Latest White papers News

How to reduce network security risks without incurring a penalty on your network
posted on 14/06/2006

Recent security breaches have proven that much of today's electronic data is not secure. Furthermore, as enterprises move to IP networks they are adding additional risk. The biggest risk to network security is underestimating the threat to network security. The businesses that experienced these security breaches are not alone in their lack of a comprehensive security policy. Most organizations have implemented a porous security system that gives the illusion of security but does little to protect informational assets and intellectual property. Data protection, ID management and perimeter technologies form the three pillars on which data security is built. The main aspects of data protection on a network are confidentiality (keep your data secure), authentication (trust your sources) and integrity (trust your data). Download this free in-depth "Best Practices for Protecting Network Dat... [more]

Automated Patch Management for Increased Security and Compliance
posted on 19/05/2006

Hackers can compromise organizational security within minutes or days of a vulnerability announcement. Data centers and companies are increasingly under attack. In the face of today's security challenges, IT organizations are forced to respond quickly, decisively and efficiently in patching systems while minimizing any downtime impact. In this free white paper on automated patch management, you will learn about the following patch management challenges and solutions to solve them: - Lack of a holistic view into the IT environment - Point tools create information disparity - Doing more with less - Organizational silos make information sharking challenging - What you can't measure, you can't manage Download the free white paper "Ensuring Security and Compliance Through Automated Patch Management". ... [more]

Implementing Security Incident Response
posted on 14/03/2006

Organizations that use computing system as their business enabler are faced with the challenges to protect and mitigate their critical information assets from internal and external security risks. In such a scenario, where 100% security is hard to achieve, it is imperative to reduce time taken to detect and respond adequately to a security incident that could adversely impact normal services. This white paper provides highlights and best practices information about computer security incident response, building teams to process security incidents, handling security incidents and developing important factors in establishing a security incident response policy. The paper mainly targets computer security managers, security policy developers, system administrators and other related staff responsible for the creation or operation of a computer incident response team. Download the Security Incident Response... [more]

Sarbanes-Oxley Compliance for UNIX / Linux Networks
posted on 07/03/2006

This document addresses how an organization can use identity and access management solutions (IAM) such as Symark's PowerBroker and PowerPassword-UME for UNIX and Linux operating systems to meet Sarbanes-Oxley (SOX) requirements for effectiveness of internal controls for financial reporting requirements. Symark PowerBroker and PowerPassword-UME safely delegate administrative privileges (including root) and provide secure logins and strong password and user management policies, keystroke logging and indelible audit trails. This document demonstrates how Symark PowerPassword-UME and PowerBroker work in tandem to protect the integrity of data across heterogeneous UNIX/Linux systems to help bring your IT systems into compliance especially with the SOX section 404 requirements for internal IT controls. Download Bringing UNIX/Linux Networks into Compliance with the Sarbanes-Oxley Act of 2002 now.... [more]

Insider threat: how to protect your organisation
posted on 07/03/2006

With disappearing network perimeters and high-stakes cyber-crime, no threat looms larger than that of the Insider. Mobility, wireless and remote VPNs are becoming increasingly important tools for attackers. For large institutions, recent research has shown that insider threat has surpassed external threats, with 35% of respondents saying they had experienced attacks from inside their organisation within the last 12 months. Insiders often have little or no technical expertise and exploit non-technical vulnerabilities. They execute their attacks during normal business hours, using simple and legitimate user commands to carry out the incidents. In this Insider threat Briefing, you will learn: * The top internally focused security threats * The key components of a defense-in-depth protection against the Insider Threat * The benefits of comprehensive encryption architecture i... [more]

Other Security news and resources