RESOURCE CENTER - Check out this e-Kit for comprehensive information related to web application security strategies and web application security testing through SaaS. Included are several white papers, demos, and podcasts.
Posted: November 3, 2009 | Published: November 3, 2009


Topics:  Application Security | Applications Management | Payment Card Industry Data Security Standard Compliance | Software as a Service | Software Testing | Testing | Web Application Security | Web Applications Management

WHITE PAPER - IBM has created a pair of complementary views to bridge the communication gap between the business and the technical perspectives of security to enable convergence in thought and process. The IBM Security Framework addresses the business view, and the IBM Security Blueprint addresses the technical view.
Posted: October 28, 2009 | Published: July 22, 2009


Topics:  Business IT Alignment | Business Management | Business Processes | Business Systems | Compliance (Systems Operations) | Payment Card Industry | Payment Card Industry Data Security Standard Compliance | Security Management | Security Policies

EGUIDE - Read this brief e-guide for an introduction to data masking. This guide provides an explanation of data masking, tips on how to implement it, and a list of data masking vendors.
Posted: October 28, 2009 | Published: October 27, 2009


Topics:  Data Security | Databases | Payment Card Industry | Payment Card Industry Data Security Standard Compliance | Sarbanes-Oxley Compliance | Security Policies | Vendor Selection

WHITE PAPER - Organizations should consider a thorough approach to IAM governance that meets the requirements of discovering, documenting and analyzing user access; establishing a process for user access governance; ensuring that constraints help manage business conflict; enforcing policies; and continuous monitoring.
Posted: October 27, 2009 | Published: June 11, 2009


Topics:  Access Control | Compliance (Systems Operations) | Data Governance | HIPAA Compliance | Identity Management | Payment Card Industry Data Security Standard Compliance | Risk Management | Sarbanes-Oxley Compliance | Security Policies

WHITE PAPER - Compliance with PCI DSS has become a global requirement for any business or entity that processes credit card transactions as payment for goods and services. This paper explores the ROI implications and opportunities of PCI.
Posted: October 27, 2009 | Published: June 10, 2009


Topics:  Compliance (Finance) | Compliance (Systems Operations) | Credit Cards | Payment Card Industry | Payment Card Industry Data Security Standard | Payment Card Industry Data Security Standard Compliance | ROI

PRESENTATION - This collection of slides from the Diana Kelley presents an overview of software security best practices. There is a heavy emphasis on PCI DSS requirement 6 -- “Develop and maintain secure systems and applications”. Some important subsections are highlighted and explained in detail.
Posted: October 26, 2009 | Published: October 26, 2009


Topics:  Application Security | Compliance (Systems Operations) | Compliance Best Practices | Compliance Software | Payment Card Industry Data Security Standard Compliance | Regulatory Compliance | Secure Application Development | Security | Security Software

PRESENTATION - This collection of slides from Diana Kelley and Ed Moyle presents an overview of PCI DSS requirements 7 through 12. Check it to learn about the second half of PCI DSS, learn what each one means, and how it will be effected by version 1.2 of PCI DSS.
Posted: October 26, 2009 | Published: October 26, 2009


Topics:  Compliance (Systems Operations) | Compliance Audits | Credit Cards | Data Governance | Data Security | Information Security | Payment Card Industry Data Security Standard | Payment Card Industry Data Security Standard Compliance | Regulatory Compliance | Security

PRESENTATION - This collection of slides from Diana Kelley and Ed Moyle presents an overview of PCI DSS requirements 1 through 6. Check it to learn about the first six PCI DSS requirements, what each one means, and how it will be effected by version 1.2 of PCI DSS.
Posted: October 26, 2009 | Published: October 26, 2009


Topics:  Compliance (Systems Operations) | Compliance Best Practices | Credit Cards | Data Governance | Data Security | Information Security | Payment Card Industry Data Security Standard | Payment Card Industry Data Security Standard Compliance | Regulatory Compliance | Security

PRESENTATION - This collection of slides from Diana Kelley and Ed Moyle presents an overview of PCI DSS in general and offers some broad, nontechnical advice on how to attain and maintain compliance. Check it out to learn about compliance validation, compliance assessments, and more.
Posted: October 26, 2009 | Published: October 26, 2009


Topics:  Compliance (Systems Operations) | Compliance Audits | Compliance Best Practices | Data Security | Information Security | Payment Card Industry Data Security Standard | Payment Card Industry Data Security Standard Compliance | Regulatory Compliance | Security | Standards

EBOOK - Compliance with the Payment Card Industry (PCI) Data Security Standard (DSS) is mandatory if your company stores, processes, or transmits payment cardholder data. This book is all about understanding PCI and how merchants can comply with its requirements.
Posted: October 21, 2009 | Published: October 21, 2009


Topics:  Access Control | Authorization | Cybersecurity | Data Security | Network Security | Payment Card Industry | Payment Card Industry Data Security Standard | Payment Card Industry Data Security Standard Compliance | Regulatory Compliance | Security Best Practices | Security Management | Security Managers | Security Threats | Vulnerability Assessments | Vulnerability Management

EDITORIAL RESOURCE GUIDE - In this expert E-Guide, learn about 3 actions to take in your organization that improve security beyond the requirements of PCI compliance. Also discover how examining the flow of data in a new way allows you to communicate risks and issues to executive management, often justifying expenses in critical areas such as security and compliance
Posted: October 12, 2009 | Published: October 12, 2009


Topics:  Backups | Data Loss Prevention (DLP) | Data Management | Data Security | Payment Card Industry Data Security Standard Compliance | Regulatory Compliance | Risk Management | Security Best Practices | Storage Security

PRESENTATION TRANSCRIPT - Read this presentation transcript for a discussion on risk management, corporate governance, regulatory compliance, and information quality presented by speaker Laurence Anker.
Posted: October 8, 2009 | Published: October 8, 2009


Topics:  Compliance (Finance) | Compliance (Systems Operations) | Corporate Governance | Gramm-Leach-Bliley Act | HIPAA | HIPAA Compliance | IT Governance | Payment Card Industry Data Security Standard Compliance | Risk Management

WHITE PAPER - This whitepaper will examine PCI DSS and explain how Lumension® Compliance and IT Risk Management can help organizations reduce the cost of addressing compliance.
Posted: October 6, 2009 | Published: October 6, 2009


Topics:  Auditing (Finance) | Compliance (Finance) | Compliance Audits | Data Security | Payment Card Industry | Payment Card Industry Data Security Standard Compliance | Reporting Software | Risk Management | Vulnerability Management

WHITE PAPER - The PCI DSS standard was created to prevent credit card fraud by requiring the implementation of certain controls and processes by all entities involved in the processing of credit cards. This paper will illustrate how Red Hat Enterprise Virtualization for Desktops can help organizations comply with specific PCI DSS mandates.
Posted: October 5, 2009 | Published: October 5, 2009


Topics:  Compliance (Finance) | Data Security | Desktop Applications Management | Desktop Virtualization | Desktop Virtualization Software | Open Source | Payment Card Industry Data Security Standard | Payment Card Industry Data Security Standard Compliance | Privacy Rights

CASE STUDY - Read this case study to learn how Tripwire provided this subscription billing service company achieve broad PCI compliance and helped them become proactive in handling security and compliance issues.
Posted: October 5, 2009 | Published: October 5, 2009


Topics:  Change Management | Configuration Management | Data Security | Payment Card Industry Data Security Standard Compliance | Security Management | Security Policies | Software as a Service