Risk Assessment

WHITE PAPER: IANS conducted a Return on Security (ROS) analysis on Q1 Labs’ product, QRadar© Security Intelligence Platform, interviewed two Q1 Labs customers using QRadar to assess the ROS. The data yielded from the interviews showed substantial benefit to the organizations for the cost, both in money and staff time.

Posted: 08 Feb 2012 | Published: 08 Feb 2012

WHITE PAPER: The rise of cloud computing has been one of the highlights of the last few years. The notion that information technology can be delivered in a highly scalable utility model is generating excitement for both customers and vendors alike. However, there is still a lot of concern regarding security.

Posted: 08 Feb 2012 | Published: 08 Feb 2012

WHITE PAPER: This white paper discusses operational risk management (ORM) in the context of "Sound Practices for the Management and Supervision of Operational Risk," a paper from the Basel Committee.

Posted: 08 Feb 2012 | Published: 08 Feb 2012

WHITE PAPER: This white paper discusses the information security and compliance issues associated with Microsoft SQL Server database systems. Whether you’re a CSO, IT manager, internal auditor or database administrator, you'll learn about the database security threat, how compliance fits into the overall scheme and what you should do to minimize your risks.

Posted: 31 Jan 2012 | Published: 31 Jan 2012

WHITE PAPER: In this comprehensive white paper, learn the key steps to enhancing your security visibility so that you have a voice at the executive table and not just a seat.

Posted: 12 Jan 2012 | Published: 12 Jan 2012

WHITE PAPER: This white paper explores a centralized, comprehensive approach to application patching, allowing security pros to automatically detect risks, deploy patches and protect business information across a complex, highly distributed physical and virtual environment.

Posted: 12 Jan 2012 | Published: 12 Jan 2012

WHITE PAPER: As new challenges continue to arise related to mobile devices, legislative pressures, social media, and the continued degradation of core security, learn 5 key predictions for strategies and trends in IT and security operations in 2012.

Posted: 06 Jan 2012 | Published: 06 Jan 2012

WHITE PAPER: The aim of this paper is to demonstrate how information classification can be used to enhance security within a Collaboration Oriented Architecture.

Posted: 25 Oct 2011 | Published: 25 Oct 2011

WHITE PAPER: The majority of user authentication schemes today still use userid and password. The burden to users of managing large numbers of userids and passwords has led to proposals for Federated Identity systems, where a single set of credentials can be used to authenticate with several organisations, which have agreed to work together as a federation.

Posted: 25 Oct 2011 | Published: 25 Oct 2011

WHITE PAPER: The aim of this paper is to demonstrate how endpoint security status can be used to enable access within a Collaboration Oriented Architecture.

Posted: 25 Oct 2011 | Published: 25 Oct 2011

WHITE PAPER: The Jericho Forum’s Collaboration Oriented Architectures (COA) enable enterprises that build COAcompliant architectures to operate in a secure and reliable manner.

Posted: 25 Oct 2011 | Published: 25 Oct 2011

WHITE PAPER: Trust, or the placing of it, is one of the key activities at the core of our human endeavours. The process of placing trust is simpler when the process is physical and proximal - that is when you can see, feel and touch that which you are about to trust.

Posted: 25 Oct 2011 | Published: 25 Oct 2011

WHITE PAPER: Back in the time when businesses were predominantly “local” and to a large extent insulated from each others operations, it really didn’t matter very much how we defined the Business Impact of Information Risks, for we knew what we meant in each business and we didn’t have much need to share that meaning with others.

Posted: 25 Oct 2011 | Published: 25 Oct 2011

WHITE PAPER: How you make a secure, trusted connection over the Internet is one of the key debates as the industry strives for de-perimeterised solutions that it can implement.

Posted: 25 Oct 2011 | Published: 25 Oct 2011

WHITE PAPER: In an environment where access to a secure computing device is governed and controlled by inherently secure protocols, the problem still remains of how access to untrusted environments such as the Web is controlled.

Posted: 25 Oct 2011 | Published: 25 Oct 2011

WHITE PAPER: Jericho Forum aims to develop and influence information and communications technology(ICT) security standards.  These will facilitate the secure interoperation of ICT to support collaboration and commerce over open networks, within and between organisations, based on a security architecture and design approach entitled de-perimeterisation.

Posted: 25 Oct 2011 | Published: 25 Oct 2011

WHITE PAPER: Data privacy refers to the evolving relationship between technology and the legal right to, or public expectation of, privacy in the collection,  storing, management and sharing of data.

Posted: 25 Oct 2011 | Published: 25 Oct 2011

WHITE PAPER: In earlier times, if an enterprise presumed it had control over its network, and if it had few external connections or communication, it was feasible that the connections between operational computers probably were not an unacceptable risk.

Posted: 25 Oct 2011 | Published: 25 Oct 2011

WHITE PAPER: The Jericho Forum commandments define both the areas and the principles that must be observed when planning for a de-perimeterized future.

Posted: 25 Oct 2011 | Published: 25 Oct 2011

WHITE PAPER: Over time, the information security/risk management profession has developed a variety of methods for assessing risk within an organization.

Posted: 24 Oct 2011 | Published: 24 Oct 2011

WHITE PAPER: This Technical Standard provides a taxonomy describing the factors that drive risk – their definitions and relationships. This Technical Standard is not a reference or tutorial on how to assess or analyze risk, as there are many such references already available.

Posted: 24 Oct 2011 | Published: 24 Oct 2011

WHITE PAPER: When trying to achieve continuous compliance with internal policies and external regulations, organizations need to replace traditional processes with a new best practice approach and new innovative technology, such as that provided by IBM Tivoli Endpoint Manager.

Posted: 01 Jul 2011 | Published: 01 Jul 2011

WHITE PAPER: Taming the data demons: leveraging information in the age of risk explores the framework and advantages of a holistic approach to data risk management, and provides both IT and line-of-business executives with the "why" and "how" to begin putting an end-to-end data risk management program to work in your organization.

Posted: 01 Jul 2011 | Published: 01 Jul 2011

WHITE PAPER: To properly protect the information at the database layer there are a number of comprehensive measures that need to be taken. With this paper Tanya Baccum, SANS Institute analyst, examines these measures for holistically protecting Oracle database from inside out.

Posted: 08 Jun 2011 | Published: 08 Jun 2011

WHITE PAPER: Systems such as the HP Business Risk Mitigation solution are helping companies to prevent outages and recovery quickly from those that do occur by dramatically reducing backup time and costs, while also slashing disaster recovery time.

Posted: 25 Mar 2011 | Published: 25 Mar 2011