05/10/2010 |
Enterprise Compliance Management
There is much interest in moving beyond intrusion detection (IDS) to prevention (IPS) because of the ability to actually block traffic rather than just log it. A number of Forum Members are looking for knowledge about IPS technology as their organizations are seriously considering implementing it. However, actual IPS experience is limited; much of the experience with IPS has been
09/30/2009 |
Enterprise Compliance Management
While enterprises worldwide are still struggling to secure their existing environments, there’s a new and potentially more challenging vector on the horizon. “The Cloud” is gaining momentum mostly from the tremendous cost savings, but also from the hopes of less complexity given the hosted environment and that providers’ responsibility for updates, availability etc. However,
08/27/2009 |
Enterprise Compliance Management
With the regulatory climate heating up in Washington, what will the impact be for security and risk management professionals? Will certain software purchases be mandated? Will an overarching Governance, Risk & Compliance framework be required of all organizations? On this call, you will hear predictions of what to expect from legislators in the second half of the year, and
07/30/2009 |
Enterprise Compliance Management
Enterprise Risk Management (ERM) is a very broad term used to describe the way a company manages its business processes, planning, and internal controls. ERM methodology provides a framework for an organization to build around in order to quantify and analyze risk in the IT infrastructure against a company’s objectives, as well as other types of business risk. IT risk is truly a
06/30/2009 |
Enterprise Compliance Management
Whitelisting is the practice of allowing only “known” software applications to operate on a client machine or in a network. The whitelisting philosophy is opposite that of blacklisting by enumerating the number of good entities as opposed to enumerating the number of bad. Its main purpose is to control what software applications a company’s users are running. Specifically, its
06/04/2009 |
Enterprise Compliance Management
Consumer Packaged Goods (CPG) companies face unique security challenges, challenges which are similar from one organization to the next. Yet, there is not a forum for information security professionals to discuss these challenges and share solutions and best practices.
01/23/2009 |
Enterprise Compliance Management
Log Management has been a challenge for IT professionals to effectively tackle. What emerged from an interest in monitoring network traffic has generally resulted in an overwhelming sea of event data for IT professionals to understand.
As enterprise executives have shifted their posture from reactive to proactive, IT security professionals have been placing greater emphasis on
09/08/2008 |
Enterprise Compliance Management
Data loss prevention is a cultural, business, legal, and technological problem. Pro- tecting data starts with understanding its lifecycle, classifying it, and identifying where it resides and who is accessing it. Once data is classified, various techniques can minimize its loss, including use of DLP products (which can “stop stupid” but not stop malicious attacks) and database
11/07/2006 |
Enterprise Compliance Management
Overview
Organizations are struggling with where to place control of the compliance function and how to get people in other departments to follow policies and procedures. The situation is complicated for firms doing business in other countries or outsourcing to service providers located in nations with different approaches to compliance. Also, some standards, like PCI, keep
11/07/2006 |
Enterprise Compliance Management
Overview
A recent study in CSO Magazine (October 2005) found that 38% of organizations know they need to be in compliance with SOX and HIPAA, but have decided not to comply. Many companies want further guidance on compliance requirements and penalties before they commit to the compliance effort. Others have decided that the costs of compliance outweigh the benefits.
Questions and
Next Event
Space is limited, reserve your spot today