandate, however, lie several other challenges, ...

Web Attack Survival Guide [ Source: Imperva ]

July 2014- With an increasing amount of business being conducted online, the Internet has quickly become the frontline in an ongoing battle between companies and an unseen enemy. Industrial espionage, sabotage and cyber terrorism are becoming more frequent, resulting in lost revenue, stolen data, service interruptions and damaged reputations. This white paper details the seven steps you must take to protect your organization from external threats targeting your high-value applications and data assets.

What Next Gen Firewalls Miss: 6 Requirements to Protect Web Applications [ Source: Imperva ]

July 2014- Web application attacks threaten nearly every organization with an online presence. While some security vendors contend that their next generation firewalls can stop Web attacks, these products lack essential Web security features, leaving customers exposed to attack. This white paper lays out the six key requirements needed to protect Web applications.

Big Data, Big Mess: Sound Risk Intelligence Through Complete Context [ Source: SurfWatch Labs ]

July 2014- When it comes to cybersecurity, perhaps nothing has been as highly touted as the answer to every executive's prayers as big data. Cybercrime, being inherently technical, can provide vast droves of data to be analyzed.

The real challenge is translating complex, technical cyber data into practical information that can be easily understood by the business as well as security pros. Many variables come into play when it comes to understanding cyber risk: your ...

Top 10 Things Every Web Application Firewall Should Provide [ Source: Imperva ]

July 2014- Securing Web applications against cybercriminals, hacktivists, and state-sponsored hackers is a never-ending effort. Web application firewalls have become the central platform for protecting applications against all online threats. This white paper explains in detail the 10 features that every Web application firewall should provide.

The Insider Threat: Detecting Indicators of Human Compromise [ Source: Tripwire ]

June 2014- Your organization's greatest asset is also its greatest risk. The employees, contractors and trusted business partners you rely on to keep your organization running can also cause it the most damage. A malicious insider can use authorized credentials to do unauthorized things, bring your network down or repeatedly steal data from your organization without being detected.

Learn about the Insider Threat Kill Chain and what you can do to protect your organization from ...

Twelve Recommendations For Your Security Program In 2014 [ Source: TITUS ]

May 2014- Each year, Forrester Research outlines 12 important recommendations for security and risk management strategies for the coming year. These recommendations stem from Forrester's understanding of the current state of the industry, major upcoming shifts in the security technology landscape, and the anticipated business and technology changes that will affect organization around the world. In this report, learn how defining your data and giving it an identity are key to helping organizations better protect sensitive information.

Advanced Threat Detection for the 21st Century: Integrating Big Data Intelligence to Enable Breach Prevention [ Source: Damballa ]

May 2014- Organizations need a new approach to security since today's threat actors always have the first move. Malware will get through prevention controls and infections will happen. How do we even the playing field and catch infections before they cause damage? The answer lies in big data science and analytics, not malware analysis. This paper explores how big data is helping enterprises defend against advanced threats.

Be the One Who Puts Security on the Agenda eBook [ Source: Kaspersky Lab ]

May 2014- You want to maximize the potential offered by new technologies and establish an advantage over your competitors. But you know the latest IT developments can also bring new security challenges.

This practical guide helps you align essential IT security with your core business objectives and:

• Build a compelling IT security business case
• Select the right security technologies
• Protect your physical, mobile, and virtual environment

An Enterprise File Sharing Platform which is both Simple and Secure [ Source: Egnyte ]

March 2014- When employees share files in the cloud without IT control, they put corporate data at risk. This brief discusses the need of an enterprise file sharing platform which provides flexibility of cloud file sharing along with comprehensive data protection.

Augmented VPN [ Source: McAfee ]

February 2014- A Virtual Private Network delivers the best return on investment in securing communications. However, the lack of reliability of VPN links is risky for critical communication within organizations. Constantly available networks typically rely on several Internet service providers to ensure always-on connectivity and increase bandwidth. Augmented VPN aggregates all Internet Service Provider links to obtain a single high capacity tunnel. Augmented VPN provides a simple and cost effective way to create fast, secure, high capacity ...

Protect Against Advanced Evasion Techniques [ Source: McAfee ]

February 2014- The network security paradigm is currently shifting toward a new reality as advanced hacking methods become more prevalent and harder to detect. An example of such a method is advanced evasion techniques (AETs). Although evasions have been documented extensively in the last fifteen years, security vendors have systematically ignored the significance of evasions. Some vendors have even downplayed the threat posed by evasions as being purely theoretical. Yet this debate misses the bigger issue: the ...

Best Practices for Security and Compliance with Amazon Web Services [ Source: Trend Micro ]

February 2014- Organizations must take an active role in protecting systems and applications as part of the AQS shared security model. This paper discusses what part of the shared responsibility equation customers are responsible for and recommended practices that help create a security cloud-computing environment.

Next 25