Manage

Learn to apply best practices and optimize your operations.

Audit and compliance planning

Security management plan reveals essential business security upgrades

As companies create their security management plan for the coming year, they should look to upgrades in Linux and Windows operating systems, Adobe applications and Internet browsers to improve their overall security position. Continue Reading
PCI DSS requirement: Maintaining a vulnerability management program

The third PCI DSS focus area requires antivirus software, secure coding practices, patch management and change control processes be in place. Continue Reading
Inside Ryder Truck Rental's PCI compliance project

In 2007, Julio Gonzalez, director of IT, GRC and network operations at Ryder Truck Rental, kicked off a PCI project aimed at addressing any credit card exposures. Continue Reading
PCI DSS requirement: Building and maintaining a secure network

The first PCI focus area requires a set of documented configuration standards, perimeter and endpoint protection. Continue Reading
Five things to do before your first PCI DSS compliance audit

Put these steps in motion before your organization's first PCI DSS compliance audit. Continue Reading
How to choose an external compliance auditor

Headed for a PCI DSS, HIPAA or Sarbanes-Oxley audit? Picking the right auditor is a key decision; select one who becomes a business partner, ally and educator.Continue Reading
PCI DSS: Writing an information security policy

The final set of PCI requirements relates to maintaining a security policy, and also addresses awareness training, personnel screening and managing service provider relationships.Continue Reading
PCI DSS requirements include strong access control procedures

The fourth focus of PCI DSS requirements governs how organizations enable and restrict access to cardholder data and limit physical access to cardholder data.Continue Reading
Midmarket security governance: Develop an IT engagement model

Midmarket IT organizations may follow an engagement model that facilitates the integration of information security into the business.Continue Reading
Fact or fiction: Building upon existing compliance infrastructure

In a fast-paced "fact or fiction" format, Burton Group's Trent Henry will discuss the must-have compliance technologies and how an organization can piggy-back existing infrastructure to satisfy the regulators.Continue Reading
Consider a compliance-driven security framework

Midmarket companies bound to regulations such as PCI DSS, HIPAA and Sarbanes-Oxley should consider using these requirements as the basis for their security programs.Continue Reading
When filling out the PCI DSS questionnaire, is it important to provide documentation?

It's time to fill out the PCI DSS questionnaire, but management has said that it's no big deal, there's no need to provide accompanying documentation. But what will happen when an auditor comes knocking? Security management expert Mike Rothman ...Continue Reading

Cybersecurity threats on the rise, prey on human nature

Cybersecurity attacks continue to rise, taking advantage of network vulnerabilities -- and human ones. First National Technology ...

Palo Alto launches new version of Demisto SOAR platform

New features to the Demisto platform include a customizable user interface, threat intelligence, database scaling and a mobile ...

Twitter 2FA data 'inadvertently' used for advertising

Twitter used two-factor authentication information, including email addresses and phone numbers, to target ads for an unknown ...

SearchCloudSecurity

Defining and evaluating SOC as a service

As cloud use increases, many enterprises outsource some security operations center functions. Evaluate if SOCaaS is the best ...

How to beef up S3 bucket security to prevent a breach

Security teams have plenty of tools at their disposal to help their organizations achieve and maintain S3 bucket security. Learn ...

How security teams benefit from traffic mirroring in the cloud

Enterprises with the resources to deploy traffic mirroring are gaining security benefits. Frank Siemons explains how traffic ...

SearchNetworking

Enterprises choosing SD-WAN routing over edge routers

Revenue from SD-WAN sales surged by 23% in the second quarter as enterprises opted to replace traditional edge routers with ...

Security, business agility kindle network automation adoption

IT teams are confused by the multiple automation strategies available, but they're still adopting automation with hopes it will ...

How to develop and implement a network security plan

When formulating a focused network security plan, you'll need to address specific questions about outbound traffic, user logins ...

SearchCIO

Cloud migration failures and how to prevent them

Companies are moving more applications than ever to the cloud, but many of these initiatives fail. Learn how to avoid making your...

Achieving business value from cognitive collaboration

CIOs can take advantage of AI to improve employee and customer collaboration with cognitive capabilities that are now available ...

3 ways to use quantum technology features in your enterprise

While quantum computers aren't available just yet, there are other properties to consider, such as quantum sensors and quantum ...

SearchEnterpriseDesktop

Troubleshoot Bluetooth connection problems in Windows 10

Bluetooth connection problems in Windows 10 are fairly common. Fortunately, there are a variety of troubleshooting steps that IT ...

HP Inc. laying off up to 9,000 workers in latest reorg plan

With its printer and printing supplies business fortunes continuing to slide, HP Inc. is undergoing a major reorganization that ...

AI sharpens unified endpoint management tools and apps

Endpoint management is never simple, but AI can help. In this handbook, learn how AI in UEM tools can significantly improve ...

ComputerWeekly.com

UK government confirms gigabit broadband roll-out, rows back on 2015 delivery commitment

UK government confirms plans to roll out gigabit-capable broadband across the UK, yet quietly shelves previous pledge to do so by...

Private equity swoops on Sophos

British cyber security star picked up by technology sector investors for $3.9bn

Researchers reveal the cyber campaign that built China's new airliner

CrowdStrike has published details of a coordinated campaign of cyber espionage and hacking, forced technology transfer and ...

Manage

Audit and compliance planning

Security management plan reveals essential business security upgrades

PCI DSS requirement: Maintaining a vulnerability management program

Inside Ryder Truck Rental's PCI compliance project

PCI DSS requirement: Building and maintaining a secure network

Five things to do before your first PCI DSS compliance audit

How to choose an external compliance auditor

PCI DSS: Writing an information security policy

PCI DSS requirements include strong access control procedures

Midmarket security governance: Develop an IT engagement model

Fact or fiction: Building upon existing compliance infrastructure

Consider a compliance-driven security framework

When filling out the PCI DSS questionnaire, is it important to provide documentation?

-ADS BY GOOGLE

SearchSecurity