IT GRC Forum

FacebookJoin our Linkedin Group!Follow us on Twitter!Subscribe to our Feeds!

www.agiliance.comPreparing for PCI DSS 2.0   

On January 1, 2011 the Payment Card Industry (PCI) Data Security Standard (DSS) version 2.0 took effect. The new requirements represent a daunting task when it comes to improving an organization's existing security policies to include virtualized environments, policy governance, risk remediation, and 100% asset coverage.

Read more...
 

BrainloopManaging Information Risk in the Extended Enterprise: Why Corporate Compliance and IT Security Must Join Forces

One of the biggest sources of information risk companies face today is collaboration with externals. New tools have made document collaboration much easier and more accessible, but how does business take advantage of the benefits of online document collaboration tools, while avoiding the compromise of confidentiality of critical business information?

Read more...
 

www.protegrity.comProtegrity Data Security Platform Executive Summary

The Protegrity Data Security Platform design is based on a hub and spoke deployment architecture. The Enterprise Security Administrator (ESA) enables the authorized Security Officer to determine and set a unique enterprise wide Data Security Policy, and is the management tool (console) for the central control over policy, keys, and reporting.

Read more...
 

www.protegrity.comProtegrity Tokenization - Securing Sensitive Data for PCI, HIPAA and Other Data Security Initiatives

Protegrity has invented a new tokenization technology that simplifies and dramatically lowers the cost of deploying this mode of data protection. Tokens are cost effective because they don't require security controls for protection – they're not sensitive data, they only represent that data. Yet tokens are transparent to most applications and business processes.

Read more...
 

www.intel.comIntel® Expressway Tokenization Broker Data Sheet

Details how organizations can reduce PCI DSS scope and lower costs, by leveraging Intel® Expressway Tokenization Broker to manage Primary Account Number (PAN) data. Tokenization Broker is offered in conjunction with our industry-leading Intel® Expressway Service Gateway.

Read more...
 

AgilianceContinuous Compliance: A Better, Faster, Cheaper Way to Comply

Businesses today are under increased pressure to cut costs, optimize performance, and reduce risk. The need to meet these challenges is particularly apparent in the area of regulatory compliance. Historically, businesses responded to emerging regulatory requirements by assigning a dedicated team to handle every new mandate, each with its own specific team, mission, and project scope. But as regulations continue to proliferate and evolve, this approach is directly at odds with business requirements to improve performance, reduce costs, and more effectively manage risk. But what is the alternative, given the amount of effort required to manage compliance in a rapidly changing and increasingly complex regulatory landscape?

Read more...
 

www.intel.comPCI Solution Brief: Reducing PCI DSS Scope: The Gateway Approach

Organizations that process credit card information are confronted with the issue of PCI DSS "scope", which refers to all components of a computing network that directly or indirectly handle card data. These network components are a primary focus of PCI DSS regulation, compliance, and assessment.

Read more...
 

AgilianceThe Big Picture: Beyond Compliance to Risk Management

Regulatory compliance is dynamic, costly, and checking the box is no longer an option. Compliance mandates are global and require exposure by law when breaches do occur. However, many organizations do not tie risk management and compliance together. In fact, every day organizations make countless business decisions aimed to boost organizational performance. Unfortunately, most of these decisions are made without knowing the real tradeoffs against risk exposure.

Read more...
 

www.intel.comQSA Tokenization Broker Assessors Guide

The QSA Tokenization Broker Assessors Guide describes how Intel® Expressway Tokenization Broker specifically addresses more than 200 PCI DSS requirements. This document was written and edited by actual PCI Compliance Assessors.

Read more...
 

AgilianceSituational Awareness: Security Risk Measurement and Continuous Monitoring

As computer software has become the backbone of modern civilization, organized cyber criminals, state sponsored cyber attackers, and terrorist organizations try to exploit design flaws and weaknesses in the applications in order to generate revenue and carry out criminal activities. The growing number of cyber attacks has become one of the most serious economic and national security threats our nation faces.

Read more...
 

AgilianceA Risk-Based Approach to Security: Enabling an Automated Risk-Based Response to Security Threats

As the number and complexity of security threats continue to grow exponentially and the strike time continue to shorten, security organizations find themselves unable to scale their response using existing resources, processes, and tools. To overcome the challenges, the Chief Information Security Office (CISO) is adopting a "risk-based approach to security".

Read more...
 

DatasheetThe Impact of COBIT on the CIO

In one of the most controversial cybercrime cases in recent years, Gary McKinnon, a UK based systems administrator, was accused by the US government of hacking into dozens of US military and NASA computers between February 2001 and March 2002. Dozens of critical systems were rendered inoperable, US Naval Air Station files were altered and deleted, and an entire network of 2,000 US Army computers was brought down.

Read more...
 

DatasheetChallenges to PCI compliance

With the burgeoning popularity of online shopping and banking, credit card transactions are flourishing. Consequently, credit card fraud is on the rise.To combat this growing menace, the Payment Card Industry Data Security Standard (PCI DSS) was developed.

Read more...
 

CA TechnologiesThe role of identity and access management in achieving "continuous compliance"

There's a tremendous focus today on complying with regulatory mandates, keeping IT systems secure, and ensuring privacy for confidential enterprise and customer information.

Read more...
 
Page 4 of 22

  Most Popular | All