This whitepaper examines two areas of technical controls required by the PCI DSS relevant to configuration and change, which help security practitioners prevent breaches and get out from the PCI DSS checklist false sense of security. 

PCI DSS is an opportunity for security professionals to leverage compliance initiatives to improve security and risk management. The podcast illustrates how organizations must go beyond 'checklist' compliance to improve security and IT efficiency - through automation, prioritization, and focused attention on the most critical issues. 

Data--Protect critical information anywhere it goes. Implementing data protection products and processes can be daunting. Make the right decisions by exploring what is available and what makes sense for your organization. Use this simple guide to evaluate different vendor offerings. 

We are beginning to see the next generation of backup and recovery solutions appear. New data protection solutions led by Data Domain’s deduplication architecture are quickly gaining market momentum improving data and application availability while increasing the probability for a business to survive most types of outages. 

Corporate databases are in constant danger. Outside criminals can exploit web applications and employees with malicious intent present an even greater threat. This webcast traces the steps involved in breaking into a database and presents a reference architecture and checklist for implementing iron-clad database security measures. 

PCI DSS is an opportunity for security professionals to leverage compliance initiatives to improve security and risk management. This presentation transcript illustrates how organizations must go beyond “checklist” compliance to improve security and IT efficiency -- through automation, prioritization, and focused attention on the critical issues. 

This issue of information security magazine provides a step-by-step guide to securing database systems, explores the important factors in selecting a SaaS provider, presents a whole new approach to security management that has nothing to do with structure-driven policy architecture, and more. 

This document presents an overview of the Sarbanes-Oxley Act (SOX), Gramm-Leach-Bliley Act (GLB), and Health Insurance Portability & Accountability (HIPAA). It then translates these mandates into identity management requirements and challenges; defines and describes the reference model, and applies the reference model to the mandates. 

The digital infrastructure used by businesses and governments is more sophisticated, more complex and more vital than ever. Read this paper to learn about Security Intelligence and Event Data Warehouse solutions that are purpose-built to address the decision support requirements of security, risk, and compliance operations. 

In this presentation transcript, learn how to ensure your disaster recover (DR) needs are met by your cloud provider. Gain insight into the differences between standard and cloud-based DR approaches and how to incorporate your exiting DR plans. 

This worksheet is intended to function as a checklist of the most important areas to consider when researching a Programmable Logic Controller (PLC). 

This paper was created to help companies searching for a SIM solution narrow their options and determine which technology is the right one for their IT environment and security objectives. 

Participants at industry conferences and events often ask where the right place to start implementing security is. This is similar to starting off a talk with a doctor by asking “What medicine should I take?” The answer is going to be more questions. This article presents three questions to ask yourself before starting a security implementation.