 |
 |
Regulatory Requirements Driving Enterprise Role and Entitlement Management sponsored by Guardium
 | Video: | Posted: 20 Nov 2009
| | Premiered: | 20 Nov 2009 | |
Summary: |
Learn how the requirements from various regulations like HIPAA, state privacy laws, and PCI DSS drive the use of role management technology to enable compliance. In this video, Richard Mackey summarizes the technological components that support compliance-focused role management and recommends a strategy for integrating IAM into the enterprise.
|
|
 |
|
 |
Countdown: Top Five Technology Challenges of Role and Entitlement Management - Expert Podcast sponsored by Guardium
 | Podcast: | Posted: 20 Nov 2009
| | Premiered: | 20 Nov 2009 | | | Speaker: |
Richard E Mackey Jr, ISACA/CISM - Vice President of Consulting, SystemsExperts
|
| |
Summary: |
When an organization commits to implementing the technologies and tools to support role and entitlement management, it faces a number of sizable challenges. In this podcast, expert Richard Mackey counts down these organizational, process, and technical challenges that block the successful deployment of role and entitlement management technology.
|
|
 |
|
 |
Securing Web Applications and Databases for PCI Compliance sponsored by Imperva
 | White Paper: | Posted: 12 Nov 2009
| | Published: | 12 Jul 2009 | |
Summary: |
This paper, designed for security and compliance professionals, illustrates how to achieve compliance on three of the most costly and complex sections: requirements 3, 6, and 10 of PCI DSS. This paper also highlights how Web application and database appliances can deliver resource effective compliance while maintaining cost efficiency.
|
|
 |
|
 |
PCI DSS Compliance Survey Results sponsored by Imperva
 | Analyst Report: | Posted: 12 Nov 2009
| | Published: | 24 Sep 2009 | |
Summary: |
The findings of this survey suggest that despite PCI DSS regulation companies are still struggling with data security. However, it also suggests that companies that take a strategic approach to PCI compliance go through fewer data breaches. Learn more about leveraging PCI to get a broader, more effective, and more cost efficient security program.
|
|
 |
|
 |
Rational AppScan Podcast sponsored by IBM
 | Podcast: | Posted: 10 Nov 2009
| | Premiered: | 10 Nov 2009 | |
Summary: |
Web Application Security Podcast featuring Paul Kaspian. This PodCast touches on how to meet application security compliance deadlines.
|
|
 |
|
 |
e-Kit: Web Application Security eKit sponsored by IBM
 | Resource Center: | Posted: 03 Nov 2009
| | Published: | 03 Nov 2009 | |
Summary: |
Check out this e-Kit for comprehensive information related to web application security strategies and web application security testing through SaaS. Included are several white papers, demos, and podcasts.
|
|
 |
|
 |
IBM Security Framework Blueprint (Redbook August '09) sponsored by IBM
 | White Paper: | Posted: 28 Oct 2009
| | Published: | 22 Jul 2009 | |
Summary: |
IBM has created a pair of complementary views to bridge the communication gap between the business and the technical perspectives of security to enable convergence in thought and process. The IBM Security Framework addresses the business view, and the IBM Security Blueprint addresses the technical view.
|
|
 |
|
 |
Deliver Effective Governance for Identity and Access Management sponsored by IBM
 | White Paper: | Posted: 27 Oct 2009
| | Published: | 11 Jun 2009 | |
Summary: |
Organizations should consider a thorough approach to IAM governance that meets the requirements of discovering, documenting and analyzing user access; establishing a process for user access governance; ensuring that constraints help manage business conflict; enforcing policies; and continuous monitoring.
|
|
 |
|
 |
The Return on Investment of Payment Card Industry Data Security Standards Compliance sponsored by IBM
 | White Paper: | Posted: 27 Oct 2009
| | Published: | 10 Jun 2009 | |
Summary: |
Compliance with PCI DSS has become a global requirement for any business or entity that processes credit card transactions as payment for goods and services. This paper explores the ROI implications and opportunities of PCI.
|
|
 |
|
 |
Software Security for Compliance, PCI, and Beyond sponsored by SearchSecurity.com
 | Presentation: | Posted: 26 Oct 2009
| | Published: | 26 Oct 2009 | |
Summary: |
This collection of slides from the Diana Kelley presents an overview of software security best practices. There is a heavy emphasis on PCI DSS requirement 6 -- Develop and maintain secure systems and applications. Some important subsections are highlighted and explained in detail.
|
|
 |
|
 |
The PCI Audit: Requirements 7-12 sponsored by SearchSecurity.com
 | Presentation: | Posted: 26 Oct 2009
| | Published: | 26 Oct 2009 | |
Summary: |
This collection of slides from Diana Kelley and Ed Moyle presents an overview of PCI DSS requirements 7 through 12. Check it to learn about the second half of PCI DSS, learn what each one means, and how it will be effected by version 1.2 of PCI DSS.
|
|
 |
|
 |
The PCI Audit: Requirements 1-6 sponsored by SearchSecurity.com
 | Presentation: | Posted: 26 Oct 2009
| | Published: | 26 Oct 2009 | |
Summary: |
This collection of slides from Diana Kelley and Ed Moyle presents an overview of PCI DSS requirements 1 through 6. Check it to learn about the first six PCI DSS requirements, what each one means, and how it will be effected by version 1.2 of PCI DSS.
|
|
 |
|
 |
PCI: Setting the Stage for Success sponsored by SearchSecurity.com
 | Presentation: | Posted: 26 Oct 2009
| | Published: | 26 Oct 2009 | |
Summary: |
This collection of slides from Diana Kelley and Ed Moyle presents an overview of PCI DSS in general and offers some broad, nontechnical advice on how to attain and maintain compliance. Check it out to learn about compliance validation, compliance assessments, and more.
|
|
 |
|
 |
PCI Compliance for Dummies sponsored by Qualys, Inc.
 | eBook: | Posted: 21 Oct 2009
| | Published: | 21 Oct 2009 | |
Summary: |
Compliance with the Payment Card Industry (PCI) Data Security Standard (DSS) is mandatory if your company stores, processes, or transmits payment cardholder data. This book is all about understanding PCI and how merchants can comply with its requirements.
|
|
 |
|
 |
eGuide - Expert Guide: PCI and the Data Lifecycle sponsored by Red Hat
 | Editorial Resource Guide: | Posted: 12 Oct 2009
| | Published: | 12 Oct 2009 | |
Summary: |
In this expert E-Guide, learn about 3 actions to take in your organization that improve security beyond the requirements of PCI compliance. Also discover how examining the flow of data in a new way allows you to communicate risks and issues to executive management, often justifying expenses in critical areas such as security and compliance
|
|
 |
|