Member Login

E-mail:    Password:  




 TitleDate AddedCompany
whitepaper PA-DSS Compliance and Commerce Toolkit for Applications2009-07-21 IP Commerce
  In 2004, the payment card brands aligned their individual cardholder data protection programs to create the Payment Card Industry Data Security Standard (PCI DSS) This alignment in standards provides an industry-wide framework that forms the basis of each association's individual security programs The objective of the individual programs is to compel merchants and payment service providers to enact measures that protect cardholder information. The goal of the PCI DSS is to specify the security controls required to protect cardholder data in the transaction-processing environment from end-to-end.

Tags: Security Administration, Data Tools		   
whitepaper Sustaining SOX Compliance: Best Practices to Mitigate Risk, Automate Compliance, and Reduce Costs2009-07-20 Tripwire
  To successfully sustain SOX compliance, organizations must implement best practices to ensure IT systems not only achieve a known and trusted state but they also maintain that state. Management must be more accountable and aware of the need for a continuous and proactive operational risk management environment that recognizes the links between its technology infrastructure, business processes, reputation, compliance, and internal controls.

It is vital that Tripwire configuration audit and control solutions are used as an integral element of sustained compliance initiatives. Learn how in this Tripwire whitepaper.

Tags: IT Infrastructure, Security Administration, IT Budgeting		   
whitepaper Get the facts about credit card security and PCI compliance2009-07-17 IBM
  There's no way around it. No matter what size your business is or what industry you work in, if you accept credit cards, you must adhere to the safeguards mandated by the Payment Card Industry Data Security Standard—referred to as the PCI DSS. Learn how to make sure you're compliant with this checklist of requirements.

Tags: Security Administration, Wholesale - Retail, Wholesale - Retail, Data Tools		   
whitepaper Fine-Tuning IT Processes Was a Sound Decision for This Electronics Retailer2009-07-14 Tripwire
  The challenge was to develop better controls for audits and daily operations, to strengthen oversight of change and configuration processes and to improve ability to remediate problems faster. Tripwire Enterprise enabled IT to easily prove to PCI assessors their change processes are under control. Continuous file integrity monitoring and automated change audit trails provide a single point of command and control for the entire data center. Plus, Tripwire's reporting capabilities present change activity in context allowing staff to proactively pinpoint problems resulting from unplanned change to ensure services remain at their highest levels of availability and quality.

Tags: Security Administration		   
whitepaper Chip and PIN and the PCI Data Security Standard2009-07-13 RSM McGladrey
  Chip and PIN is a British government-backed initiative to implement the Europay, MasterCard and Visa (EMV) standard for credit cards with a built-in Integrated Circuit (IC), also known as IC Cards or Chip and PIN. The purpose of Chip and PIN was to reduce the amount of fraud in face-to-face credit card transactions. Chip and PIN is a worldwide standard that has been extensively implemented in Canada and Europe, but has not been introduced into the United States or most of the Far East. With the exception of Discover Financial, all of the other major card brands (Visa, MasterCard, JCB and American Express) have adopted various forms of the Chip and PIN technology. The purpose of this paper is to explain the issues with Chip and PIN credit cards and their compliance with the PCI Data Security Standard.

Tags: Data Tools		   
whitepaper Product Capability Assurance Report Payment Card Industry Data Security Standard v.1.22009-07-07 Fortinet
  This paper helps both merchants and QSAs by identifying where a specific product or family of products has the capability to satisfy or help to satisfy one or more of the individual PCI DSS requirements. Armed with this information, merchants and QSAs can better determine where additional products or compensatory controls may be required.

Tags: Security Administration, Data Tools		   
whitepaper The Dutch National Ombudsman Secures Systems With Fingerprint Recognition and Single Sign-On2009-07-01 Oracle
  The Dutch National Ombudsman wanted to improve desktop security for all employees and data related to the handling of complaints and increase the ease of use for frequently used applications, like the agency's dossier registration system, by eliminating the need for users to log in for each application. The challenge was to facilitate compliance with strict rules and regulations relating to authentication and reduce costs by minimizing the number of password-related queries to the help desk. The Dutch National Ombudsman implemented Oracle Enterprise Single Sign-On Suite and fingerprint recognition in collaboration with Oracle Partner The Authentication Company, enabling 140 users to securely login to their Windows systems.

Tags: Security Administration		   
whitepaper HP Workstations Power Leading-Edge Neurosurgery Systems2009-07-01 Hewlett-Packard (HP)
  Integra NeuroSciences wanted to provide robust, stable processing capability to support image-guided surgery and radiosurgery systems. Integra NeuroSciences has chosen HP Workstations for more than 12 years, most recently using the HP xw6x00 series Workstations. This resulted in highly stable platform reduces risk of equipment failure during a procedure and backward compatibility of hardware facilitates continuing FDA compliance.

Tags: Security Administration		   
whitepaper Follett Protects Customer Data and Complies With PCI DSS With Thales2009-07-01 Thales
  The Follett Higher Education Group (FHEG) sells more than 20 million textbooks annually in stores and online, and it operates more than 700 campus book stores for colleges and universities. Since it began operating stores and taking credit cards, FHEG has taken protecting its customers' privacy seriously. To protect customer data the company has a longstanding practice of encrypting customer payment data. Encrypting data and subsequently decrypting data required following and documenting a time-consuming manual encryption key management and storage procedure, as required by PCI DSS 3.6.3. FHEG decided to transition to using Hardware Security Modules (HSMs) from Thales's nCipher product line instead of manually tracking encryption keys.

Tags: Security Administration		   
whitepaper Network Security & Compliance: How They Drive Quality of Care2009-07-01 WatchGuard Technologies
  This paper examines events that are driving the demand for increased security of Protected Health Information (PHI) within the healthcare industry. In it, it reviews new laws, enhanced HIPAA mandates, increased enforcement activities, and new security guidelines from the Department of Health and Human Services (HHS). It also describes how WatchGuard solutions can help one to create a day-to-day culture of proactive and real-time information security throughout organization and infrastructure. Its goal is to provide a forward-looking perspective on how thoroughly securing all Personal Health Information (PHI) and leveraging the right technology can reduce the cost of security and compliance efforts.

Tags: Security Administration, Security Administration