This collection of slides from the Diana Kelley presents an overview of software security best practices. There is a heavy emphasis on PCI DSS requirement 6 -- “Develop and maintain secure systems and applications”. Some important subsections are highlighted and explained in detail. 

In this issue we tackle service-oriented architecture and dive into how Software as a Service can drive flexibility and meet business needs. Also in this issue: MDM's strongest business case and how to navigate the compliance minefield. 

Many organizations have cut costs by distributing IT across the globe. This makes integration and management a challenge. To ensure your security team is on the same page, check out this video to learn about a solution that allows you to manage different technologies in different time zones with a localized system. 

CodePro AnalytiX provides you with the metrics you need to incorporate self-improvement and optimization into the software process. Thus, CodePro AnalytiX is a full set of tools to support your organization in its quest for sustainable high levels of software quality, security and productivity 

Webroot Security Software-as-a-Service provides on-demand web, email, and archiving solutions that offer cost-effective alternatives to on-premise security. Webroot Web Security Service delivers URL and web content filtering, plus protection against today's complex web-based malware threats. Check out this resource center to find out more. 

The ESET Smart Security Center features two webcast sessions - including a live Q&A with the experts following the presentation - plus resources centered around antivirus solutions tailored to your business needs. 

Sawmill is a powerful hierarchical log analysis tool that runs on every major platform and operating system. 

Check out this e-Kit for comprehensive information related to web application security strategies and web application security testing through SaaS. Included are several white papers, demos, and podcasts. 

This report is the second part of a February 2008 study comparing the performances of leading anti-virus solutions. Each product was tested using their best possible detection settings in identical environments. The report breaks down the results into several categories including speed, false positives and on-demand detection of virus/malware. 

AppRiver needed a very fast, lightweight antivirus engine that would complement their SecureTide service. After a thorough evaluation process, they found ESET NOD32 Antivirus to be the most reliable and stable platform. It now protects more than 50,000 mailboxes for AppRiver. 

Combining powerful management tools, ease of use for end users, impressive performance, and state-of-the-art proactive threat detection, ESET NOD32 Antivirus is the most effective way to protect your business' valuable data assets while ensuring regulatory compliance. Read this brief paper to learn more. 

Read this Trend and Risk report from IBM® ISS X-Force® to learn statistical information about all aspects of threats that affect Internet security, including software vulnerabilities and public exploitation, malware, spam, phishing, web-based threats, and general cyber criminal activity. 

Spyware, viruses and other malware transported via Web sites represent the most serious data security threat to companies today. Companies need to proactively leverage technology and appropriate business policies to protect themselves, their customers and their employees from the threats presented via the Web. Read on to learn more.