Change management: Information security professionals have been known to cringe when they hear these words. But the change management process doesn't have to be as complicated as it might seem. 

There is some confusion in the marketplace about intrusion-security systems. Intrusion Detection Systems and Intrusion Prevention Systems have similar names and tend to get lumped together into a single security category: Intrusion Detection and Prevention. But the capabilities and underlying design of these systems couldn't be more different. 

Read this paper for an in-depth discussion of malware identification, naming and classification and an exploration of the most useful ways for administrators to detect and analyze threats. 

This paper examines arguments for and against security awareness training and education, approaches to integrating social approaches to security, and user-friendly approaches to teaching computer hygiene to mixed audiences. 

This report is the second part of a February 2008 study comparing the performances of leading anti-virus solutions. Each product was tested using their best possible detection settings in identical environments. The report breaks down the results into several categories including speed, false positives and on-demand detection of virus/malware. 

The purpose of this whitepaper is to describe best practices for securing IBM System i/i-Series/AS400 systems and detail the AS400 monitoring service provided by SecureWorks. 

Read the white paper that shows how IBM Tivoli solutions help address the demands of broad-based commitments in terms of people, time and technology resources required to meet Payment Card Industry (PCI) Data Security Standard (DSS). 

Learn how to successfully safeguard your enterprise and manage the burden of compliance with Kristin Lovejoy, Director, IBM Corporate Security Strategy and Scott Crawford of analyst firm EMA. This webcast discusses how to protect company data and meet compliance needs on a restricted budget. 

Listen to this podcast, featuring Richard Mackey, for tips on managing third-party risk, specifically for compliance. Learn how to choose the right partners and ensure they apply the same standards as your organization when securing your assets. 

The business of managing and securing endpoints is in serious need of an overhaul. You can no longer count on antivirus and antispyware programs that were written for Windows 95 to defend against modern threats. Read this white paper to learn about solutions that take a new look at modern technology, modern threats, and modern business reality. 

This collection of slides from the Information Security Decisions Conference presents a practical 5 step plan toward achieving greater standards of database security and compliance. These steps consist of discovering, securing, monitoring, protecting and managing your databases. Download the slides to learn more. 

With increasingly strict regulations, organizations must secure confidential information against accidental or intentional loss. Beyond the financial risk and legal exposure, there's also the serious threat to your organization's public reputation to consider. Discover how to plug your data leaks by downloading the 10 step guide to Easy DLP. 

This collection of slides from the Information Security Decisions Conference provides some insight into some of the new regulations and recent changes in existing regulations. The slides focus on Red Flag Rules, the MA ID theft law, and the NV Data Protection law. Read on to learn how to stay compliant with these new laws and others like them.