Home >
> PCI Compliance |
 |
|
|
|
|
 |
|
Results 1 - 25 of 105 matches |
Sort Results By : Published Date | Title | Company name |
|
|
The Perils of Cross-Site Scripting (XSS) |
|
|
Cross-site Scripting (XSS) attacks are universally seen as the #1 security vulnerability facing web applications. Don’t wait another today to learn how protect your organization – download the white paper by Ryan Barnett, Director of Application Security at Breach Security.
Download Now
|
 |
|
|
|
|
|
Six Ways to Reduce PCI DSS Audit Scope by Tokenizing Cardholder Data |
|
|
Enterprises are seeking ways to simplify and reduce the scope of the Payment Card Industry’s Data Security Standard (PCI DSS) compliance by shrinking the footprint where cardholder data is located throughout their organization. By reducing the scope, these enterprises can dramatically lower the cost and anxiety of PCI DSS compliance and significantly increase the chance of audit success. Learn more today!
Download Now
|
 |
|
|
|
PCI DSS Compliance in the UNIX/Linux Datacenter Environment |
|
|
This whitepaper discusses how creating a secure access control infrastructure in heterogeneous Unix/Linux environments supports the Payment Card Industry Data Security Standard (PCI DSS). Symark PowerBroker controls access to systems and cardholder data, and creates comprehensive logs and audit trails. Various tables show PowerBroker’s functionality mapped to the PCI DSS requirements.
Download Now
|
 |
|
|
|
|
|
Top Ten Insider Threats and How To Prevent Them |
|
|
This Whitepaper discusses the top ten insider activities you have to monitor to make sure your employees are not violating security policy or opening up easy routes for insider abuse. Implementing these recommendations is fast, cost effective and will help prevent costly insider hacks and data leakage from impacting your business.
Download Now
|
 |
|
|
|
A Focus on Security Yields Compliance for Free |
| By : Thales |
Published Date: Apr 21, 2009 |
|
Many senior executives are realizing that weak or no information security will result in substantial financial losses, while compliance costs are high and threaten to go higher. Yet, compliance with a law or regulation does not equate to security.
Download Now
|
 |
|
|
|
Demystifying Compliance |
|
|
Compliance is high on the IT agenda today, yet no one seems to have a clear picture of what it really involves. Inconsistent interpretation by different auditors, regulators and vendors means what worked in one year's audit could fail in the next. This whitepaper is designed to help Demystify Compliance as it relates to IT and give you some simple recipes for analyzing your own environment in the light of specific mandates.
Download Now
|
 |
|
|
|
|
|
|
|
Web Application Threats are Evolving: Are Your Security Efforts Keeping Pace? Today, Web |
|
|
Web Application Threats Are Evolving. Are Your Security Efforts Keeping Pace? Today, Web application security threats are not only becoming more abundant than ever, but also more difficult to detect, and more complex to solve. Many organizations are responding to these unique vulnerabilities with traditional network security approaches. However, sophisticated Web applications threats require a more sophisticated security strategy. What’s worked in the past won’t necessarily work today; and what’s more, Web application security requires a comprehensive solution, not simply a series of a la carte provisions. For detailed steps toward improving your Web application security strategy, download the VeriSign® Enterprise Security Services white paper, Best Practices That Improve Web Application Security.
Download Now
|
 |
|
|
|
|
|
The Resources for PCI Compliance |
| By : nCircle |
Published Date: Mar 06, 2009 |
|
All payment card network members, including traditional and Internet organizations, banks and payment processors, are required to comply with the Payment Card Industry (PCI) Data Security Standard. nCircle provides a range of PCI compliance solutions for companies of all sizes. From quarterly PCI scanning to file integrity monitoring, nCircle provides a unified foundation for an organization’s security and compliance preparation and auditing, encompassing 11 of the 12 PCI requirements as well as many other regulations including SOX, HIPAA, NERC. This resource guide will provide information to help you get started with you PCI compliance efforts.
Download Now
|
 |
|
|
|
Meeting the Payment Card Industry Data Security Standard |
|
|
The Payment Card Industry Data Security Standard mandates requirements to protect card holder data. Requirements cover network security, data protection, vulnerability management, access control, monitoring and testing, and information security. This paper discusses the specific requirements and solutions affecting network administrators.
Download Now
|
|
|
|
|
Top Five SIM Pitfalls: Ensuring Successful Security Information Management |
|
|
|
To satisfy regulatory requirements and better protect their networks, many organizations are turning to Security Information Management (SIM) tools. By collecting, correlating and reporting security events from firewalls, IDS/IPS devices, servers and other data sources across the network, SIM technology enables defense-in-depth. Properly implemented and managed, SIM technology improves security operations by providing: Faster identification and response to real threats Elimination of false positive alerts Assessment and prioritization of risk High level metrics for strategic decisions For organizations subject to regulations such as PCI, GLBA, FFIEC, HIPAA, SOX, FISMA, NERC CIP and others, SIM technology addresses key compliance requirements for monitoring and auditing logs. SIM also delivers automated compliance reporting that can be used to monitor compliance status and demonstrate control effectiveness to auditors. However, implementing and managing SIM technology is not an easy task. Many organizations have struggled with SIM projects due to unanticipated risks and challenges. This has resulted in wasted resources, weaker operational security and negative audit findings. This paper was designed to help Security, IT and Compliance professionals in deploying Security Information Management (SIM) tools. It explores the pitfalls that have led to failed projects for other and provides organizations in need of SIM with guidance for ensuring a successful SIM Project.
Download Now
|
 |
|
|
|
Ogren Group Security Business Analysis: EC Suite |
|
|
The Ogren Group found that EC Suite, a major processor of credit card transactions for e-commerce organizations, saved considerable time and effort in their IT and security operations as a direct result of their preventive security measures and procedures using Lumension solutions.
Download Now
|
 |
|
|
|
Symark PowerBroker: Root Access Risk Control for the Enterprise |
|
|
Compliance efforts and security concerns have driven businesses to make substantial investments in threat control. Too often, however, these efforts pay far too little heed to the risks posed by poorly controlled access to administrative privilege in IT, which can have a hugely disproportionate impact on the business.
Download Now
|
|
|
|
|
The Good, Bad and Necessary:The Complete Guide to PCI 6.6 Success |
|
|
It seems that IT administrators and security professionals are always receiving notification of new rules, regulations and compliance codes that fall under their purview. And just when the necessary adjustments have been made, priorities shifted and new technology purchased, the rules are changed - yet again.
Download Now
|
|
|
|
|
Anatomy of a Web Hack - SQL Injection Explained |
|
|
While there are many types of attacks against your organization, none are as simple or as potentially destructive as what is known as a SQL injection. This attack is used to manipulate your organizations web applications to extract sensitive information straight out of your corporate databases and is one of the more popular attacks employed in identity theft incidents.
Download Now
|
|
|
|
|
|
|
|
|
The Need for Disk Encryption and Advanced Password Protection in Healthcare |
|
|
The data security challenges in the healthcare industry have never been as challenging as they are today. Not only must healthcare providers comply with HIPAA regulations concerning patient privacy and electronic data security, they must also guard against identity theft as well more complex scenarios of insurance data theft, medical identity theft and the adulteration of health records.
Download Now
|
 |
|
|
|
Keep Your Customer Data Safe: A Guide to Securing Web Applications |
| By : Veracode |
Published Date: Oct 17, 2008 |
|
With over 75% of new attacks targeted directly at the application layer and many high profile web attacks covered by the media, web application security has become top of mind for IT security managers. While the need for web security and web services security is certainly understood, the methods and approaches for web application security testing can seem daunting.
In this whitepaper learn how to secure web applications using web application security testing and understand the different approaches that leading organizations take to address website security.
Download Now
|
 |
|
|
|
Ensure Customer Confidence: PCI Guide for Merchants and Service Providers |
| By : Veracode |
Published Date: Oct 17, 2008 |
|
The PCI Data Security Standard (PCI DSS) delineates requirements that vendors must meet in order to conduct business transactions using payment cards. New PCI requirements that specifically focus on application security became mandatory in June 2008. With their own brands at risk, merchants and service providers must secure their applications from potential vulnerabilities to comply with PCI standards. This whitepaper helps Merchants and Service Providers understand and meet PCI DSS requirements.
Download Now
|
|
|
|
|
OCC Bulletin 2008-16: A Blueprint for Compliance |
| By : Veracode |
Published Date: Oct 17, 2008 |
|
The recent issuance of the OCC Bulletin 2008-16 alerted financial institutions to the risks posed by insecure. Historically, banks have lacked an effective and cost-efficient manner to analyze the security of software. Security testing has been limited to manual analysis by consultants, using internal teams with source code tools or trusting software vendors to test their own code. None of these approaches scale to cover entire application portfolios, and can add significant time and costs to projects. This whitepaper outlines how these limitations can be overcome by following five best practices that institutions can use to secure their applications.
Download Now
|
|
|
|
| |
|
|
|
Results 1 - 25 of 105 matches |
Sort Results By : Published Date | Title | Company name |
|
|
<< Start < Previous 1 2 3 4 5 Next > End >>
|
More Security Topics |
Access Control, Anti Spam, Anti Spyware, Anti Virus, Application Security, Auditing, Authentication, Biometrics, Business Continuity, Compliance, DDoS, Disaster Recovery, Email Security, Encryption, Firewalls, Hacker Detection, High Availability, Identity Management, Internet Security, Intrusion Detection, Intrusion Prevention, IPSec, Network Security Appliance, Password Management, Patch Management, Phishing, PKI, Policy Based Management, Security Management, Security Policies, Single Sign On, SSL, Secure Instant Messaging, Web Service Security, PCI Compliance, Vulnerability Management |
|
 |
|
RSS
