Member Login

E-mail:    Password:  




 TitleDate AddedCompany
whitepaper Identity and Security Management and Strong Information Technology Governance: Novell's Solution Suite Automates the Approach to the Perfect Union2008-02-01 IDG (International Data Group)
  This IDC White Paper examines Novell's identity and security management (ISM) solutions and how these integrated offerings can play a key role in enforcing security compliance for enterprise organizations. When properly implemented and deployed, these solutions help companies to avoid violations of government and industry regulations, to avoid the leakage of intellectual property and to drive down the cost of compliance through integration, consolidation, and automation Strong security and governance programs should be symbiotic in nature. A total Identity and Access Management (IAM) driven Governance, Risk, and Compliance (GRC) solution should ensure foolproof and accurate measurements of policies and practices across the enterprise.   
whitepaper Software Assurance: An Overview of Current Industry Best Practices2008-02-01 Software Assurance Forum for Excellence in Code (SAFECode)
  Software underpins the information infrastructure that governments, critical infrastructure providers and businesses worldwide depend upon for daily operations and business processes. These organizations widely and increasingly use commercial off-the-shelf software ("COTS") to automate processes with information technology. At the same time, cyber attacks are becoming more stealthy and sophisticated, creating a complex and dynamic risk environment for IT-based operations that users are working to better understand and manage. As such, users have become increasingly concerned about the integrity, security and reliability of commercial software. To address these concerns and meet customer requirements, vendors have undertaken significant efforts to reduce vulnerabilities, improve resistance to attack and protect the integrity of the products they sell.   
whitepaper Meeting PCI DSS Merchant Requirements With a WatchGuard Firebox2008-02-01 WatchGuard Technologies
  The goal of the Payment Card Industry Data Security Standard (PCI DSS) is to create a framework for good security practice around the handling of cardholder data. A PCI-compliant operating environment is one in which the cardholder data exists (i.e., it does NOT refer to the whole corporate network), and PCI DSS defines the requirements for how access to this data must be controlled, monitored, logged, and audited. The objective of this white paper is to discuss those aspects of the PCI DSS standard that have an impact on a firewall deployment for a PCI DSS merchant.

Tags: Security Management		   
whitepaper Payment Card Industry (PCI) Data Security Standard: Navigating PCI DSS2008-02-01 PCI Security Standards Council
  This paper describes the 12 Payment Card Industry Data Security Standard (PCI DSS) requirements, along with guidance to explain the intent of each requirement. PCI DSS requirements apply to all system components that are included in or connected to the cardholder data environment. The cardholder data environment is that part of the network that possesses cardholder data or sensitive authentication data, including network components, servers and applications.

Tags: Data Recovery - Security		   
whitepaper Security Framework and Best Practices in Offshore Outsourcing2008-02-01 Technology Partners International
  The continuous evolution and growth of outsourcing has caused service providers to increasingly offer their clients services from multiple locations across the world. Because of this upsurge, client operations have been extended into the service providers' various offshore sites. While this development has generally led to client cost savings and added capability, it has also raised client concerns about data security at those sites. Both client and service provider organizations have understood these offshore security issues in varying ways. This paper analyzes and clarifies issues surrounding offshore security; discusses how clients and service providers can both adopt a systematic security framework to reduce security risks, and outlines observed best practices.   
whitepaper Financial Services Company Improves Remote Operations With New IT System2008-02-01 Microsoft
  Macquarie Group Limited provides retail banking, investment advice, loans, and other financial services on multiple continents. The Australia-based firm has more than 12,000 employees spread across more than 80 offices worldwide. To stay agile as it moves into new markets, Macquarie Group Limited became an early adopter of Windows Server 2008. By using the new Read-Only Domain Controller (RODC) feature, Macquarie Group Limited expects to allow employees in remote offices to perform routine administration tasks without exposing critical domain functions. Macquarie Group Limited anticipates that Windows Server 2008 will help enhance security at remote locations, simplify tasks associated with maintaining a highly dispersed corporate IT system, and improve the availability of data.

Tags: Remote Access - RA Servers, Windows Server 2008		   
whitepaper Nortel Secure Network Access and Microsoft Network Access Protection Integration2008-01-31 Nortel Networks
  With the ever-increasing need for enterprises to provide endpoint security and policy compliance, Network Access Control (NAC) solutions abound. However, confusion around industry standards, the multitude of NAC vendors and the complexity of the solutions has led to a relatively slow industry-wide NAC adoption rate. In order to increase flexibility, simplicity and comprehensive cross-platform device support, Nortel has worked with Microsoft to provide a joint NAC solution.   
whitepaper Benchmarking IT Risk and Compliance2008-01-31 Symantec
  IT Risk and Compliance are critical issues for Senior IT Managers today. Two areas of focus will be presented beginning with the results of Symantec's IT Risk Management Report. This webcast addresses persistent myths about IT Risk and suggests ways to dispel each. The presenter will cover research conducted by the IT Policy Compliance Group, a joint research initiative between Symantec, ISACA, CSI and others. This research delves deeper into the intimate relationship between compliance and risk. Included are best practices extracted from industry research and survey respondents.

Tags: Cost Control - Risk Mgmt., Best Practices		   
whitepaper Microsoft FDCC Webcast Series: Do It Right: Log in as Normal User2008-01-30 Microsoft
  FDCC requires that the typical user run as Normal User whenever possible; without this, a managed environment is practically impossible. For organizations that have given Local Administrator rights to their users all along, this is a serious change in policy, and one that often alarms Users, Developers, and even Administrators. This webcast provides information on how to propose and implement the switch to performing daily tasks logged in with User, not Administrator rights. It will cover what running as User means in Vista and XP, typical impacts, Necessary preparations and educational moves to make, Special cases for Developers, Power Users, and Administrators and Real world cases and examples of how they handled it.

Tags: Security Management		   
whitepaper MSDN Webcast: geekSpeak: Security From a Public, Anonymous Windows SharePoint Services 3.0 Site With Jim Wilt (Level 300)2008-01-30 Microsoft
  The presenter of this webcast covers a topic that is popping up in many of his current projects - the creation of secure, membership Windows SharePoint Services 3.0 sites that have a public-facing side with an input form that often requests sensitive information. Making a secure form for gathering sensitive, private information from an anonymous accessible site can be easily accomplished with a custom list using some creative features of Windows SharePoint Services.

Tags: Collaborative Web, Collaboration Tools