Home >
> Auditing |
 |
|
|
|
An Information Technology (IT) audit or information systems (IS) audit is an examination of the controls within an entity's Information technology infrastructure. These reviews may be performed in conjunction with a financial statement audit, internal audit, or other form of attestation engagement. |
 |
|
Results 1 - 25 of 56 matches |
Sort Results By : Published Date | Title | Company name |
|
|
|
|
Secure Remote Vendor Access to the Enterprise Data Center |
|
|
Enabling IT equipment vendors to perform remote service on your data centers helps maximize uptime and lower TCO—but at what risk? Dial-up modems and VPNs introduce security vulnerabilities and lack sufficient auditing capabilities—making it virtually impossible to track external access and maintain data center security. Download this white paper to learn how you can manage security risks, lower service-related costs, achieve regulatory and internal compliance, and more.
Download Now
|
 |
|
|
|
|
|
CA Access Control for Windows |
| By : CA |
Published Date: Sep 01, 2006 |
|
Learn how CA Access Control, a independent security system, complements the native Windows operating system and can enable a strong defense-in-depth security practice for your organization.
Download Now
|
 |
|
|
|
UNIX Host Access Management with CA Access Control |
| By : CA |
Published Date: May 07, 2007 |
|
UNIX and Linux systems have inherent security issues that pose high risk to the business objectives of complying with regulations and data protection. To reduce security risks, you need full superuser containment and the ability to enforce strict access control to critical system resources through centralized and automated policy management across different platforms.
Download Now
|
|
|
|
|
Host Access Management with CA Access Control |
| By : CA |
Published Date: Sep 13, 2007 |
|
Your organization relies on servers to store and access to your most critical information resources. CA Access Control is a product that centralizes control and distributed enforcement of appropriate role-based access to sensitive server resources.
Download Now
|
|
|
|
|
Leveraging Automation to Quickly Reveal Vulnerabilities |
| By : Cenzic |
Published Date: Nov 30, 2005 |
|
With web applications constantly evolving, finding vulnerabilities is a challenging, costly and time-consuming undertaking. Find out how Cenzic's powerful security solutions help information security teams quickly identify problems, regularly assess web application security strength and ensure regulatory compliance.
Download Now
|
 |
|
|
|
Securing Web Applications: The Time Is Now |
| By : Cenzic |
Published Date: Jul 01, 2006 |
|
Enterprises need to utilize software testing that can automatically review applications for security problems. This document examines the market drivers and technology associated with software security code review products and discusses how Cenzic is addressing this urgent need.
Download Now
|
|
|
|
|
Cenzic: Application Security for Financial Institutions |
| By : Cenzic |
Published Date: Nov 30, 2005 |
|
The Cenzic Hailstorm® solution helps financial institutions comply with GLBA and other laws by automating risk assessment, checking for vulnerability to the injection of malicious code into Web servers, automating the testing of code and key controls during the software development process, and helping them respond to new vulnerabilities in the software development lifecycle.
Download Now
|
|
|
|
|
Evaluating a Storage Security Solution |
| By : Decru |
Published Date: Dec 01, 2006 |
|
Company data is vulnerable to threats from - insiders, unauthorized access to data, data backup, off-site mirroring - just to name a few. Encrypting data at rest, on tape or disk, significantly mitigates these threats. This document provides guidance into some of the factors a company should consider when evaluating storage security technology and solutions.
Download Now
|
 |
|
|
|
|
|
Practical Guide to Sarbanes-Oxley Compliance |
|
|
Learn about the Sarbanes-Oxley regulatory background and its impact on IT departments. This document provides information pertaining to access issues, change documentation, disaster recovery planning and illustrations of key audit-ready reports.
Download Now
|
 |
|
|
|
|
|
|
|
|
|
|
|
|
|
10 Reasons your RADIUS Server Needs a Refresh |
|
|
For over a decade now, RADIUS servers have been a mainstay of dial-up and VPN access control. The rather inconspicuous RADIUS server, perhaps better known as that beige, general-purpose PC collecting dust in the corner of your data center, has proved sufficient for performing basic duties like validating passwords and granting network access.
Download Now
|
 |
|
|
|
Content Security: Blocking Spam and Unwanted Traffic |
|
|
The Internet and email have stimulated huge productivity gains for employees. Workers quickly and easily access volumes of research on the Web and correspond with a mouse click. Unfortunately, businesses taking advantage of these tools are increasingly faced with daily onslaughts of spam and unwanted Web traffic.
Download Now
|
 |
|
|
|
|
|
HIPAA and Beyond: How to Effectively Safeguard Electronic Protected Health Information |
|
|
HIPAA lacks the depth and breadth on which to build an information security program as it takes a myopic view of security and privacy with Protected Health Information (PHI) being the center of its universe. But there is much more to information security than PHI. Healthcare organizations must look beyond HIPAA and take a global view of their infrastructure because while HIPAA is a static regulation, healthcare organizations exist in a dynamic IT world with new threats coming about daily.
Download Now
|
 |
|
|
|
Fact of Fiction: Debunking the Top 5 Misconceptions about Data Protection |
|
|
One of the latest trends in IT security has been the shift in focus toward data-centric protection. Data is the most valuable asset an IT department must protect, and technology has evolved to meet this requirement. Encryption technology and data leakage protection solutions, which tend to rely heavily on content filtering technology, have helped shore up many organizations’ data stores, but the problem is that as companies adjust their data protection strategies they have fallen prey to a number of misconceptions about data protection.
Download Now
|
|
|
|
|
Patch Management 2.0: Evolving Your Patch Management Technology to Combat Security Challenges |
|
|
The realities of security and compliance have changed considerably since patch management faced its first big paradigm shift some years ago. At that time many organizations wrestled with the transition from manual patching and remediation to an automated process. Of course, nothing in security is ever static, so it is no surprise that patch management has continued to evolve since then. Though still automated, today’s best patch management tools and techniques are significantly different from their predecessors.
Download Now
|
|
|
|
|
Proving Compliance with McAfee Total Protection for Data |
| By : McAfee |
Published Date: May 01, 2008 |
|
Companies feel a sense of security from encrypting data stored on corporate systems on desktops, laptops and mobile devices. They believe this act will protect their intellectual property, and sensitive customer information will remain safe and secure from unauthorized access. But that is not enough. Simply encrypting this information doesn’t help you prove compliance with external regulations or internal controls during a financial audit or legal discovery process.
Download Now
|
 |
|
|
|
Email and IM Prep for Your Next Regulatory Audit |
|
|
A millisecond of downtime can mean millions of dollars. Maintaining compliance while ensuring your firm has the required speed and uptime can be daunting. Learn what you can do with your email and instant messages to prepare for your next regulatory audit.
Download Now
|
 |
|
|
| |
|
|
|
Results 1 - 25 of 56 matches |
Sort Results By : Published Date | Title | Company name |
|
|
<< Start < Previous 1 2 3 Next > End >>
|
More Security Topics |
|
Access Control, Anti Spam, Anti Spyware, Anti Virus, Application Security, Auditing, Authentication, Biometrics, Business Continuity, Compliance, DDoS, Disaster Recovery, Email Security, Encryption, Firewalls, Hacker Detection, High Availability, Identity Management, Internet Security, Intrusion Detection, Intrusion Prevention, IPSec, Network Security Appliance, Password Management, Patch Management, Phishing, PKI, Policy Based Management, Security Management, Security Policies, Single Sign On, SSL, Secure Instant Messaging, Web Service Security, PCI Compliance |
|
 |
|
RSS
