Member Login

E-mail:    Password:  




 TitleDate AddedCompany
whitepaper Achieving Efficient Governance Risk and Compliance through Process and Automation2009-10-01 Epicor Software
  This white paper presents a low risk, high impact approach to gaining control of regulatory compliance. The procedures, tasks, and behaviors that bear upon compliance can be overwhelming. Yet organizations that can master these activities, operate more efficiently, compete more effectively, and build their brands. Learn how Governance, Risk, and Compliance technologies can help by downloading this white paper now.

Tags: Security Administration, Security Administration, IT Budgeting, Regulatory Compliance		   
whitepaper HIPAA Security Provisions: Is Your Network Ready for a Physical?2009-10-01 Tripwire
  The security-focused Health Insurance Portability and Accountability Act (HIPAA) federal regulation became effective April 2005, requiring many companies to review the health of their systems that create, receive, transmit or maintain health information. If your company is subject to HIPAA, is it prepared to meet the requirements of the Security Rule? This paper details:
  • The who, what, and why of HIPAA
  • Security requirements under the HIPAA Statute, Privacy Rule, and Security Rule
  • Deadlines, penalties, and sanctions for noncompliance
  • HIPAA Security Rule Standards
  • How to maintain network health through independent configuration auditing


Tags: Security Administration, Security Administration, Regulatory Compliance		   
whitepaper Business Ready Security Video2009-09-22 Microsoft
  This video excerpt discusses the future direction and trends of enterprise security. The speaker discusses the importance of security as a primary business activity that must be embraced by business leaders to enable organizational success, while safeguarding the enterprise.

Tags: Security Administration, Security Administration, Security Administration, Security Administration		   
whitepaper Tripwire Passes Blackboard's Configuration Control Test2009-09-19 Tripwire
  Blackboard is a leading provider of e-Learning enterprise software applications, campus commerce systems, and related services to educational organizations. The challenge was to track configuration changes across mission-critical infrastructure, to implement automated detective controls to support IT security and compliance strategies and to increase maturity of change management and compliance practices to meet business growth demands. Tripwire Enterprise provides a single point of control for all change occurring across distributed IT infrastructure, encompassing servers, network devices, firewalls, and desktops. Tripwire enables an automated method for monitoring change and continuously alerts IT staff to change issues requiring further investigation. Customizable reports provide documentation for reviewing and enforcing change and security controls and quickly adapt to ever-complex and growing systems.

Tags: Security Administration		   
whitepaper Using Configuration Control to Meet Compliance and Improve Operations2009-09-19 Tripwire
  CAPITAL Card Services, Inc. is a leading servicer of MasterCard and Visa accounts for financial and non-financial institutions nationwide. The challenge was to become compliant with various regulations, including PCI, to increase and enforce change management processes and discipline and to reduce unplanned work. Tripwire Enterprise provides configuration control to ensure automated continuous compliance across IT systems. It detects unauthorized, non-compliant change and alerts IT staff so that problems can immediately be identified and fixed, reducing firefighting and improving efficiencies.

Tags: Security Administration		   
whitepaper Tripwire Proves Configuration Control Is a Best Seller With Auditors and IT2009-09-19 Tripwire
  Since 1995, MarketLive, Inc. has focused exclusively on providing enterprise-class e-commerce retail technology and services that help mid-sized businesses successfully sell goods and services online. The challenge was to deliver a single PCI compliant solution that serves all clients, to improve change control processes and to reduce unplanned work caused by inefficient operations. Tripwire Enterprise provides configuration control for file servers and databases that meets the needs of PCI compliance and provides auditors with comprehensive reports that prove risk control. With Tripwire's visibility of change for servers and databases, changes that are in exception to policy are escalated for investigation, eliminating time-consuming and error-prone rebuilds.

Tags: Security Administration, IT Budgeting		   
whitepaper Tripwire Rings Up Compliance and Fuels Efficiency for This Busy Regional Company2009-09-19 Tripwire
  Starting as a refinery outlet in 1952, Wesco has grown to a regional company that includes wholesale energy division, filling stations, convenience stores, distribution center, training facility and bakery. The challenge was to become PCI compliant with minimal impact to IT staff, to increase and enforce change management processes and discipline and to reduce unplanned work. Tripwire Enterprise's configuration control solution specifically addresses many PCI requirements and provides auditors with comprehensive reports that prove effective risk control. Tripwire detects and documents all changes so that IT staff can quickly troubleshoot any service incident, and return systems to a known state.

Tags: Security Administration, IT Budgeting		   
whitepaper What Is the Payment Card Industry Data Security Standard (PCI DSS)?2009-09-16 Kreck Design Solutions
  The processor typically sends out one or more letters, and follows up with phone calls. In the authors interviews with merchants, they usually tell the processor as little as possible. The processor shares the desire to get the task completed as quickly as possible. As a result, the merchants often do not understand exactly what is being asked of them, how far out of compliance they may be, or what the consequences could be by "Fibbing." Those asking questions often implied the "Right" answer... for example a question one has heard several times is: "One doesn't store credit cards does one?"

Tags: Security Administration		   
whitepaper Regulatory Compliance: Protecting PCI Systems and Data2009-09-15 CoreTrace
  The Payment Card Industry (PCI) computer systems are continually under attack due to the importance of the information they protect. In response to this threat, the PCI has produced an excellent series of process and security tool requirements known as the Data Security Standard (DSS). The DSS identifies a series of principles and accompanying requirements that are critical to the integrity of the industry's computer systems. The standard takes a multi-faceted approach to protecting payment card information to include securing the systems the data resides within, controlling access to the systems and cardholder data, and protecting the cardholder data itself.

Tags: Data Tools		   
whitepaper Adapting to a New Future: Impact of the Credit CARD Act of 2009 on Financial Institutions2009-09-12 Ernst & Young
  Consistent with the current government focus on enhancing consumer protection, the Credit Card Accountability Responsibility and Disclosure Act of 2009 (Credit CARD Act of 2009) brings sea changes to the credit card industry. Forward-looking financial services institutions are viewing these shifts not as a reactive compliance and operational exercise, but more broadly in anticipation of additional regulatory change. These firms are approaching the situation as a call to examine and improve businesses processes across the enterprise while considering the future business model for credit card lending as a whole.

Tags: Security Administration