Best Practices - IT Library : ZDNet Asia

Case Studies

Vendor Webcast

Show all content

Title Date Added Company

The Essential Elements of Comprehensive Endpoint Security 26/03/08 Symantec

For today’s computing environments, there is little question that endpoint security is a required component of an overall enterprise security strategy. Various trends fostering user mobility ensure that many endpoints will frequently be exposed directly to the Internet and endpoints are still being exposed to numerous threats. This paper clarifies the various aspects of the endpoint security problem and to identify the functional requirements of a comprehensive endpoint security solution. sponsored by

The Essential Elements of Comprehensive Endpoint Security 01/10/06 Symantec

Establishing a comprehensive endpoint security solution is complicated, and issues like accounting for unmanaged nodes only increase the scope of the challenge. What's more, selecting and stitching together an appropriate set of counter-measures means navigating a complex landscape of point products. Accordingly, the intent of this white paper is to clarify the the endpoint security problem and identify the functional requirements of a comprehensive endpoint security solution.

sponsored by

Eliminating your SSL Blind Spot 2006-09-26 01:00:16 Secure Computing

Web encryption is indispensable for today's businesses, but organisations with an open port 443 (HTTPS tunnel) on their firewall are left with a major security hole wide open in their network. Traditional firewalls and gateway anti-virus solutions are unable to scan encrypted traffic, and therefore can provide no control over what content is sent in and out of organisations' networks via HTTPS. This presents tremendous risks to organisations that may not realize they cannot rely on their HTTP filters to protect HTTPS encrypted traffic. This white paper discusses how HTTPS filtering (SSL scanning) provides organisations with the means to counter these threats by fully extending their existing Internet usage policies to HTTPS traffic, and thereby proactively closing that last known major network security hole.

IT Systems Validation for SOx and Regulatory Compliance: Importance of Information Systems Audit and Validation 2006-09-01 01:00:13 MetricStream

Information technology has become a core enabler of business processes within the organizations today. As a result, companies are required to audit and validate their relevant IT systems to ensure that their business processes and underlying records comply with regulations such as the Sarbanes-Oxley Act of 2002 or Healthcare Insurance Portability and Accountability Act (HIPAA) or 21 CFR Part 11(FDA). This paper defines an "Easy-to-implement" framework for auditing and validating IT systems for regulatory compliance. It also identifies a best practice which calls for IT organizations and software vendors to proactively audit their software development and implementation processes on an ongoing basis to identify and correct any systemic issues to lower the cost of compliance.

Operational Benefits of Sarbanes-Oxley Compliance 2006-09-01 01:00:13 MetricStream

While many management teams, board of directors, audit committees see Sarbanes-Oxley Act of 2002 as an administrative and compliance exercise, this paper encourages companies to think outside-the-box and use the regulation as an excuse to improve business processes. Forward thinking companies are indeed leveraging the Sarbanes-Oxley 404 compliance requirements to define a higher standard in financial reporting, ensuring that their companies deliver on 5 key "Value drivers" discuss in the paper.

Capacity Management: A CA IT Service Management Process Map 2007-01-23 01:00:26 CA (Computer Associates)

CA's IT Service Management (ITSM) Process Maps provide a clear representation of the ITIL best practice framework. This paper discusses how to navigate a particular ITIL process journey, reviewing each process activity that must be addressed in order to achieve process objectives. Along each journey, careful attention is given to the critical role of technology in both integrating ITIL processes and automating ITIL process activities.

Plugging the Leaks: Proven Approaches for Securing Corporate Email 2006-08-28 13:07:22 Proofpoint

What's at stake with messaging security? Everything from jobs to a company's reputation—the very livelihood of the organization and its ability to compete.

Besides the obvious business need to safeguard proprietary information from competitors, news organizations, financial institutions and the general public, there are serious penalties for disclosure of certain types of private, sensitive and confidential information.

Companies need to control and filter outbound messages to mitigate the risk of this confidential information leaking into public view. How can IT managers address this challenge?

Read this paper from Proofpoint to learn:

Why organizations need to monitor all outbound protocols, including email, webmail, URL filtering and FTP.

Five initial best practices for managing content in and out of the enterprise.

The impact violations of compliance regulations can have on your organization.

Enterprise Full Disk Encryption Buyers Guide 2006-08-22 03:41:39 PGP

The growth of mobile computing boosts productivity but companies face the threat of lost data. Full disk encryption technology allows organisations to lock down all data stored on a laptop or desktop computer, rendering that data unreadable in the event a system is lost or stolen. This PGP White Paper is intended for enterprise IT managers, risk management and compliance managers, and others responsible for IT security or corporate compliance.

Tactical Issues and Best Practices 2006-08-10 01:00:12 SAS Institute

Ask most CFOs and finance directors to describe an ideal forecasting and budgeting process, and they'll likely portray it as part of an overall integrated performance management framework, ultimately driven by value-based measures. At the same time, however, they'll admit that this vision involves a significant transformation to their current forecasting and budgeting processes, systems, and organization. The good news is that tactical solutions deliver significant and usually exponential benefits. As with any longer-term solution, successful tactical initiatives also require strong executive sponsorship, a robust and proven approach, a persuasive business case, and a significant change to the way the organization views and operates the forecasting and budgeting process.

Why Silence Isn't Golden Anymore: Revolutionizing the Voice of the Customer 2006-09-01 01:00:13 SHOUTBACK.COM

Today's global marketplace demands that product and service providers be committed to continuous interaction with their consumer base and be ready to reinvent themselves to keep pace with change. Research indicates that online research forums are the ideal way to stay on top of a fickle, demanding market with ever-changing expectations. However, even among these "Just-in-time" consumer feedback solutions, there are numerous flaws to look for when making decisions about what online rating systems are best for the business. This paper identifies and describes best practices in the online consumer rating business, and identifies the theories and goals behind the SHOUTBACK.COM approach to both connecting consumers and connecting with them.

Implementing Linux on IBM System z: Best Practices 2006-08-30 01:00:13 IBM

The purpose of this paper is twofold. First, it attempts to draw from customer experiences and the latest IBM System z solutions to present best practices information for a Linux on System z installation, and more specifically a Linux installation on System z that will support a WebSphere environment. Second, the authors recognize that a great deal of documentation and assistance already exists and is available on the Internet for Linux on System z installations, but can be difficult to locate whenever one needs it. In recognition of that fact, the second purpose of this paper is to serve as a "Reference hub" to help a customer locate the documentation for a particular issue or product he or she is looking for.

IT Compliance Benchmark Report, 2006 2006-09-12 12:24:44 Symantec

Download this research report from Symantec to read the results of a survey on IT compliance practices in large organizations representing an array of industries, including government agencies. The purpose of the benchmark survey, which was conducted by SecurityCompliance.com from December 2005 through March 2006, was to establish industry norms for compliance-related activities based on the results of real-world regulatory audits. This resulting report classifies organizations that perform above and below the defined norms as "leaders" and "laggards" and teases out the traits that separate them. The takeaway is a list of five key actions that can improve compliance results in most any organization.

Jump to 1 2 3 4 [5] 6 7 8 9 10

Title	Date Added	Company
The Essential Elements of Comprehensive Endpoint Security	26/03/08	Symantec
For today’s computing environments, there is little question that endpoint security is a required component of an overall enterprise security strategy. Various trends fostering user mobility ensure that many endpoints will frequently be exposed directly to the Internet and endpoints are still being exposed to numerous threats. This paper clarifies the various aspects of the endpoint security problem and to identify the functional requirements of a comprehensive endpoint security solution.		sponsored by
The Essential Elements of Comprehensive Endpoint Security	01/10/06	Symantec
Establishing a comprehensive endpoint security solution is complicated, and issues like accounting for unmanaged nodes only increase the scope of the challenge. What's more, selecting and stitching together an appropriate set of counter-measures means navigating a complex landscape of point products. Accordingly, the intent of this white paper is to clarify the the endpoint security problem and identify the functional requirements of a comprehensive endpoint security solution.		sponsored by
Eliminating your SSL Blind Spot	2006-09-26 01:00:16	Secure Computing
Web encryption is indispensable for today's businesses, but organisations with an open port 443 (HTTPS tunnel) on their firewall are left with a major security hole wide open in their network. Traditional firewalls and gateway anti-virus solutions are unable to scan encrypted traffic, and therefore can provide no control over what content is sent in and out of organisations' networks via HTTPS. This presents tremendous risks to organisations that may not realize they cannot rely on their HTTP filters to protect HTTPS encrypted traffic. This white paper discusses how HTTPS filtering (SSL scanning) provides organisations with the means to counter these threats by fully extending their existing Internet usage policies to HTTPS traffic, and thereby proactively closing that last known major network security hole.
IT Systems Validation for SOx and Regulatory Compliance: Importance of Information Systems Audit and Validation	2006-09-01 01:00:13	MetricStream
Information technology has become a core enabler of business processes within the organizations today. As a result, companies are required to audit and validate their relevant IT systems to ensure that their business processes and underlying records comply with regulations such as the Sarbanes-Oxley Act of 2002 or Healthcare Insurance Portability and Accountability Act (HIPAA) or 21 CFR Part 11(FDA). This paper defines an "Easy-to-implement" framework for auditing and validating IT systems for regulatory compliance. It also identifies a best practice which calls for IT organizations and software vendors to proactively audit their software development and implementation processes on an ongoing basis to identify and correct any systemic issues to lower the cost of compliance.
Operational Benefits of Sarbanes-Oxley Compliance	2006-09-01 01:00:13	MetricStream
While many management teams, board of directors, audit committees see Sarbanes-Oxley Act of 2002 as an administrative and compliance exercise, this paper encourages companies to think outside-the-box and use the regulation as an excuse to improve business processes. Forward thinking companies are indeed leveraging the Sarbanes-Oxley 404 compliance requirements to define a higher standard in financial reporting, ensuring that their companies deliver on 5 key "Value drivers" discuss in the paper.
Capacity Management: A CA IT Service Management Process Map	2007-01-23 01:00:26	CA (Computer Associates)
CA's IT Service Management (ITSM) Process Maps provide a clear representation of the ITIL best practice framework. This paper discusses how to navigate a particular ITIL process journey, reviewing each process activity that must be addressed in order to achieve process objectives. Along each journey, careful attention is given to the critical role of technology in both integrating ITIL processes and automating ITIL process activities.
Plugging the Leaks: Proven Approaches for Securing Corporate Email	2006-08-28 13:07:22	Proofpoint
What's at stake with messaging security? Everything from jobs to a company's reputation—the very livelihood of the organization and its ability to compete. Besides the obvious business need to safeguard proprietary information from competitors, news organizations, financial institutions and the general public, there are serious penalties for disclosure of certain types of private, sensitive and confidential information. Companies need to control and filter outbound messages to mitigate the risk of this confidential information leaking into public view. How can IT managers address this challenge? Read this paper from Proofpoint to learn: Why organizations need to monitor all outbound protocols, including email, webmail, URL filtering and FTP. Five initial best practices for managing content in and out of the enterprise. The impact violations of compliance regulations can have on your organization.
Enterprise Full Disk Encryption Buyers Guide	2006-08-22 03:41:39	PGP
The growth of mobile computing boosts productivity but companies face the threat of lost data. Full disk encryption technology allows organisations to lock down all data stored on a laptop or desktop computer, rendering that data unreadable in the event a system is lost or stolen. This PGP White Paper is intended for enterprise IT managers, risk management and compliance managers, and others responsible for IT security or corporate compliance.
Tactical Issues and Best Practices	2006-08-10 01:00:12	SAS Institute
Ask most CFOs and finance directors to describe an ideal forecasting and budgeting process, and they'll likely portray it as part of an overall integrated performance management framework, ultimately driven by value-based measures. At the same time, however, they'll admit that this vision involves a significant transformation to their current forecasting and budgeting processes, systems, and organization. The good news is that tactical solutions deliver significant and usually exponential benefits. As with any longer-term solution, successful tactical initiatives also require strong executive sponsorship, a robust and proven approach, a persuasive business case, and a significant change to the way the organization views and operates the forecasting and budgeting process.
Why Silence Isn't Golden Anymore: Revolutionizing the Voice of the Customer	2006-09-01 01:00:13	SHOUTBACK.COM
Today's global marketplace demands that product and service providers be committed to continuous interaction with their consumer base and be ready to reinvent themselves to keep pace with change. Research indicates that online research forums are the ideal way to stay on top of a fickle, demanding market with ever-changing expectations. However, even among these "Just-in-time" consumer feedback solutions, there are numerous flaws to look for when making decisions about what online rating systems are best for the business. This paper identifies and describes best practices in the online consumer rating business, and identifies the theories and goals behind the SHOUTBACK.COM approach to both connecting consumers and connecting with them.
Implementing Linux on IBM System z: Best Practices	2006-08-30 01:00:13	IBM
The purpose of this paper is twofold. First, it attempts to draw from customer experiences and the latest IBM System z solutions to present best practices information for a Linux on System z installation, and more specifically a Linux installation on System z that will support a WebSphere environment. Second, the authors recognize that a great deal of documentation and assistance already exists and is available on the Internet for Linux on System z installations, but can be difficult to locate whenever one needs it. In recognition of that fact, the second purpose of this paper is to serve as a "Reference hub" to help a customer locate the documentation for a particular issue or product he or she is looking for.
IT Compliance Benchmark Report, 2006	2006-09-12 12:24:44	Symantec
Download this research report from Symantec to read the results of a survey on IT compliance practices in large organizations representing an array of industries, including government agencies. The purpose of the benchmark survey, which was conducted by SecurityCompliance.com from December 2005 through March 2006, was to establish industry norms for compliance-related activities based on the results of real-world regulatory audits. This resulting report classifies organizations that perform above and below the defined norms as "leaders" and "laggards" and teases out the traits that separate them. The takeaway is a list of five key actions that can improve compliance results in most any organization.

Security

Featured Whitepapers

Member Login

Webcast:

Enabling Telecom 2.0 with the next generation Service Delivery Platform

Featured Speakers

Oracle Technology Solutions for Midsize Businesses

Industry Report: Financial Services