In this issue of SearchSoftwareQuality.com's Software Testing eZine, we'll discuss a Service Oriented Architecture (SOA) as a new testing environment as well as an Agile software development (ASD) methodology. 

Ensuring a consistent software build throughout an organization is one of the most expensive and time-consuming tasks facing any IT organization. Challenges include not only managing multiple client images for a range of hardware platforms and functional groups, but also meeting licensing and compliance requirements. ImageDirect can help. 

This white paper provides insights into how host intrusion prevention systems deliver business value to enterprises, provide protection against zero-day threats, give IT time to test and deploy patches, and realize IT operational cost savings via centrally managed security and visibility of all endpoint security layers through a single console. 

Read this chapter from "HOWTO Secure and Audit Oracle 10g and 11g" (CRC Press, 2009) and learn how to secure Oracle by checking for weak passwords, configuring failed login policies, preventing DoS attacks with resource limits, and auditing user profiles. 

Read this E-Guide to learn about an alternative to traditional antimalware testing, using your perimeter network security tools. Snyder lays out a step-by-step guide to validate your own malware including where to find sample test viruses, equipment needed, and the channels to test. 

In this expert Pocket E-Guide you will discover the five most common Linux security challenges that are currently overlooked in many of today’s businesses. Discover the pivotal role default installations, maintenance, and system testing play and learn why it is important to test Linux-based systems for vulnerabilities periodically and consistently. 

One of the biggest problems in keeping networks and desktops secure is patch management. Shavlik's solutions simplify patch management through automation, increased visibility, and control. Answer six questions in this quick demo to determine how much time and money you can save when you simplify and automate patch management with Shavlik. 

A lot of terms are thrown around when talking about security and intrusion defense, and it can be confusing when the meanings aren't clear. This Pocket E-Guide cuts through the noise and gives you independent, expert advice from security guru Joel Snyder as he defines these terms in the context of a perimeter intrusion defense strategy. 

There is some confusion in the marketplace about intrusion-security systems. Intrusion Detection Systems and Intrusion Prevention Systems have similar names and tend to get lumped together into a single security category: Intrusion Detection and Prevention. But the capabilities and underlying design of these systems couldn't be more different. 

This June 2009 study examines the financial impact and potential return on investment (ROI) for McAfee Network Security Platform intrusion prevention system (formerly McAfee IntruShield®), using Adena Health System as a case study. 

For organizations trying to shore up network defenses, it's important to understand how the security threat landscape has evolved. Only then is it possible to determine the best use of network-security solutions -- particularly Intrusion Prevention Systems (IPS) -- to block ongoing and future waves of attacks. Read on to learn more. 

A well-run business needs a written IT security policy setting forth the use and administration of IT assets. Read this paper to learn the essentials of defining and implementing a security policy for your organization.