In this paper, Microsoft MVP Darren Mar-Elia provides best practices for leveraging native AD auditing. Then, he’ll discuss what auditors and compliance officers look for when it comes to examining your AD environment. He’ll also explore third-party alternatives to native auditing that greatly enhance AD auditing. Read this paper today. 

PCI DSS is mandatory for any business that handles confidential cardholder data. Riverbed® Stingray™ Traffic Manager and Stingray Application Firewall Module help with many parts of the PCI DSS specification, notably the web application firewall (WAF) requirements of section 6.6. 

In this brief white paper, Jeff Martin, Station Casinos’ director of business intelligence (BI), provides specific examples of the types of problems that the company wanted to solve, and offers insight into the specific job scheduling solution it selected to overcome its challenges. 

This paper examines the numerous ways that syslog messages can be used to enhance the secure deployment of an infrastructure of equipment from Cisco®. Syslog can not only be an essential auditing tool for network and administrative events, but also can be an effective troubleshooting tool. 

This white paper discusses the issues associated with decision services in an SOA strategy, highlighting how business rule management systems can be used to overcome these challenges. 

Applied Oracle Security (Oracle Press, 2010) is the definitive guide to safeguarding Oracle Database 11g written by the security experts in Oracle’s National Security Group. This complementary chapter on auditing covers how to audit database activity efficiently, improve security, address regulatory requirements, and automate compliance reporting. 

This white paper outlines today’s challenges and Oracle’s solutions, including Encryption and Masking, Advanced Security, Secure Backup, and Data Masking Pack, Access and Authorization, Vault and Label Security, Auditing and Monitoring and Management pack. 

IT audit is about the formal verification and validation of the quality and effectiveness of ITcontrols to support the overall business control objectives. From a security controlperspective the residual IT security risks are relatively well understood in a networkperimeter protected environment. 

This paper details how organizations are affected by government and industry regulations and explains how to simplify compliance management through well-controlled policy, thoughtful planning and flexible email security solutions. 

This paper examines recent security breaches such as Stuxnet, and offers best practice measures, especially for the Windows platform, that can help to safeguard private keys so that your company doesn't become tools of malicious hackers. 

Accounting for corporate actions accurately is one of the biggest challenges for investment managers, with significant portfolio valuation, performance and tax implications for investors. And its only going to get more challenging due to reporting requirements and mounting activity. Learn how to get a handle on the 5 most common corporate actions. 

Like the idea of cloud computing but seek a provider that supports the applications you already have? How can you be sure you get the needed security with an external cloud? Learn how IT organizations can extend their virtualized environment to the secure Enterprise Cloud to improve business agility, ensure security and manage costs. 

As applications become more accessible though the web, cloud and mobile devices, they are extending beyond perimeter defences, leaving them and your sensitive data at risk. Discover a proactive approach to eliminating risk in software and explore how you can gain comprehensive security and meet your most essential software security objectives.