Security Administration - IT Library : ZDNet Asia

Case Studies

Vendor Webcast

Show all content

Title Date Added Company

Global Best Practices in Email Security, Privacy and Compliance 2008-08-04 Proofpoint

A new generation of email security solutions is needed to meet the challenges of growing message traffic, rapidly-evolving security threats and increasingly complex data protection and privacy regulations worldwide.

Securing inbound email - while challenging enough - is less difficult than maintaining compliance with the complex, overlapping and sometimes conflicting global regulations that govern data privacy, transactional ethics and corporate governance.

Some of these regulations are designed to stop sources of spam, viruses and spyware. Others intend to make companies more responsible for the protection of customers' privacy and more accountable for the substance of their financial reports.

All have a pronounced affect on corporate email. Download this whitepaper from Ziff Davis and Proofpoint to learn more about:

Email security mandates for the protection of non-public information (NPI) and company confidential information

The impact of financial reporting regulations on email security

Addressing increased security and productivity threats such as spam, viruses and spyware

Lessons learned in specific vertical industries such as Financial Services, Health Care and Public Sector

Tags: Security Tools, Email, Spam - E-mail Fraud - Phishing

Risk Management: Bridging Policies and Procedures - Fundamental Security Concepts 2008-07-25 Global Knowledge

One thing that security professionals know is that security is about processes, not about the technology. The key to security is to match the technology to the process, but you have to know the process first. Policies and procedures are the requirements, and risk management is the bridge between the two. Collectively, they are the road maps that lead to effective and efficient security designs. This white paper covers the basics of risk management in security, including the security triangle, calculating ROI, and policies and procedures.

Tags: Cost Control - Risk Mgmt., Strategic Planning, Best Practices, Training

Does Size Matter? The security challenge of the SMB 2008-07-16 McAfee

Just because a business is small, doesn't mean it's immune to security threats. Security challenges facing Small and Medium Businesses in North America are on the rise. For businesses of all sizes, viruses, hacker intrusions, spyware and spam can lead to lost or stolen data, computer downtime, decreased productivity, compliance issues, lost sales and even loss of reputation. According to a recent survey conducted by McAfee, many small and medium sized businesses felt they were too small to be of any value to cyber criminals. When in fact, 92% of respondents rely on the Internet for much of their business, and most average SMBs dedicate only one hour a week to IT security. If a business does become a victim of a cyber crime attack, on average, it can take an entire week to get their business back up and running. Download this study to learn more about how businesses of all sizes are at risk.

Tags: Anti-Hacking, Spam - E-mail Fraud - Phishing, Best Practices

Design Guidelines for IT Security Management Tools 2008-06-23 University of British Columbia

One of the most important factors that impact usability of security systems within an organization are security tools. This paper reports preliminary results of their survey about design guidelines for IT security management tools. The paper gathered guidelines and recommendations related to IT security management tool from available literature as well as result of their previous studies on IT security management. It categorized and combined these guidelines into a set of high level guidelines that can be used by tool developers in development of tools. In addition the paper identified the relationship between guidelines and challenges in IT security management as well as the strength of evidence for each guideline.

Tags: Network Design, Security Tools

Web application security: automated scanning versus manual penetration testing 2008-01-01 IBM

Web sites are vulnerable to Web application attacks and a great percentage of these attacks occur over the HTTP/S protocols, ports that are often exposed to the entire online community. It's essential for organizations to take serious measures to help secure their Web applications.

There are two primary methods for discovering Web application vulnerabilities: using manual penetration testing and code review or using automated scanning tools and static analysis. The purpose of this paper is to compare these two methods.

Tags: Best Practices, Security Management

Take a holistic approach to business-driven security 2008-06-11 IBM

Organisations often take a bottoms-up approach to security because security solution vendors typically promote this approach to their clients. But this methodology often creates an excessively complex and disjointed security infrastructure.

This paper introduces actions that organisations can take to drive security efforts from a business and operational perspective and discusses how security leadership from IBM can help enable their success

Tags: Security Standards, Security Management, Security Tools, Best Practices

Cisco Security Advisory: Cisco IOS Secure Shell Denial of Service Vulnerabilities 2008-05-21 Cisco Systems

The Secure Shell server (SSH) implementation in Cisco IOS contains multiple vulnerabilities that allow unauthenticated users the ability to generate a spurious memory access error or, in certain cases, reload the device. The IOS SSH server is an optional service that is disabled by default, but its use is highly recommended as a security best practice for management of Cisco IOS devices. SSH can be configured as part of the AutoSecure feature in the initial configuration of IOS devices, AutoSecure run after initial configuration, or manually. Devices that are not configured to accept SSH connections are not affected by these vulnerabilities.

Tags: Denial of Service

Extending PCI Compliance to the Mobile Workforce 2008-05-07 Fiberlink Communications

The Payment Card Industry (PCI) Security Standards Council developed an explicit Data Security Standard (DSS) which outlines the minimum controls necessary to protect the system components that support cardholder data environments. The Council added teeth to the security standard by enforcing it through regular audits and assessments conducted by authorized agencies. The controls outlined in the 12 requirements of PCI DSS specifically address system components - the point-of-sale devices, servers, network, applications and storage - that support cardholder data environments. Consequently, this is the network segment that organizations focus on when devising, implementing, maintaining and assessing their security controls.

Tags: Best Practices

Understanding Today's Privacy Regulations 2008-05-01 McAfee

As the amount of personal information gathered and electronically stored increases, so does the concern about protecting it. Data Security, Data Protection and Data Breach Laws and Regulations...what does it all mean? Download this paper to learn about different privacy regulations around the world, and how personal information can be stored and shared without compromising privacy.

Tags: PKI, E-commerce Security, Data Recovery - Security, Best Practices

Citrix GoToAssist Corporate Security White Paper 2008-04-28 Citrix Online

GoToAssist Corporate's intuitive and secure interface and feature set make it the most effective solution for conducting online support sessions. Using GoToAssist Corporate, support, consulting and IT professionals can quickly and easily deliver technical help to customers across the globe. Behind the scenes, Citrix Online's hosted service architecture transparently supports multi-point collaboration by providing a secure, reliable environment. As this paper shows, GoToAssist Corporate promotes ease of use and flexibility without compromising the integrity, privacy or administrative control of business communications or IT assets.

Tags: Security Management

Jump to [1] 2 3 4 5 6 7 8 9 10

Title	Date Added	Company
Global Best Practices in Email Security, Privacy and Compliance	2008-08-04	Proofpoint
A new generation of email security solutions is needed to meet the challenges of growing message traffic, rapidly-evolving security threats and increasingly complex data protection and privacy regulations worldwide. Securing inbound email - while challenging enough - is less difficult than maintaining compliance with the complex, overlapping and sometimes conflicting global regulations that govern data privacy, transactional ethics and corporate governance. Some of these regulations are designed to stop sources of spam, viruses and spyware. Others intend to make companies more responsible for the protection of customers' privacy and more accountable for the substance of their financial reports. All have a pronounced affect on corporate email. Download this whitepaper from Ziff Davis and Proofpoint to learn more about: Email security mandates for the protection of non-public information (NPI) and company confidential information The impact of financial reporting regulations on email security Addressing increased security and productivity threats such as spam, viruses and spyware Lessons learned in specific vertical industries such as Financial Services, Health Care and Public Sector Tags: Security Tools, Email, Spam - E-mail Fraud - Phishing
Risk Management: Bridging Policies and Procedures - Fundamental Security Concepts	2008-07-25	Global Knowledge
One thing that security professionals know is that security is about processes, not about the technology. The key to security is to match the technology to the process, but you have to know the process first. Policies and procedures are the requirements, and risk management is the bridge between the two. Collectively, they are the road maps that lead to effective and efficient security designs. This white paper covers the basics of risk management in security, including the security triangle, calculating ROI, and policies and procedures. Tags: Cost Control - Risk Mgmt., Strategic Planning, Best Practices, Training
Does Size Matter? The security challenge of the SMB	2008-07-16	McAfee
Just because a business is small, doesn't mean it's immune to security threats. Security challenges facing Small and Medium Businesses in North America are on the rise. For businesses of all sizes, viruses, hacker intrusions, spyware and spam can lead to lost or stolen data, computer downtime, decreased productivity, compliance issues, lost sales and even loss of reputation. According to a recent survey conducted by McAfee, many small and medium sized businesses felt they were too small to be of any value to cyber criminals. When in fact, 92% of respondents rely on the Internet for much of their business, and most average SMBs dedicate only one hour a week to IT security. If a business does become a victim of a cyber crime attack, on average, it can take an entire week to get their business back up and running. Download this study to learn more about how businesses of all sizes are at risk. Tags: Anti-Hacking, Spam - E-mail Fraud - Phishing, Best Practices
Design Guidelines for IT Security Management Tools	2008-06-23	University of British Columbia
One of the most important factors that impact usability of security systems within an organization are security tools. This paper reports preliminary results of their survey about design guidelines for IT security management tools. The paper gathered guidelines and recommendations related to IT security management tool from available literature as well as result of their previous studies on IT security management. It categorized and combined these guidelines into a set of high level guidelines that can be used by tool developers in development of tools. In addition the paper identified the relationship between guidelines and challenges in IT security management as well as the strength of evidence for each guideline. Tags: Network Design, Security Tools
Web application security: automated scanning versus manual penetration testing	2008-01-01	IBM
Web sites are vulnerable to Web application attacks and a great percentage of these attacks occur over the HTTP/S protocols, ports that are often exposed to the entire online community. It's essential for organizations to take serious measures to help secure their Web applications. There are two primary methods for discovering Web application vulnerabilities: using manual penetration testing and code review or using automated scanning tools and static analysis. The purpose of this paper is to compare these two methods. Tags: Best Practices, Security Management
Take a holistic approach to business-driven security	2008-06-11	IBM
Organisations often take a bottoms-up approach to security because security solution vendors typically promote this approach to their clients. But this methodology often creates an excessively complex and disjointed security infrastructure. This paper introduces actions that organisations can take to drive security efforts from a business and operational perspective and discusses how security leadership from IBM can help enable their success Tags: Security Standards, Security Management, Security Tools, Best Practices
Cisco Security Advisory: Cisco IOS Secure Shell Denial of Service Vulnerabilities	2008-05-21	Cisco Systems
The Secure Shell server (SSH) implementation in Cisco IOS contains multiple vulnerabilities that allow unauthenticated users the ability to generate a spurious memory access error or, in certain cases, reload the device. The IOS SSH server is an optional service that is disabled by default, but its use is highly recommended as a security best practice for management of Cisco IOS devices. SSH can be configured as part of the AutoSecure feature in the initial configuration of IOS devices, AutoSecure run after initial configuration, or manually. Devices that are not configured to accept SSH connections are not affected by these vulnerabilities. Tags: Denial of Service
Extending PCI Compliance to the Mobile Workforce	2008-05-07	Fiberlink Communications
The Payment Card Industry (PCI) Security Standards Council developed an explicit Data Security Standard (DSS) which outlines the minimum controls necessary to protect the system components that support cardholder data environments. The Council added teeth to the security standard by enforcing it through regular audits and assessments conducted by authorized agencies. The controls outlined in the 12 requirements of PCI DSS specifically address system components - the point-of-sale devices, servers, network, applications and storage - that support cardholder data environments. Consequently, this is the network segment that organizations focus on when devising, implementing, maintaining and assessing their security controls. Tags: Best Practices
Understanding Today's Privacy Regulations	2008-05-01	McAfee
As the amount of personal information gathered and electronically stored increases, so does the concern about protecting it. Data Security, Data Protection and Data Breach Laws and Regulations...what does it all mean? Download this paper to learn about different privacy regulations around the world, and how personal information can be stored and shared without compromising privacy. Tags: PKI, E-commerce Security, Data Recovery - Security, Best Practices
Citrix GoToAssist Corporate Security White Paper	2008-04-28	Citrix Online
GoToAssist Corporate's intuitive and secure interface and feature set make it the most effective solution for conducting online support sessions. Using GoToAssist Corporate, support, consulting and IT professionals can quickly and easily deliver technical help to customers across the globe. Behind the scenes, Citrix Online's hosted service architecture transparently supports multi-point collaboration by providing a secure, reliable environment. As this paper shows, GoToAssist Corporate promotes ease of use and flexibility without compromising the integrity, privacy or administrative control of business communications or IT assets. Tags: Security Management

Security

Featured Whitepapers

Member Login

Oracle Technology Solutions for Midsize Businesses

Country Report: India