Register for this webcast, and then tune in to learn how to get started preparing for this Massachusetts law that may well be indicative of a legislative trend in other states. 

Massachusetts has taken the lead in passing a new regulation - 201 CMR 17:00 -that requires companies to implement a comprehensive data security plan that includes encryption. This article discusses some aspects of this regulation and offers suggestions on how data security best practices can help with compliance. 

This collection of slides from the Information Security Decisions Conference provides some insight into some of the new regulations and recent changes in existing regulations. The slides focus on Red Flag Rules, the MA ID theft law, and the NV Data Protection law. Read on to learn how to stay compliant with these new laws and others like them. 

The regulatory environment is constantly changing, so creating a streamlined and flexible program is every security pro's first goal when it comes to compliance. Check out this videocast for best practices on forming a comprehensive compliance program. 

Read this chapter from "HOWTO Secure and Audit Oracle 10g and 11g" (CRC Press, 2009) and learn how to secure Oracle by checking for weak passwords, configuring failed login policies, preventing DoS attacks with resource limits, and auditing user profiles. 

The Secure Messaging solution enables more secure business communications from virtually any location or device, while preventing unauthorized use of confidential information. 

This paper explains how McAfee has developed 15 Minutes to a Secure Business. This unique approach to security management gives IT professionals a roadmap for ensuring a safe and secure IT environment, even with limited time. 

On the surface, virtualized datacenters appear to have all of the same vulnerabilities and security challenges as conventional datacenters. With virtual machines, new challenges minimize the effectiveness of traditional protections. Read on to learn what it takes to secure today’s virtualized data centers. 

The most common approach to securing a web application involves doing a single security test, usually a Web Application Security Assessment, when a development project is completed. While this is still a requirement, this paper discusses why security needs to be incorporated earlier and throughout the software development life cycle (SDLC). 

AppRiver needed a very fast, lightweight antivirus engine that would complement their SecureTide service. After a thorough evaluation process, they found ESET NOD32 Antivirus to be the most reliable and stable platform. It now protects more than 50,000 mailboxes for AppRiver. 

bwin Interactive Entertainment is an online gaming company that needed to quickly become PCI compliant, implement IT policies that would facilitate the company’s rapid growth, and generally ensure that their online offerings are all trustworthy, safe, and secure. Read this case study to learn how Tripwire solutions helped bwin meet all their needs. 

Getting data moved over to a new server is more than merely copying the most recent files and folders to that machine. File security, permissions, shared folders and local groups facilitating access need to be maintained.