IT Security is a field of computer science concerned with the control of risks related to computer use. The means traditionally taken to realize this objective is to attempt to create a secure computing platform, designed so that agents (users or programs) can only perform actions that have been allowed. This involves specifying and implementing a security policy. The actions in question can be reduced to operations of access, modification and deletion.
Web Services are emerging as the preeminent method for program-to-program communication across corporate networks as well as the Internet. Securing web Services has been a challenge until recently, as typical Web authentication and authorization techniques employed browser-to-server architectures (not program-to-program). This resulted in user identity ending at the Web Application Server, forcing the Web Services Provider to trust blindly that the Web Services Requester had established identity and trust with the end user. Download Now
Information technology (IT) security is indispensable to an organization's ability to conduct business and achieve its objectives. Security requirements affect almost every business process and system, and successful security measures help protect a business’ brand value, stakeholder confidence, risk management strategies, and compliance status. Requirements vary among industries, geographies, and regions, but the need to protect privacy, retain important data, and facilitate e-discovery are common to all. This paper provides an overview of the regulatory landscape and identifies steps to take for defining a flexible compliance strategy. Download Now
Does your business need to safeguard information, keep auditors and regulators satisfied, and improve data quality? Data governance is the answer. This informative video outlines the latest challenges and best practices in data governance. IBM data governance solutions help businesses with:• Audit and reporting • Data architecture/infrastructure • Data quality • Information lifecyle management • Metadata/business glossaries • Organizational design/development • Policy/risk management • Security/privacy/compliance • Stewardship/value creation Download Now
The realities of security and compliance have changed considerably since patch management faced its first big paradigm shift some years ago. At that time many organizations wrestled with the transition from manual patching and remediation to an automated process. Of course, nothing in security is ever static, so it is no surprise that patch management has continued to evolve since then. Though still automated, today’s best patch management tools and techniques are significantly different from their predecessors. In this whitepaper, Lumension Security’s Matt Mosher, Senior Vice President of the Americas, gives an historical perspective on how this evolution unfolded and why it is important for organizations to evolve their patch management technology in order to remain on top of increasing security attacks. Download Now
Choosing a solution for Vulnerability Management (VM) is a critical step toward protecting your organization’s network and data. Without proven, automated technology for precise detection and remediation, no network can withstand the daily onslaught of new vulnerabilities that threaten security.
Whether protecting five servers or 5,000, measuring the security status of your infrastructure and your organization's ability to rapidly mitigate emerging threats needs to be continuously monitored and measured. This paper details the essential aspects of putting into place a measurable and sustainable vulnerability management program. Download Now
Linux reliability has come of age. Several major Linux distributions including Novell SUSE, Red Hat Enterprise Linux and Ubuntu scored high in reliability, improved over 2006 uptime statistics and achieved near parity with Unix distributions. Security incidents plagued Windows Server 2003, which saw uptime decrease by roughly 10% during last year. Corporations must continue to adhere to best practices in configuration, management and security to ensure optimal server operating system and application reliability. Download Now
Find out the seven reasons to adopt SaaS security from Industry experts and see how Service subscription takes the headache out of email and Web threat management.
Mounting an effective defense against spam requires detection techniques that can evolve as quickly as the attacks themselves. Without the ability to automatically adapt to detect new types of threats, an anti-spam solution will always be a step behind the spammers. Proofpoint MLX™ technology leverages the latest machine learning techniques to provide a revolutionary spam detection system that analyzes millions of messages to automatically adjust its detection algorithms to identify even the newest spam attacks without manual tuning or administrator intervention. Download Now
After a sharp drop in November 2008, spam volume has quickly returned to previous highs. Many organizations saw a 30% to 40% increase in spam during the first weeks of 2009. This rapid influx of unwanted email is once again making spam filter effectiveness, connection management and capacity planning issues "top of mind" for enterprise IT departments. Learn more today!
Email: It’s your most important business communication tool, but also the most risky. Increasing mail volumes and larger attachments drive the need for more mail servers, more storage and more resources to manage them. And concerns about confidentiality, compliance and data privacy are putting increased focus on outbound email. Meanwhile, the time and costs required to manage email are chipping away at your IT budget. But advances in cloud computing and SaaS hold the key to maximizing your ROI, while providing the anti-spam, anti-virus, DLP, archiving and encryption features you need to meet today’s email security challenges. Learn how “in the cloud” email security solutions can greatly reduce up-front investments, minimize ongoing administration costs and minimize time-to-value. Download Now
The essential notion of Role-Based Access Control (RBAC) for IT security administration is establishing permissions based on the functional roles within the enterprise, and then assigning users to a role or set of roles. Download Now
Mobile working has transformed the business world, stimulating innovation, improving productivity and creating new opportunities. Industry analyst estimates suggest the mobile workforce could exceed 800 million in 2009. These workers can spend as much as 40% of their time away from their desk, complicating their communication needs and draining productivity. As businesses look to do more and encourage the best from their workforce, flexible, on-demand access to information has become a requirement. Download Now
"Time is money. You can't do business if you can't access your applications. I won't settle for anything less than 99.99% application availability." Steven Sommer, veteran CIO/CTO There is no aspect more critical to a business than the ability of its end users, customers, business partners and suppliers to have high availability access the corporate applications. If applications are unavailable, business ceases. And corporations know it. Download Now
This whitepaper discusses how creating a secure access control infrastructure in heterogeneous Unix/Linux environments supports the Payment Card Industry Data Security Standard (PCI DSS). Symark PowerBroker controls access to systems and cardholder data, and creates comprehensive logs and audit trails. Various tables show PowerBroker’s functionality mapped to the PCI DSS requirements. Download Now
This Ponemon Institute whitepaper examines the behavior of non-IT employees when it comes to encryption policy. It shows that many employees may not be taking the most basic precautions to secure their company laptop. Download Now
Grant Thornton needed to streamline IT asset management and reduce asset drift across 49 offices. The company used Computrace by Absolute Software to recover and wipe data from laptops before end-of-lease. With Computrace, the company has reduced costs by increasing asset visibility to 100%. Download Now
With an electronic health record system spanning 11 hospitals, Allina required a way to protect 2,700 laptops. Using Computrace, Allina has improved tracking from 30% to over 95% of computers outside facilities, and has averted several possible data breaches. Download Now
In tough economic times, with tightened budgets and heightened competition, it's vital for businesses to secure their systems and data against a growing field of threats. However, implementing and maintaining full-spectrum protection can be a heavy drain on financial and human resources if not done right. This white paper discusses how efficiencies in security can free up both human and physical resources to become a more flexible and profitable operation. Download Now
In this webinar, learn how you can track mobile computers to improve inventory management, software license compliance and data security. Featuring the IT asset management specialist of a major insurance group, this webinar discusses the business value of internet-based tracking. Download Now
The combination of Absolute's SaaS-based computer tracking and Intel's hardware-based Anti-Theft technology gives you an unprecedented level of theft deterrence and data defense. Find out how you can remotely delete data and disable stolen computers – online, offline and anywhere in the world. Download Now
This overview shows how Absolute Software helps you centrally manage computers and mobile devices through a single web-based interface. Learn how you can simplify inventory management, identify computers that are lost or stolen and protect data with anti-theft capabilities. Download Now
According to Forrester, organizations spent $1.5 trillion globally managing IT last year. 75% of this was spent on silos, legacy systems that still don't get answers to the most important questions: troubleshooting outages, investigating security incidents, and demonstrating compliance. Learn about the innovative software product forward-thinking organizations are using to dramatically improve their productivity and change the way they manage and secure IT. Download Now
Compliance is high on the IT agenda today, yet no one seems to have a clear picture of what it really involves. Inconsistent interpretation by different auditors, regulators and vendors means what worked in one year's audit could fail in the next. This whitepaper is designed to help Demystify Compliance as it relates to IT and give you some simple recipes for analyzing your own environment in the light of specific mandates. Download Now
Organizations considering moving to an endpoint security solution often assume that the costs of switching from their current anti-virus vendor will be greater than upgrading with that vendor. This study, conducted by Hobson & Company and commissioned by Sophos, aims to uncover and quantify all the cost areas involved in migrating (upgrading or replacing) to an endpoint security product and managing the solution to gain a total cost of ownership (TCO) comparison between the leaders in the field. Download Now
