CIOs are increasingly approaching information management responsibilities with a risk management lens. This eGuide will look at how to take a strategic approach to risk management and compliance and mitigate operational risks of outsourcing services. Plus, how to define risks, core assets, and establish acceptable levels of risk will be discussed. 

This E-Guide will explain the new changes in Version 1.2 and how the standard will tackle emerging technologies such as cloud computing and virtualization. Specific topics include avoiding audit trouble, wireless encryption, tokenization, and more. 

In this expert E-Guide, learn about 3 actions to take in your organization that improve security beyond the requirements of PCI compliance. Also discover how examining the flow of data in a new way allows you to communicate risks and issues to executive management, often justifying expenses in critical areas such as security and compliance 

This Pocket E-Guide leads you through the compliance workflow process, including specifics on audit preparation. Get tips on when and what type of encryption is the right choice for your organization and find out how to avoid common encryption risks and tradeoffs. Read on to learn more. 

This resource provides IT security professionals with the information needed to understand PCI compliance and specifically, one of the standard's latest requirements, 6.6. In addition, the paper offer tips for successful PCI 6.6 compliance and highlights compliance successes from real-world companies. 

Web 2.0 has radically changed the way information is disseminated and consumed. However, there must be controls in place to create a security balance that prevents serious risks. This Pocket E-Guide reviews the pros and cons of various Web 2.0 strategies for security and compliance. Find out if updating employee usage policies is enough. 

This Shortcut Guide to Virtualization and IT Service Automation provides an insightful overview of virtualization and IT Service Management. It helps demystify virtualization and helps you determine if virtualization is right for your environment. 

IBM has created a pair of complementary views to bridge the communication gap between the business and the technical perspectives of security to enable convergence in thought and process. The IBM Security Framework addresses the business view, and the IBM Security Blueprint addresses the technical view. 

This guide describes seven typical mistakes of IT security compliance and how you can use these lessons to help your organization achieve its compliance goals. 

Read this expert E-Guide and learn what CISOs said were their biggest challenges of 2008 and what lies ahead for 2009. Topics covered include the 4 pillars of an information security strategy and how to make security decisions in a way that business units will have added value and can be integrated smoothly along with other enterprise initiatives. 

Protecting messaging services is an important part of any business messaging strategy. Vulnerabilities abound when you allow messaging traffic for delivery over the Internet. The scope of this guide will focus on email security although many of these concepts will also apply to other types of messaging. 

Read this solution guide for suggestions on how to get the most out of implementing application control in your network. After discussing the expanding applications frontier and its impact on an enterprise, the paper defines application control and reviews the requirements it must meet. 

A 2007 report conducted by the Economist Intelligence Unit (EIU) found that nine out of ten corporate executives admit to making important decisions on the basis of inadequate information. This whitepaper will discuss what information visibility can do for your organization as well as the three critical strategic areas of business decision making.