Read this paper to learn how ArcSight Express can help mid-size organizations better face the numerous security and compliance challenges they confront today. 

In today’s technology rich environment organizations are finding employees often post sensitive company information to insecure or public Internet sites using Web 2.0 applications. Code Green Networks TrueDLP provides organizations with a complete data loss prevention solution to stop the loss or theft of confidential or proprietary information. 

This videocast provides an overview of governance, risk and compliance, including the different roles played by each in the enterprise, as well as tools that can aid the various GRC processes. 

PCI DSS is an opportunity for security professionals to leverage compliance initiatives to improve security and risk management. This presentation transcript illustrates how organizations must go beyond “checklist” compliance to improve security and IT efficiency -- through automation, prioritization, and focused attention on the critical issues. 

Securing laptops and other client hardware continues to be a challenge for end-user companies, which sets up interesting business growth opportunities for channel partners. In this podcast, find out the changes Sophos has made recently in the channel space, and how those changes may support the growth of your business. 

This article discusses some aspects of a new regulation -- 201 CMR 17:00 -- and offers suggestions on how data security best practices can help with compliance. Companies should discuss the regulation in detail with their legal consul to examine how it affects their unique circumstances and the best course of action to be taken. 

This expert E-Guide offers an in-depth look at the security of cloud computing. Discover a risk versus benefits comparison, learn why it may be difficult to satisfy compliance auditors if security controls are obscured, and see why cloud vendors aren’t very concerned with security. 

As ORCS introduced Windows Server 2008 into the network, they sought new ways to improve efficiency. The need for an improved patch management system, combined with the requirements for PCI compliance, presented a dual challenge that they hoped they could address with a single technology solution. And they did. Read this case study to learn how. 

With the changing regulations affecting organizations today, regulatory compliance is never really done. Organizations that have met compliance soon find they need a more strategic approach to uphold it. Watch this videocast for tips on using a risk-governance model to establish an enterprise-wide program and a common framework. 

This document presents an overview of the Sarbanes-Oxley Act (SOX), Gramm-Leach-Bliley Act (GLB), and Health Insurance Portability & Accountability (HIPAA). It then translates these mandates into identity management requirements and challenges; defines and describes the reference model, and applies the reference model to the mandates. 

Read this solution guide for suggestions on how to get the most out of implementing application control in your network. After discussing the expanding applications frontier and its impact on an enterprise, the paper defines application control and reviews the requirements it must meet. 

Data Loss Prevention is designed to protect information assets with minimal interference in business processes. It provides new insights into how information is used, and enforces protective controls to prevent unwanted incidents. Read on to learn how DLP can reduce risk, improve data management practices, and even lower certain compliance costs.