Check out this paper to learn about McAfee Change Control, an operational-friendly, low-touch and low overhead software that can be deployed on a wide range of hardware platforms. McAfee Change Control provides change control on servers, network devices (including switches, routers and firewalls), and databases. 

Massachusetts has taken the lead in passing a new regulation - 201 CMR 17:00 -that requires companies to implement a comprehensive data security plan that includes encryption. This article discusses some aspects of this regulation and offers suggestions on how data security best practices can help with compliance. 

Join us for a discussion with Tommy Thompson, IT Security and Compliance Coordinator at Williams Company and Bob Shapiro, Principal Business Analyst at OpenPages, in which we will uncover strategies for implementing a more effective IT risk and compliance management program. 

Increasingly, corporations are taking control of their e-discovery process and striking a balance between in-house and outsourced resources. This whitepaper is a best practices guide on the mechanics of effectively and efficiently balancing in-house control with outsourced execution. 

Read the "Database Activity Monitoring (DAM)" chapter from "HOWTO Secure and Audit Oracle 10g and 11g" (CRC Press, 2009) and learn how to leverage DAM to prevent SQL injection attacks, monitor privileged users and track access to sensitive data. 

44 states now have privacy laws in force. Combine those with PCI, HIPAA, SOX, etc., and it's difficult to comply with all the laws that apply to your Enterprise. Now we've made it simple. Just take 8 minutes to answer these 8 questions. Then click "submit" to receive your customized report. 

In this paper – first in a three part series - we will examine the difficulties of working with keywords during a matter, the many challenges associated with relying on keyword search, and the cost and risk associated with attempting to “guess” one’s way to a relevant document set. 

This paper, designed for security and compliance professionals, illustrates how to achieve compliance on three of the most costly and complex sections: requirements 3, 6, and 10 of PCI DSS. This paper also highlights how Web application and database appliances can deliver resource effective compliance while maintaining cost efficiency. 

This IDC Vendor Profile evaluates Mimecast, an emerging supplier of email archiving, security, and continuity solutions delivered in a software-as-a-service model. This document discusses the company's history, product offerings, and competitive position in the context of cloud-based storage and security infrastructure services. 

This white paper describes HP Sarbanes-Oxley IT Assessment Accelerator, a template of pre-defined information based on ITGI's COBIT, which is loaded into HP Quality Center to help your organization define and execute Sarbanes-Oxley testing, evaluate the results, and develop remediation plans. 

In 2008, Forrester answered 106 end user inquiries on archiving, including questions on eDiscovery, retention, message archiving, and using archiving to cope with the data growth explosion. This white paper summarizes these answers and explains why it's necessary to retain data for regulatory compliance or legal discovery purposes. 

Records management forces you to think about how you create, process, capture, and manage information. This requires a review of your business activities from an information-centric point of view, which in itself can highlight process inefficiencies. This white paper explains why such a process is important.