IT GRC Forum

FacebookJoin our Linkedin Group!Follow us on Twitter!Subscribe to our Feeds!® Expressway Tokenization Broker Data Sheet

Details how organizations can reduce PCI DSS scope and lower costs, by leveraging Intel® Expressway Tokenization Broker to manage Primary Account Number (PAN) data. Tokenization Broker is offered in conjunction with our industry-leading Intel® Expressway Service Gateway.


AgilianceContinuous Compliance: A Better, Faster, Cheaper Way to Comply

Businesses today are under increased pressure to cut costs, optimize performance, and reduce risk. The need to meet these challenges is particularly apparent in the area of regulatory compliance. Historically, businesses responded to emerging regulatory requirements by assigning a dedicated team to handle every new mandate, each with its own specific team, mission, and project scope. But as regulations continue to proliferate and evolve, this approach is directly at odds with business requirements to improve performance, reduce costs, and more effectively manage risk. But what is the alternative, given the amount of effort required to manage compliance in a rapidly changing and increasingly complex regulatory landscape?

Read more... Solution Brief: Reducing PCI DSS Scope: The Gateway Approach

Organizations that process credit card information are confronted with the issue of PCI DSS "scope", which refers to all components of a computing network that directly or indirectly handle card data. These network components are a primary focus of PCI DSS regulation, compliance, and assessment.


AgilianceThe Big Picture: Beyond Compliance to Risk Management

Regulatory compliance is dynamic, costly, and checking the box is no longer an option. Compliance mandates are global and require exposure by law when breaches do occur. However, many organizations do not tie risk management and compliance together. In fact, every day organizations make countless business decisions aimed to boost organizational performance. Unfortunately, most of these decisions are made without knowing the real tradeoffs against risk exposure.

Read more... Tokenization Broker Assessors Guide

The QSA Tokenization Broker Assessors Guide describes how Intel® Expressway Tokenization Broker specifically addresses more than 200 PCI DSS requirements. This document was written and edited by actual PCI Compliance Assessors.


AgilianceSituational Awareness: Security Risk Measurement and Continuous Monitoring

As computer software has become the backbone of modern civilization, organized cyber criminals, state sponsored cyber attackers, and terrorist organizations try to exploit design flaws and weaknesses in the applications in order to generate revenue and carry out criminal activities. The growing number of cyber attacks has become one of the most serious economic and national security threats our nation faces.


AgilianceA Risk-Based Approach to Security: Enabling an Automated Risk-Based Response to Security Threats

As the number and complexity of security threats continue to grow exponentially and the strike time continue to shorten, security organizations find themselves unable to scale their response using existing resources, processes, and tools. To overcome the challenges, the Chief Information Security Office (CISO) is adopting a "risk-based approach to security".


DatasheetThe Impact of COBIT on the CIO

In one of the most controversial cybercrime cases in recent years, Gary McKinnon, a UK based systems administrator, was accused by the US government of hacking into dozens of US military and NASA computers between February 2001 and March 2002. Dozens of critical systems were rendered inoperable, US Naval Air Station files were altered and deleted, and an entire network of 2,000 US Army computers was brought down.


DatasheetChallenges to PCI compliance

With the burgeoning popularity of online shopping and banking, credit card transactions are flourishing. Consequently, credit card fraud is on the rise.To combat this growing menace, the Payment Card Industry Data Security Standard (PCI DSS) was developed.


CA TechnologiesThe role of identity and access management in achieving "continuous compliance"

There's a tremendous focus today on complying with regulatory mandates, keeping IT systems secure, and ensuring privacy for confidential enterprise and customer information.


DatasheetHow to Secure IT Assets with a Business Continuity Management Plan

In 2005, an American broadband and telecommunications company faced a major service outage in Los Angeles, California. A computer system's problem led to the corruption of the company's main software services environment. Over 150,000 customers lost land-line, Internet and some mobile phone and 911 services.


CA TechnologiesCA Point of view: Content-Aware Identity & Access Management

CA Content-Aware IAM helps you respond to the key IT drivers above. It helps to automate identity-based security processes (such as user provisioning, entitlement certification, etc.), which increases efficiency and reduces IT costs.


DatasheetExpanding Regulatory Norms Present New Compliance Challenges for the Healthcare Industry

The US healthcare industry is rigorously monitored against stringent regulatory norms. The industry needs to comply with a variety of standards including the Health Insurance Portability and Accountability Act (HIPAA), Centers for Medicare and Medicaid Services (CMS), American Society for Testing and Materials (ASTM), International Conference on Harmonization (ICH), International Electrotechnical Commission (ISO/IEC), and Joint Commission on Accreditation of Healthcare Organizations (JCAHO).


DatasheetBuilding Stronger Information Security with NIST

In 2009, the FBI began investigating a breach of confidential records from the State of Virginia's Prescription Monitoring Program. Hackers had allegedly broken into the system, stolen 8.3 million patient records and were demanding a $10 million ransom to return the data. 1 Earlier that year, the U.S. Federal Aviation Administration had reported a similar incident wherein one of its systems had been hacked into, compromising the personal information of 45,000 employees.

Page 5 of 23

  Most Popular | All