IT Security Audits

WHITE PAPER: Database security is the last line of defense, so it deserves greater focus on the protection of private data from both internal and external attacks than IT pros have traditionally given it. Read this paper to learn what steps you can take to improve database security in your organization.

Posted: 23 May 2011 | Published: 23 May 2011

WHITE PAPER: This white paper highlights a proactive security intelligence solution that ensures continuous implementation of the PCI DSS network security requirements and more effective communication of risk to auditors.

Posted: 01 May 2012 | Published: 01 May 2012

WHITE PAPER: In this white paper, learn how Coverity is providing software developers with actionable information that enables them to manage security and quality defects early in the lifecycle, in their existing workflow, without requiring them to become security experts.

Posted: 28 Nov 2011 | Published: 28 Nov 2011

WHITE PAPER: This white paper looks at the importance of real-time risk management in fending off the growing number of sophisticated attacks on today's enterprises.

Posted: 24 May 2012 | Published: 24 May 2012

WHITE PAPER: While the importance of establishing the right IT systems and security policies have been expressed time and time again, a quick glance at the news headlines on data disasters reveal that not all organizations have a grasp on data leak protection. View this paper to explore some data loss incidents and the key leassons learned.

Posted: 02 Feb 2012 | Published: 02 Feb 2012

WHITE PAPER: This paper explores the challenges with local privilege accounts in Windows Server 2003 R3 or 2008 R2 and uncovers an approach to address them, enabling you to centrally provision and administer Windows Server local accounts and easily centralize and implement security policies for the support staff controlling access to privilege accounts.

Posted: 16 Feb 2012 | Published: 16 Feb 2012

WHITE PAPER: Learn how a uniform investigation infrastructure enables appropriate digital investigative processes across industry regulations and frameworks, reduces risk and allows enterprise teams – HR, IT, and audit – to be as efficient as possible.

Posted: 11 Apr 2012 | Published: 11 Apr 2012

WHITE PAPER: Companies worldwide are affirming the value of archiving as a best practice for managing data growth, completing faster application upgrades and much more. Inside this white paper, learn how archiving can help support data retention compliance initiatives and mitigate risk for audits and electronic discovery requests.

Posted: 23 Aug 2011 | Published: 23 Aug 2011

WHITE PAPER: This resource explores best practices and considerations for an effective change management strategy that will minimize risk to your organization.

Posted: 24 May 2012 | Published: 24 May 2012

EBRIEF: In this expert resource, find answers to six of your most pressing compliance and audit questions concerning fixed assets, financial reporting standards, tax filing, and more.

Posted: 10 May 2012 | Published: 10 May 2012

WHITE PAPER: Applied Oracle Security (Oracle Press, 2010) is the definitive guide to safeguarding Oracle Database 11g written by the security experts in Oracle’s National Security Group. This complementary chapter on auditing covers how to audit database activity efficiently, improve security, address regulatory requirements, and automate compliance reporting.

Posted: 06 Sep 2011 | Published: 06 Sep 2011

WHITE PAPER: IT audit is about the formal verification and validation of the quality and effectiveness of ITcontrols to support the overall business control objectives. From a security controlperspective the residual IT security risks are relatively well understood in a networkperimeter protected environment.

Posted: 20 Oct 2011 | Published: 20 Oct 2011

WHITE PAPER: Check out this white paper for best practices on how to best prep yourself for the audit process - learn how to create a backup and recovery plan that includes the right audit and accountability features, discover four keys to help you on the path to compliance and more.

Posted: 01 Mar 2012 | Published: 01 Mar 2012

EGUIDE: The federal government’s push for electronic healthcare records has made compliance and data security even more pressing. This e-guide offers a look at where healthcare IT leaders should begin, and what they should watch out for as they move to embrace the HITECH Act, HIPAA and other initiatives.

Posted: 18 Aug 2011 | Published: 18 Aug 2011

ANALYST REPORT: As concerns of database security escalate, regulatory pressures increase and vendor capabilities expand, database activity monitoring is evolving beyond its original concept to a more advanced class of technologies Gartner identifies as database audit and protection (DAP) tools. View this resource to explore DAP technologies.

Posted: 24 May 2012 | Published: 24 May 2012

EGUIDE: This E-Guide highlights the importance of log analysis and security information and event management (SIEM) in improving regulatory compliance management.

Posted: 30 Mar 2012 | Published: 30 Mar 2012

WHITE PAPER: As IT commoditization continues to increase audit and control activities, IT gets better at identifying and documenting the causes of significant outages. In an increasing number of cases, these ITIL efforts show the source of the outage to be action from the security department, and the BSM processes show the impact to be devastating.

Posted: 27 May 2009 | Published: 27 May 2009

WEBCAST: With the growing complexity of DMBS environments, malicious threats and compliance mandates, organizations often struggle to effectively safeguard their databases. In this brief demo, learn how you can protect your sensitive data in distributed DBMS environments with a holistic approach to data security and compliance.

Posted: 24 May 2012 | Premiered: 24 May 2012

EZINE: Access this month’s issue to uncover the latest tokenization trends (including, payment card data security, tokenization as a service, as well as protecting PII data) and explore how this revived technology not only offers enhanced data protection, but can ease the burden of compliance audits.

Posted: 01 Apr 2012 | Published: 01 Apr 2012

EBOOK: Data loss prevention (DLP) in healthcare entails preventing confidential patient records from falling into the wrong hands and requires thought out, well-enforced policies and the technology to back them up. Inside this resourceful e-book, learn how to achieve DLP through data encryption, monitoring tools, risk assessments and more.

Posted: 18 Aug 2011 | Published: 18 Aug 2011

VIRTUAL SEMINAR: In this two part course, Deputy Executive Director for ARMA International, Diane K. Carlisle, reveals how Generally Accepted Recordkeeping Principles (GARP®) is designed to assist organizations in implementing records systems and policies to keep you out of the headlines for the wrong reasons.

Posted: 15 Nov 2011 | Premiered: 15 Nov 2011

WHITE PAPER: This essential checklist reviews the key steps to developing and implementing a comprehensive cloud security and compliance program. Learn how to create security policies, procedures and standards to support your business goals while ensuring that your business meets relevant government regulations for your industry.

Posted: 23 May 2012 | Published: 23 May 2012

WHITE PAPER: Over the last few years, protecting IT assets has evolved from technology safeguards, to a full-time management discipline. Based upon this evolutionary trend, ESP developed a 4-phased security maturity model; in this paper explore each phase in-depth, including the key objectives, actions and drivers for the next phase.   

Posted: 27 Mar 2012 | Published: 27 Mar 2012

WHITE PAPER: With today’s threats, IT environments and compliance risks becoming more dynamic and complex, organizations need to take a more proactive stance to risk and security management. In this resource, gain key insight on how to deploy a strategic security and risk management program that helps mitigate risks before they occur.

Posted: 24 May 2012 | Published: 24 May 2012

WHITE PAPER: Read this expert guide to ensure your virtual environment is in compliance with PCI DSS 2.0 and avoid common errors made in the auditing process.

Posted: 21 Jul 2011 | Published: 21 Jul 2011

PRESENTATION TRANSCRIPT: This presentation transcript explores exactly what it means to be secure and compliant, as well as how security information management (SIM) can assist organizations in achieving both.

Posted: 30 Mar 2012 | Published: 30 Mar 2012

EBOOK: This E-Book offers expert advice on creating an on-site medical image archive as well as using a cloud storage provider for medical images. Additionally, explore 2 case studies regarding compliant storing and archiving of medical data.

Posted: 02 Mar 2012 | Published: 02 Mar 2012

EGUIDE: Because of the lifesaving nature of the networked devices, healthcare facilities need networks that are different than ordinary businesses. The network has to be designed to never go down, to accommodate fluctuating workloads and a variety of other requirements. Access this e-guide to learn more about the importance of healthcare networks.

Posted: 18 Aug 2011 | Published: 18 Aug 2011

EZINE: Effectively addressing the new HIPAA privacy and security rules introduced in the HITECH Act requires an assessment of your organization’s biggest vulnerabilities as well as the deployment of the right technology to reduce the risk of data loss. Inside this expert resource, gain insight on current healthcare security topics.

Posted: 17 Aug 2011 | Published: 17 Aug 2011

WHITE PAPER: In this paper, Microsoft MVP Darren Mar-Elia provides best practices for leveraging native AD auditing. Then, he’ll discuss what auditors and compliance officers look for when it comes to examining your AD environment. He’ll also explore third-party alternatives to native auditing that greatly enhance AD auditing. Read this paper today.

Posted: 20 Jan 2012 | Published: 20 Jan 2012

VIRTUAL ENVIRONMENT: On-demand sessions presented by SearchCompliance and SearchSecurity, covering the latest cloud security and compliance business imperatives and barriers to success.

Posted: 13 Apr 2012 | Premiered: 13 Apr 2012

WHITE PAPER: Consolidation, outsourcing and cloud computing are just a few of the business initiatives driving IT organizations to focus on data security. Companies have moved beyond securing the network perimeter and made strengthening security controls around data a top priority. Read this whitepaper to learn more.

Posted: 28 Sep 2009 | Published: 28 Sep 2009

WHITE PAPER: This paper examines the numerous ways that syslog messages can be used to enhance the secure deployment of an infrastructure of equipment from Cisco®. Syslog can not only be an essential auditing tool for network and administrative events, but also can be an effective troubleshooting tool.

Posted: 25 Jan 2010 | Published: 25 Jan 2010