You are here: silicon.com > Resources > White Papers > Security > Security Administration > Security Standards

Security Standards White Papers

NIST and ISO 17799: Regulations and Security Compliance for Commercial Organizations

Overview Generally, commercial organizations do a thorough job of applying technical security controls, but are less meticulous in developing thorough managerial and procedural controls. They also often lack the repeatable, formal auditing of these security controls. In contrast, government agencies often use well-established procedures for creating and auditing security managerial and procedural controls, but lack the tactical implementation of technical controls. Government agencies address compliance with federal security guidelines by conducting Certifications and Accreditations (C&As).

Further White Paper Details
Publisher	NetSec	File Format	PDF
Date Published	March 2004	Downloads	6
Format	White Papers
Topics	Security Standards

Did you find this white paper useful?

NAC 2.0: A new model for a more secure future

Publisher:
Sophos

Reducing Total Cost of Security Ownership

Publisher:
SonicWALL

Take a holistic approach to business-driven security

Publisher:
IBM

Symantec Control Compliance Suite (CCS) 9.0 Sneak Peek

Publisher:
Symantec

Extending PCI Compliance to the Mobile Workforce

Publisher:
Fiberlink Communications

Hacker contest aims for better security

Cowan said: "The offensive attackers have been doing the best code auditing. The Root Fu contest pits eight teams - including some experts from US federal agencies - against each other in a test of network defence and hacking skills.

Channel:
Security Strategy

The Bloor Perspective: Parmalat makes a ham-fist of it, Offshoring and Customs and Excise

Whether or not their reputations are destroyed as a result of the Parmalat affair, it highlights the risks the accounting profession runs both in establishing international partnerships to take-on the complex business of auditing companies with...

Channel:
IT Director

Cuba travel sites embargoed by US

Tourism, according to federal guidelines, is not allowed. The reason lies in a section of federal law prohibiting people living under US jurisdiction from doing business with those on the OFAC's list of "specially designated nationals", a category...

Channel:
Law & Policy
Tags:
ofac,
blacklisted,
cuba

Compliance made easy

BI can help with auditing too. Conducting analytics for forward-looking statements is one way to meet compliance requirements but regulators also need companies to look backwards. Diagonal's Whitby suggests companies could use alerting systems that...

US Homeland Security CIO blamed for security "incidents"

The congressional panel that convened Wednesday's hearing has been probing the extent to which various federal agencies are equipped to handle cyberthreats. At an afternoon hearing in Washington held by a subcommittee that deals with cybersecurity...

Channel:
Security Strategy
Tags:
cio,
security,
dhs

What price compliance?

An essential investment that companies must make in their compliance efforts is in tools for automating and improving auditing and reporting capabilities. Organisations taking just a tactical or piecemeal approach by considering each regulation...

Virtualisation: Architectual Considerations and other Evaluation Criteria

In the past several years, server virtualisation technology has moved quickly and firmly into the IT mainstream. Of the many approaches to system virtualisation available in the market today, VMware's hypervisor architecture has gained the greatest market acceptance. This paper examines the architectural issues, solution support, and enterprise readiness required when deploying such a virtualisation solution.

Publisher:
EMC

Getting Started with Master Data Management

Master data management forms part of an overall enterprise governance program that aims to establish trusted data throughout the enterprise. This white paper from Mike Ferguson of Intelligent Business Strategies defines master data, examines why it is needed, and explores methodologies for implementing master data management.

Publisher:
DataFlux

Optimising Storage with Global File Virtualisation

This white paper will provide an overview on how Rainfinity Global File Virtualisation virtualises unstructured data environments and moves data -including active, open files-without disruption to users or applications. Rainfinity is the only enterprise-class file virtualisation solution, and delivers complete NAS optimisation across geterogeneous environments, such as NAS, CAS, and file servers.

Publisher:
EMC

Also on silicon.com

Site Navigation:

Security Standards White Papers

NIST and ISO 17799: Regulations and Security Compliance for Commercial Organizations

Quick Sitemap Links:

About Us

Search

Blogs

Verticals

Advertising Features

CNET Networks in Europe

CNET Networks in the United States

CNET Networks in Asia Pacific