auditing
RSS auditing
Why you must rein in your power users
Comment The Payment Card Industries Data Security Standard (PCI-DSS), which any business taking credit or debit card payments should adhere to, recommends "auditing all privileged user activity" as well as avoiding the use of... [25 Nov 2009]
Auditing SQL Server for Change Tracking and Compliance
White Paper This white paper describes approaches to change auditing for the most widespread database management technology used by businesses today: Microsoft SQL Server. IT staff has to deal with regulations compliance. [13 Nov 2009]
Implementing Database Security and Auditing
White Paper This paper is about database security and auditing. By reading it one will learn many methods and techniques that will be helpful in securing, monitoring, and auditing database environments. The paper... [13 Nov 2009]
Guide to Unix/Linux Compliance Auditing: Solving Three Key Challenges
White Paper When Unix systems conquered market shares from the old mini-computer dinosaurs some twenty years ago, a radical shift towards standards-based software and networking was initiated in server landscapes. [13 Nov 2009]
Auditing Active Directory Changes Efficiently
White Paper If information is allowed to become stale, operations can be disrupted. However, for the same reasons that the information flow should not be allowed to stagnate, changes should not go unwatched. Those aspects of company life that IT is... [13 Nov 2009]
A Comparative Analysis of DAM Vs. Native Database Auditing Vs. Database Log Analysis With a SIEM or Log Manager
White Paper It does make a lot of sense to use a DAM with a SIM so one has the holistic picture of database events in tandem with other security events such as the OS, application logs, IDS's and firewalls. One can benefit from other features a SIM... [13 Nov 2009]
Tracking File Access for Auditing and Compliance
White Paper File servers can be among the most critical objects in the IT infrastructure of an enterprise. The importance of a particular server depends on the importance of the files kept there, and an organization generally has one or more file... [13 Nov 2009]
Critical Host Protection
White Paper This paper discusses protecting critical hosts and their associated data by controlling and auditing system configurations, monitoring and managing user activity and controlling change. It then discusses the next logical... [13 Nov 2009]
Data Security, Governance & Privacy: Protecting the Core of Your Business
White Paper At the same time, internal and external auditors are requiring detailed auditing reports to demonstrate compliance with key corporate governance and privacy regulations. Many companies are now implementing tighter... [13 Nov 2009]
Centralizing Identity and Access Management in Unix/Linux Environments: Using BoKS to Overcome the Inherent Security Gaps of NIS
White Paper Auditors require access controls and auditing capabilities to verify that only authorized users access data and that they do so in compliance with existing security policies. User administration in a large Unix/Linux... [13 Nov 2009]
Total Economic Impact of SQL Server 2008 Upgrade
White Paper SQL Server 2008 offers many features, including Resource Governor, data compression, transparent encryption, comprehensive auditing and enhanced mirroring that improve the performance, administration, integration,... [13 Nov 2009]
Automating HIPAA Compliance With Security and Configuration Auditing
White Paper The Health Insurance Portability and Accountability Act of 1996 (HIPAA) was designed to ensure that people who changed jobs or residences did not lose their health insurance. As the legislation was drafted, a rule was added to protect... [12 Nov 2009]
Top Ten Ways Shavlik Simplifies Configuration Management and Compliance Auditing
White Paper Amidst the publicity around data breaches at TJ MAXX((retail) and Heartland Payment Services (credit card processing), "Compliance" has become an urgent security topic. Yet there is no single definition of what "Compliance" really means. [12 Nov 2009]
The Presumption of Good Faith: Defending Your eRecords Retention Policies With Active Enforcement
White Paper Enterprise computer collection and auditing technology is required in order to apply eRecords management and eDiscovery processes in a consistent and systemized manner. With best-practices enterprise technology such as... [12 Nov 2009]
Automating IT Security Audits to Ensure Compliance
White Paper As a result, manual procedures for auditing IT security do not suffice. This paper describes the drivers for better IT security auditing, the problems with current approaches and how to leverage NetIQ... [12 Nov 2009]
