Security Standards - IT Library : ZDNet Asia

Case Studies

Vendor Webcast

Show all content

Title Date Added Company

Payment Card Industry (PCI) Data Security Standard: Navigating PCI DSS 2008-02-01 PCI Security Standards Council

This paper describes the 12 Payment Card Industry Data Security Standard (PCI DSS) requirements, along with guidance to explain the intent of each requirement. PCI DSS requirements apply to all system components that are included in or connected to the cardholder data environment. The cardholder data environment is that part of the network that possesses cardholder data or sensitive authentication data, including network components, servers and applications.

Tags: Data Recovery - Security

Benchmarking IT Risk and Compliance 2008-01-31 Symantec

IT Risk and Compliance are critical issues for Senior IT Managers today. Two areas of focus will be presented beginning with the results of Symantec's IT Risk Management Report. This webcast addresses persistent myths about IT Risk and suggests ways to dispel each. The presenter will cover research conducted by the IT Policy Compliance Group, a joint research initiative between Symantec, ISACA, CSI and others. This research delves deeper into the intimate relationship between compliance and risk. Included are best practices extracted from industry research and survey respondents.

Tags: Cost Control - Risk Mgmt., Best Practices

Microsoft FDCC Webcast Series: Do It Right: Log in as Normal User 2008-01-30 Microsoft

FDCC requires that the typical user run as Normal User whenever possible; without this, a managed environment is practically impossible. For organizations that have given Local Administrator rights to their users all along, this is a serious change in policy, and one that often alarms Users, Developers, and even Administrators. This webcast provides information on how to propose and implement the switch to performing daily tasks logged in with User, not Administrator rights. It will cover what running as User means in Vista and XP, typical impacts, Necessary preparations and educational moves to make, Special cases for Developers, Power Users, and Administrators and Real world cases and examples of how they handled it.

Tags: Security Management

Tripwire PCI DSS Solutions: Automated, Continuous Compliance 2008-01-24 Tripwire

The major credit card companies collaboratively developed the Payment Card Industry Data Security Standard (PCI DSS) to protect sensitive cardholder account data from theft and fraud. Compliance is no longer an option; it's a requirement for all payment card network members and failure to meet requirements can result in monetary penalties or even the suspension or revocation of a company's right to accept or process credit card transactions. Fortunately, these standards amount to best practices that keep the systems, hardware, and data secure - critical for maintaining customer trust and the reputation. That's why it is so important to keep IT systems in a known and trusted state.

Tags: Security Management

Pragma Systems: Using SSH for PCI Compliance 2008-01-18 Pragma Systems

The objective of this paper is to examine the federal and industry regulatory environment and to analyze the benefits of utilizing Secure Shell (SSH) in achieving PCI compliance. In addition, to review the role Pragma Systems, Inc. and its FortressSSH product can play in a robust, secure computing environment. In the wake of the first Sept. 30, 2007, Payment Card Industry (PCI) deadline for locking down networks and customer data, it's clear many companies - and more than half of smaller organizations - still fall short of prescribed security standards. As a result, the majority of Telnet-dependent companies are now scrambling to find cost-effective solutions for effecting full compliance with PCI Data Security Standards (PCI DSS).

Tags: Security Management

Microsoft FDCC Webcast Series: FIPS Challenges 2008-01-17 Microsoft Tips

FIPS 140-1 and FIPS 140-2 is required by law, and FDCC consequently enables this policy. However, turning this setting on causes certain issues, especially with HTTPS web sites and certain applications that encrypt and do not meet FIPS requirements. There is a lot of confusion around this, with FIPS being blamed for many application compatibility issues. This webcast will define FIPS; outline common problems when the FIPS is enabled; give examples of how to handle many FIPS issues; and provide basic information on how to report non-FIPS compliant web sites and applications to NIST for review.

Tags: Best Practices

Improving Compliance and Efficiency With Sun Identity Auditing and Other Sun Identity Management Capabilities 2008-01-01 Sun Microsystems

Faced with increasing compliance requirements and related challenges since the passage of the Sarbanes-Oxley Act of 2002 and other regulations governing data integrity and privacy, Sun and its alliance partner Deloitte & Touche LLP (Deloitte & Touche) deployed Sun Java System Identity Manager and Java System Identity Auditor software to improve Sun's processes related to user account management and access controls and to achieve operational efficiencies. This paper recounts the process from solution criteria and selection through planning and deployment, and describes the benefits that have resulted for both Sun and its customers.

Tags: Security Management

Microsoft Security Solutions: Partner Pathway to Business Performance 2008-01-01 IDG (International Data Group)

Information Technology (IT) is penetrating more and more aspects of both business life and personal life. Expanded IT is resulting in a need for broader and more comprehensive security solutions, which in turn is impacting the overall economics of IT solution providers. Growth markets such as small to midsize enterprises are demanding simple, easy-to-use, and affordable products, leading to higher volumes but thinner margins. Security solution providers therefore are taking a comprehensive view of business performance, including business velocity, cost management, operational excellence, and bottom-line profitability. As an important vendor of security products, including the Forefront line of business security products, Microsoft recognizes the significance to its partners of continuing to make money in this changing industry.

Tags: Security Management

PCI Compliance Cost Analysis: A Justified Expense 2007-12-12 Solidcore Systems

The Payment Card Industry Data Security Standard (PCI-DSS) was created by the credit card companies and is intended to protect cardholder data wherever it resides, ensuring that merchants and service providers maintain the highest degree of information security for their customers. While the standard is meant to have a positive impact on merchants, consumers and the retail industry, many retailers are still questioning its effectiveness and necessity in light of the high-cost to comply. A recent poll of 201 information technology (IT) and PCI compliance professionals reinforces this point.

How Information Governance and Compliance Pay 2007-12-11 Symantec

Does compliance really pay or is it just a financial drain with no payback? Effective risk, governance and compliance programs pay big financial dividends, many times over. This webcast, based on a research conducted by the IT Policy Compliance Group, focuses on fact-based insight into how improving information governance, risk and compliance, reduces costs, financial risk and the loss of sensitive data.

Tags: Data Recovery - Security, Cost Control - Risk Mgmt.

Jump to 1 [2] 3 4 5 6 7 8 9 10

Title	Date Added	Company
Payment Card Industry (PCI) Data Security Standard: Navigating PCI DSS	2008-02-01	PCI Security Standards Council
This paper describes the 12 Payment Card Industry Data Security Standard (PCI DSS) requirements, along with guidance to explain the intent of each requirement. PCI DSS requirements apply to all system components that are included in or connected to the cardholder data environment. The cardholder data environment is that part of the network that possesses cardholder data or sensitive authentication data, including network components, servers and applications. Tags: Data Recovery - Security
Benchmarking IT Risk and Compliance	2008-01-31	Symantec
IT Risk and Compliance are critical issues for Senior IT Managers today. Two areas of focus will be presented beginning with the results of Symantec's IT Risk Management Report. This webcast addresses persistent myths about IT Risk and suggests ways to dispel each. The presenter will cover research conducted by the IT Policy Compliance Group, a joint research initiative between Symantec, ISACA, CSI and others. This research delves deeper into the intimate relationship between compliance and risk. Included are best practices extracted from industry research and survey respondents. Tags: Cost Control - Risk Mgmt., Best Practices
Microsoft FDCC Webcast Series: Do It Right: Log in as Normal User	2008-01-30	Microsoft
FDCC requires that the typical user run as Normal User whenever possible; without this, a managed environment is practically impossible. For organizations that have given Local Administrator rights to their users all along, this is a serious change in policy, and one that often alarms Users, Developers, and even Administrators. This webcast provides information on how to propose and implement the switch to performing daily tasks logged in with User, not Administrator rights. It will cover what running as User means in Vista and XP, typical impacts, Necessary preparations and educational moves to make, Special cases for Developers, Power Users, and Administrators and Real world cases and examples of how they handled it. Tags: Security Management
Tripwire PCI DSS Solutions: Automated, Continuous Compliance	2008-01-24	Tripwire
The major credit card companies collaboratively developed the Payment Card Industry Data Security Standard (PCI DSS) to protect sensitive cardholder account data from theft and fraud. Compliance is no longer an option; it's a requirement for all payment card network members and failure to meet requirements can result in monetary penalties or even the suspension or revocation of a company's right to accept or process credit card transactions. Fortunately, these standards amount to best practices that keep the systems, hardware, and data secure - critical for maintaining customer trust and the reputation. That's why it is so important to keep IT systems in a known and trusted state. Tags: Security Management
Pragma Systems: Using SSH for PCI Compliance	2008-01-18	Pragma Systems
The objective of this paper is to examine the federal and industry regulatory environment and to analyze the benefits of utilizing Secure Shell (SSH) in achieving PCI compliance. In addition, to review the role Pragma Systems, Inc. and its FortressSSH product can play in a robust, secure computing environment. In the wake of the first Sept. 30, 2007, Payment Card Industry (PCI) deadline for locking down networks and customer data, it's clear many companies - and more than half of smaller organizations - still fall short of prescribed security standards. As a result, the majority of Telnet-dependent companies are now scrambling to find cost-effective solutions for effecting full compliance with PCI Data Security Standards (PCI DSS). Tags: Security Management
Microsoft FDCC Webcast Series: FIPS Challenges	2008-01-17	Microsoft Tips
FIPS 140-1 and FIPS 140-2 is required by law, and FDCC consequently enables this policy. However, turning this setting on causes certain issues, especially with HTTPS web sites and certain applications that encrypt and do not meet FIPS requirements. There is a lot of confusion around this, with FIPS being blamed for many application compatibility issues. This webcast will define FIPS; outline common problems when the FIPS is enabled; give examples of how to handle many FIPS issues; and provide basic information on how to report non-FIPS compliant web sites and applications to NIST for review. Tags: Best Practices
Improving Compliance and Efficiency With Sun Identity Auditing and Other Sun Identity Management Capabilities	2008-01-01	Sun Microsystems
Faced with increasing compliance requirements and related challenges since the passage of the Sarbanes-Oxley Act of 2002 and other regulations governing data integrity and privacy, Sun and its alliance partner Deloitte & Touche LLP (Deloitte & Touche) deployed Sun Java System Identity Manager and Java System Identity Auditor software to improve Sun's processes related to user account management and access controls and to achieve operational efficiencies. This paper recounts the process from solution criteria and selection through planning and deployment, and describes the benefits that have resulted for both Sun and its customers. Tags: Security Management
Microsoft Security Solutions: Partner Pathway to Business Performance	2008-01-01	IDG (International Data Group)
Information Technology (IT) is penetrating more and more aspects of both business life and personal life. Expanded IT is resulting in a need for broader and more comprehensive security solutions, which in turn is impacting the overall economics of IT solution providers. Growth markets such as small to midsize enterprises are demanding simple, easy-to-use, and affordable products, leading to higher volumes but thinner margins. Security solution providers therefore are taking a comprehensive view of business performance, including business velocity, cost management, operational excellence, and bottom-line profitability. As an important vendor of security products, including the Forefront line of business security products, Microsoft recognizes the significance to its partners of continuing to make money in this changing industry. Tags: Security Management
PCI Compliance Cost Analysis: A Justified Expense	2007-12-12	Solidcore Systems
The Payment Card Industry Data Security Standard (PCI-DSS) was created by the credit card companies and is intended to protect cardholder data wherever it resides, ensuring that merchants and service providers maintain the highest degree of information security for their customers. While the standard is meant to have a positive impact on merchants, consumers and the retail industry, many retailers are still questioning its effectiveness and necessity in light of the high-cost to comply. A recent poll of 201 information technology (IT) and PCI compliance professionals reinforces this point.
How Information Governance and Compliance Pay	2007-12-11	Symantec
Does compliance really pay or is it just a financial drain with no payback? Effective risk, governance and compliance programs pay big financial dividends, many times over. This webcast, based on a research conducted by the IT Policy Compliance Group, focuses on fact-based insight into how improving information governance, risk and compliance, reduces costs, financial risk and the loss of sensitive data. Tags: Data Recovery - Security, Cost Control - Risk Mgmt.

Security

Featured Whitepapers

Member Login

Webcast: Maximizing Data Protection with Disk-Based Backup

HP Simply StorageWorks D2D Backup System

Industry Watch: Healthcare