07/14/2011 |
Security Management
Overview
As if wrestling with the many challenges of securing the network were not enough, security professionals must also cope with the challenges of complying with an avalanche of regulation. Perfect compliance is unattainable, but organizations must show “due care” and must work to make steady progress. Security can’t do it alone and must form partnerships internally. The
10/08/2008 |
Security Strategy
Outsourcing should be viewed as a strategic business decision that can add sustainable business value. However, businesses continue to wrestle with the issue of trusting their outsourced service providers with sensitive data and customer information.
09/18/2008 |
Vulnerability & Threat Management
Overview
To achieve compliance and high levels of IT security, companies need to undertake a top to bottom review of all systems and applications that contain sensitive information. IT needs to establish systems and policies that turn compliance into a repeatable business process rather than a distraction from its role of supporting other business processes. This process must
11/07/2007 |
Identity & Access Management
Industry: Financial services
Solution Provider or Product: N/A
Background Info/Context: This company is a financial service provider for credit unions worldwide, acting both as a direct vendor and a middleman for third-party providers. It does not hold credit union data but often provides and manages front-end applications that provide access to the data. Security is a large
11/07/2007 |
Enterprise Single Sign-On
Overview
Security managers are getting better at assigning quantitative values to threats. It’s a skill they must develop as they seek to prioritize among hundreds of patches; explain vulnerabilities in terms upper management can grasp; and determine which groups, applications, and workstations must be patched before all others.
As IT Security’s clout grows, the prospect of
11/07/2007 |
Enterprise Single Sign-On
Overview
Identity management and access control is messy, and few Delegates have actually implemented large-scale programs. Most organizations have a host of directories acting as identity stores from which access can be managed, and often they do not communicate with each other. Integrating legacy and custom applications into an access control system can be time-consuming and
03/13/2007 |
Vulnerability & Threat Management
Overview
Delegates have had success implementing IPS, anomaly based devices, and SIEM. But, success starts from understanding what your organization wants to accomplish, understanding the product’s capabilities, and leveraging the technology to fit with the business objectives.
A user briefing presented the ultimate implementation scenario as a contractor worked with a government
11/14/2006 |
Enterprise Single Sign-On
Overview
Regulatory compliance and audit requirements are major drivers for Identity Management projects. Because these are subjects dear to the heart of upper management, this can help make funding available. But because of the complexity and the number of people, departments, and applications an ID Management project will touch in an organization, projects often must be scaled
11/14/2006 |
Security Development Life-Cycle
Overview
IT Security staff are still fighting for the budget and staff to defend networks from threats such as worms, hackers, and ignorant users. Yet two unlikely allies have emerged in security experts’ bid to gain credibility in the organization: the media, whose vivid accounts of hacked corporate networks regularly fill newspapers, and attackers themselves, whose dastardly
11/14/2006 |
Security Development Life-Cycle
Overview
Delegates often need one product for protecting databases, something else for the perimeter, and still other products to secure road warriors’ laptops. To cover these and other needs, they typically meld together a combination of homegrown and off-the-shelf products. While delegates complain about cumbersome reporting features and no comprehensive way to manage multiple
Next Event
Space is limited, reserve your spot today