Security Standards - IT Library : ZDNet Asia

Case Studies

Vendor Webcast

Show all content

Title Date Added Company

Is There a Security Hole in Your Windows Hosting? New VERIO White Paper 2006-09-01 Verio

VERIO's white paper, "Sharks in the AppPool," describes serious security risks associated with shared application pooling. Many hosting companies achieve server densities by sharing AppPools. But for any customer with a Website that processes credit card information directly, or has proprietary scripts, this is a significant problem.

Download this white paper to learn about the risks of shared application pooling and the rewards of VERIO Web Servers for Windows.

Ensuring Regulatory Compliance Through Training and Certification: Role of Training and Certification in Regulatory Compliance 0000-00-00 MetricStream

There has been a dramatic growth in compliance and regulatory requirements across all industries. These federal regulations are the law-of-the-land and organizations covered under such regulations need to actively implement them. Organizations need to ensure that they are fully compliant with all of the regulations and reporting requirements of their industry in order to avoid being fined and cited by the respective regulatory bodies. Hence employees and management in these organizations should be able to interpret and internalize relevant regulations and then apply them to their daily business processes. Often, it is lack of proper employee training that leads to actions causing non-compliance, resulting in stiff penalties. Hence, a critical success factor for regulatory compliance is keeping the workforce well trained.

Tags: Security Management, Training and Certification

Compliant Paperless Calibration for Pharmaceutical Manufacturing 0000-00-00 Prime Technologies

The calibration of instrumentation, devices and equipment, along with many other functions performed during the manufacture of finished pharmaceutical products, are mandated within the FDA's Code of Federal Regulations Part 211 (Current Good Manufacturing Practice For Finished Pharmaceuticals). These labor-intensive complex technical functions generate an avalanche of paper that by its very nature is subject to error and delay. The generally accepted interpretation of the FDA's compliance imperatives and GAMP Good Practice Guide for Calibration Management (through ISPE, International Society for Pharmaceutical Engineering) demands that pharmaceutical manufacturers establish robust calibration systems.

Tags: Security Management

PCI Compliance: The CA Solution 2006-09-01 CA (Computer Associates)

The Payment Card Industry (PCI) Data Security Standard (referred to hereafter as "PCI") represents a collaboration between the leading credit card institutions, including, among others, Visa, MasterCard, American Express and Discover. This standard was jointly created in order to ensure consistency of security standards for these card issuers, and to assure cardholders that their account information was secure, regardless of where the card was used for payment. As part of this effort, the Cardholder Information Security Program (CISP) was created in order to monitor compliance to this standard.

Tags: Security Management, Data Recovery - Security

The Convergence of Provisioning and Identity Auditing: The Key to Cost-Effective Compliance and Collaboration 2006-09-01 Sun Microsystems

The merging of cost, compliance, and online commerce as chief business concerns is driving the convergence of provisioning and identity auditing capabilities as well as the demand that such a converged solution be both sustainable and highly scalable. This paper examines the business drivers for the convergence of provisioning and identity auditing. The paper considers the business opportunities associated with a converged approach, describes the converged provisioning and identity auditing capabilities of Sun Java System Identity Manager, and explores scenarios that demonstrates how Sun's converged solution makes it possible to meet the key business objectives.

Tags: Security Management

Payment Card Industry (PCI) Data Security Standard 2006-09-01 PCI Security Standards Council

This paper describes the 12 Payment Card Industry (PCI) Data Security Standard (DSS) requirements. These PCI DSS requirements are organized in 6 logically related groups, which are "Control objectives." PCI DSS requirements are applicable if a Primary Account Number (PAN) is stored, processed, or transmitted. If a PAN is not stored, processed, or transmitted, PCI DSS requirements do not apply.

Tags: Security Management

Payment Card Industry (PCI) Data Security Standard: Security Assessment Procedures 2006-09-01 PCI Security Standards Council

The payment card industry (PCI) denotes the debit, credit, pre-paid, e-purse, ATM, and POS cards and associated businesses. The PCI Security Assessment Procedures are designed for use by assessors conducting onsite reviews for merchants and service providers required to validate compliance with Payment Card Industry (PCI) Data Security Standard (DSS) requirements. The requirements and assessment procedures presented in this paper are based on the PCI DSS.

Webcast: Combating the Elevated Threat of Spyware in Today's SMBs 2006-08-30 13:05:36 Webroot Software

One of the main reasons spyware writers are increasingly targeting small and medium-sized businesses (SMBs) is because their networks are generally easier to penetrate than those of large enterprises. In fact, in the first quarter of 2006 alone, more than 50 percent of small businesses experienced spyware attacks, according to a recent Internet study by Webroot Software. Damages included, among other things:

Drained IT resources

Slowed system performance

Reduced employee productivity

Compromised confidential information

Lost sales

Listen to this on-demand Webcast to hear James Hilliard, Moderator for TechRepublic, and anti-spyware experts from Webroot Software, discuss the current state of spyware and how it threatens today's SMBs. You'll learn:

Why cyber-criminals are targeting SMBs like never before

Why it's easy for spyware to find small businesses

The cost of spyware to SMBs

You'll also learn about Webroot's best-of-breed anti-spyware solution, Spy Sweeper Enterprise 3.0, and how it can help protect your network against even the most insidious forms of spyware, including rootkits, keyloggers, and Trojans.

Plugging the Leaks: Proven Approaches for Securing Email 2006-06-01 Proofpoint

Besides the obvious business need to safeguard proprietary information from competitors, news organizations, financial institutions and the general public, there are serious penalties for disclosure of certain types of private, sensitive and confidential information.

To find out how you can mitigate these and other email-related risks, read this white paper from Proofpoint. You'll learn:

Why you need to monitor all outbound protocols, including email, webmail, URL filtering and FTP.

Five initial best practices for managing content in and out of the enterprise.

How noncompliance with privacy regulations can impact both your business reputation and your bottom line.

Complying with HIPAA's Security Rule: Maintaining Security of ePHI over E-Communications 0000-00-00 Proofpoint

While compliance dates for various HIPAA rules have past, many healthcare related organizations are still in process with respect to full Security Rule compliance.

In this Proofpoint on-demand webinar Proofpoint security expert Sean Wilcox and HIPAA security expert, Barry Johnson from IGXGlobal, discuss how organizations can maintain the privacy and security of electronic protected health information (ePHI) over e-communications (i.e., SMTP, HTTP and FTP protocols).

View this webinar from Proofpoint to learn:

How to quickly assess the risk of ePHI leaving your organization over e-communications.

How to accurately detect and differentiate between ePHI and "de-identified" health information.

Top technical requirements for effectively enforcing your policy and complying with the HIPAA Security Rule.

Lessons learned from real implementationsfrom risk assessment to automated policy enforcement.

Jump to 11 12 13 14 15 16 [17] 18 19 20

Title	Date Added	Company
Is There a Security Hole in Your Windows Hosting? New VERIO White Paper	2006-09-01	Verio
VERIO's white paper, "Sharks in the AppPool," describes serious security risks associated with shared application pooling. Many hosting companies achieve server densities by sharing AppPools. But for any customer with a Website that processes credit card information directly, or has proprietary scripts, this is a significant problem. Download this white paper to learn about the risks of shared application pooling and the rewards of VERIO Web Servers for Windows.
Ensuring Regulatory Compliance Through Training and Certification: Role of Training and Certification in Regulatory Compliance	0000-00-00	MetricStream
There has been a dramatic growth in compliance and regulatory requirements across all industries. These federal regulations are the law-of-the-land and organizations covered under such regulations need to actively implement them. Organizations need to ensure that they are fully compliant with all of the regulations and reporting requirements of their industry in order to avoid being fined and cited by the respective regulatory bodies. Hence employees and management in these organizations should be able to interpret and internalize relevant regulations and then apply them to their daily business processes. Often, it is lack of proper employee training that leads to actions causing non-compliance, resulting in stiff penalties. Hence, a critical success factor for regulatory compliance is keeping the workforce well trained. Tags: Security Management, Training and Certification
Compliant Paperless Calibration for Pharmaceutical Manufacturing	0000-00-00	Prime Technologies
The calibration of instrumentation, devices and equipment, along with many other functions performed during the manufacture of finished pharmaceutical products, are mandated within the FDA's Code of Federal Regulations Part 211 (Current Good Manufacturing Practice For Finished Pharmaceuticals). These labor-intensive complex technical functions generate an avalanche of paper that by its very nature is subject to error and delay. The generally accepted interpretation of the FDA's compliance imperatives and GAMP Good Practice Guide for Calibration Management (through ISPE, International Society for Pharmaceutical Engineering) demands that pharmaceutical manufacturers establish robust calibration systems. Tags: Security Management
PCI Compliance: The CA Solution	2006-09-01	CA (Computer Associates)
The Payment Card Industry (PCI) Data Security Standard (referred to hereafter as "PCI") represents a collaboration between the leading credit card institutions, including, among others, Visa, MasterCard, American Express and Discover. This standard was jointly created in order to ensure consistency of security standards for these card issuers, and to assure cardholders that their account information was secure, regardless of where the card was used for payment. As part of this effort, the Cardholder Information Security Program (CISP) was created in order to monitor compliance to this standard. Tags: Security Management, Data Recovery - Security
The Convergence of Provisioning and Identity Auditing: The Key to Cost-Effective Compliance and Collaboration	2006-09-01	Sun Microsystems
The merging of cost, compliance, and online commerce as chief business concerns is driving the convergence of provisioning and identity auditing capabilities as well as the demand that such a converged solution be both sustainable and highly scalable. This paper examines the business drivers for the convergence of provisioning and identity auditing. The paper considers the business opportunities associated with a converged approach, describes the converged provisioning and identity auditing capabilities of Sun Java System Identity Manager, and explores scenarios that demonstrates how Sun's converged solution makes it possible to meet the key business objectives. Tags: Security Management
Payment Card Industry (PCI) Data Security Standard	2006-09-01	PCI Security Standards Council
This paper describes the 12 Payment Card Industry (PCI) Data Security Standard (DSS) requirements. These PCI DSS requirements are organized in 6 logically related groups, which are "Control objectives." PCI DSS requirements are applicable if a Primary Account Number (PAN) is stored, processed, or transmitted. If a PAN is not stored, processed, or transmitted, PCI DSS requirements do not apply. Tags: Security Management
Payment Card Industry (PCI) Data Security Standard: Security Assessment Procedures	2006-09-01	PCI Security Standards Council
The payment card industry (PCI) denotes the debit, credit, pre-paid, e-purse, ATM, and POS cards and associated businesses. The PCI Security Assessment Procedures are designed for use by assessors conducting onsite reviews for merchants and service providers required to validate compliance with Payment Card Industry (PCI) Data Security Standard (DSS) requirements. The requirements and assessment procedures presented in this paper are based on the PCI DSS.
Webcast: Combating the Elevated Threat of Spyware in Today's SMBs	2006-08-30 13:05:36	Webroot Software
One of the main reasons spyware writers are increasingly targeting small and medium-sized businesses (SMBs) is because their networks are generally easier to penetrate than those of large enterprises. In fact, in the first quarter of 2006 alone, more than 50 percent of small businesses experienced spyware attacks, according to a recent Internet study by Webroot Software. Damages included, among other things: Drained IT resources Slowed system performance Reduced employee productivity Compromised confidential information Lost sales Listen to this on-demand Webcast to hear James Hilliard, Moderator for TechRepublic, and anti-spyware experts from Webroot Software, discuss the current state of spyware and how it threatens today's SMBs. You'll learn: Why cyber-criminals are targeting SMBs like never before Why it's easy for spyware to find small businesses The cost of spyware to SMBs You'll also learn about Webroot's best-of-breed anti-spyware solution, Spy Sweeper Enterprise 3.0, and how it can help protect your network against even the most insidious forms of spyware, including rootkits, keyloggers, and Trojans.
Plugging the Leaks: Proven Approaches for Securing Email	2006-06-01	Proofpoint
Besides the obvious business need to safeguard proprietary information from competitors, news organizations, financial institutions and the general public, there are serious penalties for disclosure of certain types of private, sensitive and confidential information. To find out how you can mitigate these and other email-related risks, read this white paper from Proofpoint. You'll learn: Why you need to monitor all outbound protocols, including email, webmail, URL filtering and FTP. Five initial best practices for managing content in and out of the enterprise. How noncompliance with privacy regulations can impact both your business reputation and your bottom line.
Complying with HIPAA's Security Rule: Maintaining Security of ePHI over E-Communications	0000-00-00	Proofpoint
While compliance dates for various HIPAA rules have past, many healthcare related organizations are still in process with respect to full Security Rule compliance. In this Proofpoint on-demand webinar Proofpoint security expert Sean Wilcox and HIPAA security expert, Barry Johnson from IGXGlobal, discuss how organizations can maintain the privacy and security of electronic protected health information (ePHI) over e-communications (i.e., SMTP, HTTP and FTP protocols). View this webinar from Proofpoint to learn: How to quickly assess the risk of ePHI leaving your organization over e-communications. How to accurately detect and differentiate between ePHI and "de-identified" health information. Top technical requirements for effectively enforcing your policy and complying with the HIPAA Security Rule. Lessons learned from real implementationsfrom risk assessment to automated policy enforcement.

What's important from our sponsors

Webcast:
Increase Your Bottom Line with Network Intelligence

Date: Thurs, 4th Dec
Time:
1:30pm (HKG/SGP)
11:00am (India)

Register now to attend this live webcast and learn how network intelligence acts as an enabler for service improvements in mature network environments.

Featured Speakers

Eamon O�Grady
Senior Director, Product Management
Oracle Communications

Elisabeth Rainge
Program Director, Network Software
IDC

Sign up now to learn how you can increase your bottom line with Network Intelligence.

Sponsored by

Cutting-edge technology from premium sponsors

Protect your business critical systems with NEC ExpressCluster

ExpressCluster enables:
Disaster Recovery
High Availability
Data Protection

Read how SESMI, a leading semiconductor product manufacturer, maintains its 24x7 operations.

Read how Syscom USA has achieved up to 99.999% continuous uptime, while maintaining a lower total cost of ownership.

Click here for more ExpressCluster resources »

Brought to you by:

More Tech Showcases:

Oracle Technology
NEC ExpressCluster

Oracle Live Webcast
Increase Your Bottom Line with Network Intelligence

HP StorageWorks 2000sa Modular Smart Array
Enabling easy transition from direct attached to centralized storage.

Six Priorities for Today�s Economic Climate
Learn how to reduce costs and achieve maximum value from IT.

Give Your Business the Competitive Edge
With the industry's most connected business intelligence solution.

Protect Your Business Critical Systems
With award-winning disaster recovery solutions by NEC.

Free IT Salary Report 2009
Register and be the first to download this invaluable resource

IT Priorities 2008/09

Find out the top concerns of CIOs / IT managers in Asia-Pacific

Implementation of IT a top concern

CIOs have business on their minds

Asia worried about insider threat

More from CBS Interactive

CBS Interactive Inc Sites

About ZDNet Asia |

About CBS Interactive |

ZDNet Asia editorial calendar |

Advertise with us |

Jobs |

Partnership |

Contact Us |

CNET Direct |

CNET Asia |

CNET Asia mobile |

Sitemap

ZDNet.com |

ZDNet Japan |

ZDNet.de |

CNET UK |

CNET.de |

Tech Republic |

BNET |

MP3.com |

activeTechPros |

ZDNet UK |

ZDNet Korea |

ZDNet France |

CNET Australia |

CNET France |

Download.com |

Builder |

GameSpot

ZDNet Australia |

ZDNet Taiwan |

CNET |

CNET Taiwan |

News.com |

Silicon.com |

TV.com |

GameSpot Korea

News | Insight | Reviews | TechGuides | Jobs | Blogs | Videos | Community | Downloads | IT Library |

Get RSS feeds

Security

Featured Whitepapers

Member Login

Webcast:

Increase Your Bottom Line with Network Intelligence

Featured Speakers

Eamon O�Grady

Elisabeth Rainge

Protect your business critical systems with NEC ExpressCluster

IT Priorities 2008/09