Home >
> PCI Compliance |
 |
|
|
|
|
 |
|
Results 1 - 25 of 105 matches |
Sort Results By : Published Date | Title | Company name |
|
|
|
|
|
|
A Focus on Security Yields Compliance for Free |
| By : Thales |
Published Date: Apr 21, 2009 |
|
Many senior executives are realizing that weak or no information security will result in substantial financial losses, while compliance costs are high and threaten to go higher. Yet, compliance with a law or regulation does not equate to security.
Download Now
|
 |
|
|
|
A User-Centric Security Approach for the Dynamic Enterprise |
|
|
Security solutions must be tied to both high-level corporate goals and to everyday end-user realities as a result of the potential for increased risk to enterprise assets. One recent and promising approach to reducing the risk associated with fast-evolving end-user realities is to reinforce security closer to enterprise end users. In practice, that means reinforcing security at the points where end users connect to the corporate network and reinforcing security for mobile users’ communications.
Download Now
|
 |
|
|
|
|
|
|
|
Achieving PCI Compliance for Privileged Password Management & Remote Vendor Access |
|
|
Though PCI compliance is not a government driven requirement such as Sarbanes Oxley and HIPAA, non-compliance under PCI can have a devastating impact on any enterprise that relies on credit card transactions. Your contract with credit card companies requires that as an organization you comply with PCI. Non-compliance with PCI can result in specific contractual penalties and/or revocation of your rights as an enterprise to process credit card transactions.
Download Now
|
 |
|
|
|
Achieving PCI Compliance with Log Management |
| By : SenSage |
Published Date: Jun 30, 2008 |
|
PCI DSS states that logging mechanisms to track user activities are critical. Learn how log management can help companies track, monitor and transform log data into actionable information. Identify security threats, monitor controls, conduct investigations, satisfy auditors, answer legal requests and manage security.
Download Now
|
 |
|
|
|
Anatomy of a Web Hack - SQL Injection Explained |
|
|
While there are many types of attacks against your organization, none are as simple or as potentially destructive as what is known as a SQL injection. This attack is used to manipulate your organizations web applications to extract sensitive information straight out of your corporate databases and is one of the more popular attacks employed in identity theft incidents.
Download Now
|
 |
|
|
|
|
|
Automating Code Reviews: How to Manage Application Risk on a Shrinking Budget |
| By : Veracode |
Published Date: Oct 16, 2008 |
|
In a tightening economy many organizations are faced with a “do more with less” mandate on their budgets and their security strategies. On-demand application security testing offered as an outsourced service – based on binary analysis and multiple scanning technologies – is a major step toward reducing risk in applications developed, in house, as well as applications purchased from third party vendors. Learn how moving to a SaaS (Software as a Service) model for application security can automate your code reviews and reduce your risk, without taxing your budget.
Download Now
|
 |
|
|
|
Automating Vulnerability Management for PCI DSS Compliance |
| By : GFI |
Published Date: Jul 06, 2007 |
|
This white paper identifies the problems encountered in addressing network security risks through vulnerability management. It describes how automated vulnerability management contributes to compliance with industry standards such as the Payment Card Industry Data Security Standard (PCI DSS) and assists you in proactively identifying security weaknesses before these are exploited.
Download Now
|
 |
|
|
|
|
|
Best Practices for Audit and Compliance Reporting for IBM AS/400 (System i) |
|
|
Compliance with regulations such as Sarbanes-Oxley, PCI, HIPAA and GLBA requires regular audit reporting against critical information technology (IT) assets. This whitepaper outlines the key items that need to be reviewed on AS/400 (System i) for both configuration data and transactional log information from the audit journal. The white paper also provides guidance on integrating the AS/400 with Security Information Management (SIM) solutions.
Download Now
|
 |
|
|
|
|
|
Complying with the Payment Card Industry's Data Security Standard |
|
|
The Payment Card Industry Data Security Standard (PCI DSS) was drawn up in order to reduce leakage and inappropriate use of credit card information. It contains over 100 clear information security requirements for all companies who process, store or transfer data about cardholders: banks, processing centers, service providers, retail stores, e-commerce businesses, etc.
Download Now
|
 |
|
|
|
Continuous Testing of Product Web Applications |
| By : Cenzic |
Published Date: May 19, 2008 |
|
This white paper highlights Cenzic’s recommendation of a process of continuous assessment for applications in development and production environments -- a process that can equally apply to Intranet and public facing applications alike. Continuous testing can now be easily and safely done in a virtualized environment; no longer putting production web applications at risk. Companies can now easily and quickly, add vulnerability testing to their list of activities for all of their Web applications including production applications. Using a testing methodology across a company’s Web application portfolio will significantly enhance the security of all Web applications.
Download Now
|
 |
|
|
|
|
|
Data Leakage Landscape: Where Data Leaks and How Next Generation Tools Apply |
|
|
Like the steady drip from a leaking faucet, everyday data leaks are making headlines more often than the nefarious attack scenarios around which organizations plan most, if not all, of their data leakage prevention methods. In this paper, we map these leakage points with regulations and best practices. Protection mechanisms can be simplified by breaking them into five major categories: classic malware protections to prevent system infections, enforceable access controls, encryption, filtering for data sensitive data types being sent out of the organization, and education.
Download Now
|
 |
|
|
|
Demystifying Compliance |
|
|
Compliance is high on the IT agenda today, yet no one seems to have a clear picture of what it really involves. Inconsistent interpretation by different auditors, regulators and vendors means what worked in one year's audit could fail in the next. This whitepaper is designed to help Demystify Compliance as it relates to IT and give you some simple recipes for analyzing your own environment in the light of specific mandates.
Download Now
|
 |
|
|
|
|
|
|
|
|
|
Embracing PCI: Making It Work For You |
|
|
With the recent rise in data breaches and identity thefts, implementing a sound information security program is no longer optional. Companies processing credit card information are encouraged to embrace and implement sound data protection strategies to protect the confidentiality and integrity of payment information. Some of the challenges for achieving PCI compliance are outlined in this white paper, as well as successful tips to help organizations navigate through them.
Download Now
|
 |
|
|
|
Ensure Customer Confidence: PCI Guide for Merchants and Service Providers |
| By : Veracode |
Published Date: Oct 17, 2008 |
|
The PCI Data Security Standard (PCI DSS) delineates requirements that vendors must meet in order to conduct business transactions using payment cards. New PCI requirements that specifically focus on application security became mandatory in June 2008. With their own brands at risk, merchants and service providers must secure their applications from potential vulnerabilities to comply with PCI standards. This whitepaper helps Merchants and Service Providers understand and meet PCI DSS requirements.
Download Now
|
|
|
|
| |
|
|
|
Results 1 - 25 of 105 matches |
Sort Results By : Published Date | Title | Company name |
|
|
<< Start < Previous 1 2 3 4 5 Next > End >>
|
More Security Topics |
Access Control, Anti Spam, Anti Spyware, Anti Virus, Application Security, Auditing, Authentication, Biometrics, Business Continuity, Compliance, DDoS, Disaster Recovery, Email Security, Encryption, Firewalls, Hacker Detection, High Availability, Identity Management, Internet Security, Intrusion Detection, Intrusion Prevention, IPSec, Network Security Appliance, Password Management, Patch Management, Phishing, PKI, Policy Based Management, Security Management, Security Policies, Single Sign On, SSL, Secure Instant Messaging, Web Service Security, PCI Compliance, Vulnerability Management |
|
 |
|
RSS
