Security Policies

The Enterprise Strategy Group has been actively following the information security market since 2003. During this timeframe, ESG has undertaken numerous surveys involving thousands of enterprise security professionals and conducted hundreds of interviews with CISOs and other senior security executives. Over the past few years, ESG has noticed change in the information security air. Since enterprises face a much more dangerous threat landscape, they are actively evolving historical tactical security defenses into a more formal information security management framework. Based upon this evolutionary trend, ESG developed a 4-phased security management maturity model.

Powerful backup and flexible deployment options, including enhanced software, backup appliances, and backup solutions in the cloud, offer flexibility and choice in how you manage backup, allowing you to deploy a modern infrastructure that best suits your IT requirements, business needs, and environment. But how do you know which backup strategy is right for your business? Read this whitepaper to better understand which deployment option could best suit your needs.

Data leakage is a critical issue for CIOs. Companies are hitting the headlines for all the wrong reasons and human error is one of the biggest culprits. Organizations that get a firm grip on who's handling their data - as well as how and way - can mitigate the risk of sensitive data leakage and resultant reputation damage. Contextual information management solutions allow you to identify, monitor and protect data in use and in motion through deep content inspection, delivering context-aware security analysis and real time, multi-layered control.

Learn about the HIPAA/HITECH regulations affecting electronic protected health information (ePHI) and how to meet regulatory compliance through encryption of data at rest and encryption key management across the heterogeneous enterprise. Strong encryption, policy-based access controls, and secure key management provide a separation of duties and ensure consistency across both structured and unstructured data.

Data security and compliance issues need to be addressed to ensure sensitive data is safe in the cloud. Discover the cloud security challenges posed by Software as a Service (SaaS), Platform as a Service (PaaS) and Infrastructure as a Service (IaaS) environments and explore how encryption, policies, separation of duties and key management successfully protect data at rest.

The responsibilities of network administrators and security managers at today's mid-size companies can seem like a no-win situation. This white paper explores how your mid-sized company can have a Fortune 500 type security solution on a budget you can afford.

The difference between aware and unaware is just two little letters. However the difference that the reality of these two words actually means to IT security, business operations, revenues, and brand image can be enormous. Not knowing the vulnerability risks that your IT infrastructure face could result in a security breach with serious consequences.

Employee-owned mobile devices are in the enterprise to stay. But the explosion in the numbers and types of mobile devices spawns questions that organizations must address if they are to gain the most benefits possible from employees, their devices and the business network.

EMA's rigorous methodology confirms that Perimeter provides superior message security for companies of all sizes. EMA's profile validates our company strategy: our security DNA results in a superior message security solution that hosting-only vendors can't match. Read to find out more.

Adherence to data security policies and mandates for compliance or governance is the most important objective for executives in companies running SAP. But many reveal that their data security policies are lacking. Traditional methods of managing file transfers can't prevent or protect your enterprise from compliance violations: they're insecure, inefficient, and non-auditable. This situation leaves a serious gap in compliance strategies. Learn how to close this gap with managed file transfer.

Your enterprise has invested heavily in SAP. But data exchange restrictions can limit the ability of your chain supply to reach its maximum potential. Large data files, FTP spaghetti and unreliable network connections all limit your ability to send and receive information. Just one of these problems is enough to raise costs and risks, and create long waits for data to come through. Read the white paper to find out how Managed File Transfer ensures your data flow is secure and speedy.

In 2011, malnets (malware networks) emerged as the next evolution in the threat landscape. These infrastructures last beyond any one attack, allowing cybercriminals to quickly adapt to new vulnerabilities and repeatedly launch malware attacks. By exploiting popular places on the Internet, such as search engines, social networking and email, malnets have become very adept at infecting many users with little added investment.

Whether your organization is considering a DLP solution or has already implemented one, this White Paper provides 5 simple but critical reasons why you need to involve the user in your overall data loss prevention strategy.

96% of data leaks are caused by inadvertent mistakes by the authorized user. Follow these 5 best practices to enable your users to be a first line of defense against data loss.

Aberdeen Group releases new research findings that leading DLP performers are up to 3 times more likely to be using data classification with their DLP solutions. Discover why data classification is a crucial piece of an effective data loss prevention solution, and how leading companies, like Nokia, are leveraging it to protect sensitive enterprise information.

A Next-Generation IPS (NGIPS) offers a logical and essential progression of capabilities needed to protect networks from emerging threats. Pioneered by SourcefireŽ, and now endorsed by Gartner, the NGIPS builds on typical IPS solutions by providing contextual awareness-about network activity, systems and applications, people, and more-to promptly assess threats, ensure a consistent and appropriate response, and reduce an organization's security expenditures. The purpose of this paper is: . To describe why NGIPS is critical in defending against today's threat landscape . To list the essential ingredients of a NGIPS solution, as defined by Gartner . To map Gartner's requirements against Sourcefire's NGIPS offering . To contrast Sourcefire's NGIPS against a typical, first-generation IPS

Security Explorer provides IT administrators with one platform to completely manage access controls and security across a Windows network environment.

This paper examines how Oracle Advanced Security provides transparent, standards-based security that protects data through data-at-rest encryption, network encryption, and strong authentication services.

Download this white paper, to learn how you can reduce the risk of hackers finding your site and attacking it by using automated vulnerability assessments to identify exploitable weaknesses and take corrective action.

This white paper explains the licensing and proper use of Symantec SSL Certificates for securing multiple Web servers and/or multiple domains and subdomains in the network configurations.

This paper examines how recent trends in Internet trust marks can help restore confidence in online shopping, and as concluded by at least one recent study, even induce those who do shop to spend more.

Symantec Extended Validation (EV) SSL Certificates can be a key factor in helping increase customer confidence during online business transactions. More confidence can mean more conversions for customers with EV SSL certificates.

Download this whitepaper to learn how Bit9 Parity Suite extends threat detection to endpoints and provides the information the Security Information and Event Management system requires to live up to its full potential.

In this whitepaper get the answers to the open gaps left in the WikiLeaks story and learn how you can prevent insider threats that are just as detrimental in your organization.

Read this white paper from IBM to learn about applying predictive analytics to claims management, including the typical ROI achieved, how embedded analytics improves decision making, and technology components of a predictive analytics solution.