WHITE PAPER - For a no-nonsense perspective on the most common types of network and data compromises in small to medium-sized businesses, read this white paper. It lists the ten most common vectors of data compromise, with practical techniques and defenses to counter them.
Posted: October 26, 2009 | Published: October 26, 2008


Topics:  Data Loss Prevention (DLP) | Data Security | Information Security | Integrated Threat Management | Network Security | Security | Security Event Management | Security Threats

WHITE PAPER - Take a look at the new XTM (extensible threat management) network security from WatchGuard. See the tangible benefits this new generation of security solutions offers. No hype -- just concrete examples of XTM features and the advantages they deliver for you to evaluate against your current security.
Posted: October 26, 2009 | Published: July 26, 2009


Topics:  Endpoint Security | Firewall Appliances | Firewall Server Hardware | Integrated Threat Management | Network Appliances | Network Security | Network Security Appliances | Security | Security Spending

WHITE PAPER - Protecting confidential data is serious business. Failure may result in fat fines and even jail time -- not to mention damage to your brand. WatchGuard's easy-to-use, all-inclusive email and web secure content and threat prevention appliances offer a complete data protection solution.
Posted: October 26, 2009 | Published: October 26, 2009


Topics:  Data Loss Prevention (DLP) | Data Security | Email Security | Information Security | Security | Security Spending | Security Threats | Web Application Security

PRESENTATION - This collection of slides from the Diana Kelley presents an overview of software security best practices. There is a heavy emphasis on PCI DSS requirement 6 -- “Develop and maintain secure systems and applications”. Some important subsections are highlighted and explained in detail.
Posted: October 26, 2009 | Published: October 26, 2009


Topics:  Application Security | Compliance (Systems Operations) | Compliance Best Practices | Compliance Software | Payment Card Industry Data Security Standard Compliance | Regulatory Compliance | Secure Application Development | Security | Security Software

PRESENTATION - This collection of slides from Diana Kelley and Ed Moyle presents an overview of PCI DSS requirements 7 through 12. Check it to learn about the second half of PCI DSS, learn what each one means, and how it will be effected by version 1.2 of PCI DSS.
Posted: October 26, 2009 | Published: October 26, 2009


Topics:  Compliance (Systems Operations) | Compliance Audits | Credit Cards | Data Governance | Data Security | Information Security | Payment Card Industry Data Security Standard | Payment Card Industry Data Security Standard Compliance | Regulatory Compliance | Security

PRESENTATION - This collection of slides from Diana Kelley and Ed Moyle presents an overview of PCI DSS requirements 1 through 6. Check it to learn about the first six PCI DSS requirements, what each one means, and how it will be effected by version 1.2 of PCI DSS.
Posted: October 26, 2009 | Published: October 26, 2009


Topics:  Compliance (Systems Operations) | Compliance Best Practices | Credit Cards | Data Governance | Data Security | Information Security | Payment Card Industry Data Security Standard | Payment Card Industry Data Security Standard Compliance | Regulatory Compliance | Security

PRESENTATION - This collection of slides from Diana Kelley and Ed Moyle presents an overview of PCI DSS in general and offers some broad, nontechnical advice on how to attain and maintain compliance. Check it out to learn about compliance validation, compliance assessments, and more.
Posted: October 26, 2009 | Published: October 26, 2009


Topics:  Compliance (Systems Operations) | Compliance Audits | Compliance Best Practices | Data Security | Information Security | Payment Card Industry Data Security Standard | Payment Card Industry Data Security Standard Compliance | Regulatory Compliance | Security | Standards

WEBCAST - Most organizations have database discovery and maintenance plans, but surprisingly lack a database security plan. A piecemeal approach to securing the database is costly, inefficient, and creates gaps in protection and regulatory issues. View this webcast for tips from Forrester on how to design a comprehensive database security plan.
Posted: October 23, 2009 | Premiered: November 18, 2009


Topics:  Data Security | Database Management | Database Security | Security | Security Best Practices | Security Threats

PODCAST - The growth of the internet brought about massively scalable distributed systems which have proved advantageous not only for governments, businesses and end-users, but also for criminals. In this webcast, review past, present, and future considerations regarding cybercrime, and discover next-generation methods of combating weaponized software.
Posted: October 23, 2009 | Premiered: October 23, 2009


Topics:  Cybersecurity | Cyberterrorism | Government Information Security | Internet Security | Security | Security Best Practices | Security Threats

WEBCAST - The growth of the internet has brought about massively scalable distributed systems which have proved advantageous not only for governments, businesses and end-users, but also for criminals. In this webcast, review past, present, and future considerations regarding cybercrime, and discover next-generation methods of combating weaponized software.
Posted: October 22, 2009 | Premiered: October 22, 2009


Topics:  Cybersecurity | Cyberterrorism | Government Information Security | Internet Security | Security | Security Best Practices | Security Threats

PODCAST - The threat environment has changed drastically in recent years. Threats are more complicated and attackers are part of organized groups seeking profit rather than fame. In this podcast, Charles Kolodgy of IDC highlights how attackers have been successful, countermeasures in risk reduction, and a new model for defense-in-depth.
Posted: October 22, 2009 | Premiered: October 22, 2009


Topics:  Cybersecurity | Risk Assessment | Risk Management | Security | Security Best Practices | Security Threats

WEBCAST - The threat environment has changed drastically in recent years. Threats are more complicated and attackers are part of organized groups seeking profit rather than fame. In this webcast, Charles Kolodgy of IDC highlights how attackers have been successful, countermeasures in risk reduction, and a new model for defense-in-depth.
Posted: October 22, 2009 | Premiered: October 22, 2009


Topics:  Cybersecurity | Risk Assessment | Risk Management | Security | Security Best Practices | Security Threats

WHITE PAPER - This technical guide for database administrators and IT security experts demonstrates how you can protect your sensitive data with the native database encryption functions of Microsoft SQL Server 2008, such as cell-level encryption and Transparent Data Encryption, and manage and protect encryption keys with hardware security modules (HSMs).
Posted: October 21, 2009 | Published: October 21, 2009


Topics:  Data Encryption | Data Security | Database Administration | Database Administrators | Database Security | Security | Security Hardware | SQL Server | Windows Server Software

WHITE PAPER - This white paper outlines a sound, process-based approach to protecting the critical privileged accounts found in most applications, databases, and infrastructure devices throughout the enterprise. This approach integrates features like automated password resets and management workflows, secure storage of credentials, and a sealed operating system.
Posted: October 21, 2009 | Published: October 21, 2009


Topics:  AAA | Access Control | Access Control Software | Authentication | Authorization | Identity Management | Identity Management Software | Password Management | Password Management Software | Security | Security Policies

ASSESSMENT TOOL - Choosing a solution for Vulnerability Management (VM) is a critical step toward protecting your organization's network and data. Qualys provides this 12-point short list of considerations that will help you determine what will work best for your organization.
Posted: October 21, 2009 | Published: October 21, 2009


Topics:  Access Control Software | Data Security | HIPAA Compliance | Network Security | Reporting Software | Sarbanes-Oxley Compliance | Security | Security Best Practices | Security Software | Security Spending | Software as a Service | Vulnerability Assessments | Vulnerability Management