Cisco ASA 5500 Series by Cisco Systems, Inc.. The Cisco® ASA 5500 Series Business Edition is an enterprise-strength comprehensive security solution that combines market-leading firewall and optional content security capabilities, more... >> Discover more offerings from Cisco Systems, Inc..

Best Practices to Protect the Cardholder Data Environment and Achieve PCI Compliance by Rapid7 July 18, 2012 - (Free Research) Cyber-attacks that target customer and financial information are becoming more popular and businesses need to protect their data. Prevent attackers from taking advantage of the gaps in your security plan by creating a comprehensive information security policy.  (WHITE PAPER) READ ABSTRACT |

3 Key Components of a Risk-Based Security Plan by Foundstone, Inc. June 2008 - (Free Research) This whitepaper takes a look at the different components of an effective security plan, and provides a perspective on how enterprises that are serious about their information security budgets should rethink their security plan.  (WHITE PAPER) READ ABSTRACT |

Five Steps to Secure Outsourced Application Development by Veracode, Inc. May 2010 - (Free Research) Application security has become a top concern for security professionals striving to control their company’s overall risk profile. Meanwhile, companies are also saving money by outsourcing more and more custom code creation. This white paper outlines five best practices that enterprises can use to secure their outsourced application development.  (WHITE PAPER) READ ABSTRACT |

State of Software Security Report by Veracode, Inc. February 2011 - (Free Research) The State of Software Security is a semi-annual report that draws on continuously updated information in Veracode’s cloud-based application risk management services platform. Unlike a survey, the data comes from actual code-level analysis of billions of lines of code and thousands of applications.  (WHITE PAPER) READ ABSTRACT |

IT Risk Management: Guide to Software Risk Assessments and Audits by Veracode, Inc. June 2010 - (Free Research) Risk is a function of the likelihood that a potential vulnerability will be exploited, and the resulting impact of that exploitation. In IT systems, risk can be introduced from the internet, servers, networks, malicious insiders, and even lapses in physical security. This whitepaper provides IT risk management best practices.  (WHITE PAPER) READ ABSTRACT |

SAP Upgrade Assessment: Mitigating Risk of Upgrade Projects by HCL Technologies Ltd. June 2008 - (Free Research) This white paper examines the challenges and risks associated with SAP Upgrades and analyze how a SAP Upgrade Assessment could be used as a risk mitigation tool.  (WHITE PAPER) READ ABSTRACT |

Airspace Risk Assessment by AirTight Networks, Inc. August 2008 - (Free Research) This report is the first step towards wireless vulnerability assessment of your network and managing its wireless security posture.  (WHITE PAPER) READ ABSTRACT |

Lumension Vulnerability Scanner Offer by Lumension March 2009 - (Free Research) This network-based scanning utility provides comprehensive visibility into the IT environment through in-depth scans and the automated discovery of all assets, both managed and unmanaged. Scan up to 25 nodes.  (ASSESSMENT TOOL) READ ABSTRACT |

Ethical Hacking and Risk Assessments by Global Knowledge December 2008 - (Free Research) Attend this webcast to learn about risk assessment process and tools used by ethical hackers.  (WEBCAST) READ ABSTRACT |

Control Compliance Suite Trialware by Symantec Corporation April 2009 - (Free Research) Control Compliance Suite Trialware provides end-to-end coverage for the IT compliance lifecycle, including policy management, technical and procedural controls assessment, reporting and remediation. Download this free trial.  (DOWNLOAD)

How to handle requirements for risk assessment methodologies by ComputerWeekly.com November 2010 - (Free Research) Over time, the information security/risk management profession has developed a variety of methods for assessing risk within an organization.  (WHITE PAPER) READ ABSTRACT |

Successfully Mitigating Corporate Risk by AT&T Corp April 2010 - (Free Research) This paper discusses how to help reduce risk and successfully manage your security infrastructure through conducting vulnerability assessments, using discovery tools, adopting centralized policy setting and event correlation, and taking a cohesive approach to updating network equipment.  (WHITE PAPER)

Presentation Transcript: Stuff Happens - How to Assess Risks and Set Objectives for Business Continuity Plans by Marathon Technologies April 2010 - (Free Research) Disaster recovery (DR) plans become more complicated and difficult when businesses try to identify all risk scenarios and assign quantitative value to the likelihood of them happening. This transcript will guide you through the process of determining what needs to be protected within your business data and infrastructure.  (PRESENTATION TRANSCRIPT) READ ABSTRACT |

2010 Endpoint Risk Assessment: Internal Vulnerabilities by Promisec May 2011 - (Free Research) This study will show you the most common security issues that were found and how they were dealt with by the various organizations.  (WHITE PAPER) READ ABSTRACT |

Setting standards in IT Industries by DLT Solutions March 2012 - (Free Research) Building and adhering to security standards are essential for mitigating risk and ensuring adequate IT security. NIST is one of the first risk assessment standards, offering guidelines for securing the IT infrastructure. In this e-guide, gain an in-depth look into NIST and uncover how to decrease the risks that your industry faces.  (EGUIDE) READ ABSTRACT |

Risk and Compliance Outlook by McAfee, Inc. November 2011 - (Free Research) Forward-thinking companies have implemented or are in the process of developing risk management and compliance initiatives. Learn about options for auditable risk management programs that address IT security as a business risk.  (WHITE PAPER) READ ABSTRACT |

E-Guide: Risk Management and Compliance Enforcement for the Financial Industry by IBM March 2011 - (Free Research) This e-guide discusses how the appropriate risk management tactics are imperative for organizations, and how companies should pay close attention to agent risk and waste no time in making it part of their risk management models.  (EGUIDE) READ ABSTRACT |

E-Book: Technical Guide on Application Security: Scanning Production Applications by IBM December 2010 - (Free Research) This e-book explores how many of the risks associated with scanning can be avoided with careful planning and by focusing your scans on exploring where and how a system is vulnerable to attack and not trying to simulate an actual attack. Continue reading to learn more about scanning production applications.  (EBOOK) READ ABSTRACT |

IT GRC: Managing Risk, Improving Visibility, and Reducing Operating Costs by Lumension May 2009 - (Free Research) This Aberdeen Group benchmark report describes the policy, planning, process, and organizational elements of successful IT GRC implementations. Learn what top performing companies do to gain a competitive edge regarding compliance and IT risk management.  (ANALYST REPORT) READ ABSTRACT |

Vulnerability Management for GLBA Compliance by Qualys, Inc. May 2008 - (Free Research) The QualysGuard vulnerability management and policy compliance solution helps financial institutions to meet many key security guidelines.  (WHITE PAPER) READ ABSTRACT |

Symantec IT Compliance Solution by Symantec Corporation March 2009 - (Free Research) Symantec helps organizations reduce compliance costs by automating key IT compliance processes, including policy management, controls assessment, monitoring, remediation, and reporting. Check out this brochure to learn more.  (ARTICLE)

Cloud Computing: Business Benefits With Security, Governance and Assurance Perspectives by ISACA December 2009 - (Free Research) This paper clarifies what cloud computing is, identifies the services offered in the cloud, and also examines potential business benefits, risks, and assurance considerations. Read on to learn more about cloud computing from security, governance, and assuarance perspectives.  (WHITE PAPER) READ ABSTRACT |

Quest MessageStats™ by Quest Software, now a part of Dell Quest MessageStats empowers executive management, Information Technology (IT) managers, and Exchange administrators to perform business-critical analysis and reporting on Exchange e-mail infrastructures.  (ASP & SOFTWARE PRODUCT)

How to tackle risk taxonomy by ComputerWeekly.com November 2010 - (Free Research) This Technical Standard provides a taxonomy describing the factors that drive risk – their definitions and relationships. This Technical Standard is not a reference or tutorial on how to assess or analyze risk, as there are many such references already available.  (WHITE PAPER) READ ABSTRACT |

Information Security Magazine - March 2010: Linking ‘Who’ and ‘What’ by Information Security Magazine March 2010 - (Free Research) This month’s cover story, “Linking ‘Who’ and ‘What’”, explains the new trend of joining SIM and IAM strategies to tie system vulnerabilities and policy violations to the user activity that causes them. Other articles in this month’s issue cover topics such as security management, vulnerability assessment, compliance, and more.  (EZINE)

We are always striving to improve our customer experience. Please notify us if there is a company missing that you feel should be in our directory.