security audit
RSS security auditAudit Readiness for PCI (Payment Card Industry) Data Security Standard Compliance
White Paper Additional penalties can range from increased audit requirements to retraction of credit card processing privileges. Retailers that fail Payment Card Industry Data Security Standard (PCI DSS) audits can... [13 Nov 2009]
Solving the Top IT Security & Audit Issues
White Paper Several macro trends are driving the increased IT audit pressure including new government regulations, globalization, and the need to improve energy efficiencies. The scrutiny is translating into tougher IT audits,... [13 Nov 2009]
Monitoring Active Directory for Security and Compliance: Bridging the Gaps in the Native Audit Log
White Paper Much of the security and control of an enterprise IT environment rests on Active Directory. Even VPNs, extranets and internal network security technologies all use Active Directory for policy and... [13 Nov 2009]
Reducing the Scope of Your PCI Audit: Innovative Network Segmentation Using Host Intrusion Defense
White Paper This white paper discusses the methods and merits of traditional approaches to network segmentation as a means to reduce the scope of the PCI audit. It introduces host intrusion defense - which includes a software... [13 Nov 2009]
10 Reasons You Absolutely Need an Active Directory Reporting Solution to Pass Audits, Improve Security and Reduce Costs
White Paper This paper describes 10 types of reports that are indispensable for managing AD security, satisfying audit requests, and meeting compliance requirements. One need to make sure that organization can... [13 Nov 2009]
Microsoft Online Services Security and Compliance Operational Certification Initiative
White Paper In addition to ensuring that compliance expectations are continually achieved, this methodology has helped produce SAS 70 Type I and II attestations, ISO 27001 certifications, as well as streamlining the work associated with meeting... [13 Nov 2009]
Creating and Implementing an Audit Strategy for Exchange
White Paper This paper provides practical guidance to IT administrators on creating and implementing an audit strategy for Exchange to protect business from unauthorized access to information, compromise of user identity, and... [13 Nov 2009]
SQL Server Anti-Forensics: Techniques and Countermeasures
White Paper It takes a close look at SQL Server anti-forensic techniques, then follow with a discussion of how to protect audit trail and evidence in the event one of systems is attacked. This paper attempts to get ahead of the... [13 Nov 2009]
Why Is LDAP Failing Audits?
White Paper However, the protocol lacks any inherent support for authentication and authorization, and it is difficult to produce audit trails keeping track of changes to user and host definitions across the system. [13 Nov 2009]
PCI Data Security: Meeting the Challenges of PCI DSS Payment Card Security
White Paper The PCI process can be confusing for companies preparing for their first audit. This white paper discusses PCI compliance and answers some of the common questions companies have about PCI audits. In years of experience... [13 Nov 2009]
Simplifying the Scope of the PCI Audit: How an Identity-Aware Network Helps Retailers Achieve Compliance
White Paper Retailers recognize that failure to satisfy the Payment Card Industry Data Security Standard (PCI DSS) requirements can lead to financial penalties and leave the organization vulnerable to attack. The threshold for PCI... [13 Nov 2009]
Alliance Encryption Server for System i
White Paper The Alliance Encryption Server for System I incorporates encryption key management, compliance audit trails, and authentication of client applications. The Alliance Encryption Server for System i solution provides... [13 Nov 2009]
Redefining Software Security Audit
White Paper This paper discusses a critical part of that process, software security audit, and how the Ounce toolset can help auditors evaluate, manage, and substantially reduce the business risks posed by software. [12 Nov 2009]
Simplifying Operational Security: Securing Configuration Automation for IT Audit Readiness
White Paper Shavlik Technologies provides innovative security software solutions that simplify the most complex of IT security related challenges. Shavlik's products are widely used around the world, providing... [12 Nov 2009]
Managing Identity Theft Risk in Software: The Need for Software Risk Analysis
White Paper Ounce Labs offers organizations a way to automatically audit their software in order to certify adherence to security policies and identify areas of potential vulnerability. By scanning the source code... [12 Nov 2009]
