You are here: silicon.com > Resources > White Papers > Security > Security Administration > Security Management

Security Management White Papers

Responding to a Customer's Security Incidents - Part 1: Establishing Teams and a Policy

Tags:
security management

Overview A security incident response involves several aspects of preventive, detective, and recovery measures. A preventive measure primarily involves risk control that avoids or deters the occurrence of an undesirable event. Examples of preventive measures are passwords, keycards, badges, contingency plans, policies, firewalls, and encryption. A detective measure identifies the occurrence of an undesirable event. Examples of detective measures are visitor logs, audit trails, motion sensors, closed-circuit TV, and security reviews. Detective measures also provide a means for reporting the occurrence of events. A recovery measure is a risk control that will, in a traditional sense, include control policies, processes, or mechanisms that restore the integrity, availability, and confidentiality of information assets to their expected state. Examples of recovery measures are fault tolerance, backup, and disaster recovery plans.

Further White Paper Details
Publisher	Sun Microsystems	File Format	PDF
Date Published	March 2003
Format	White Papers
Topics	Security Management, Cost Control - Risk Mgmt.

Did you find this white paper useful? 3 out of 7 users found this white paper useful

Reading Uni halves costs with asset tracking

Other pluses are it helps the university comply with auditor requirements and can be used as a disaster recovery tool in the event of a fire by accurately listing what equipment is held by which department.

Channel:
Public Sector
Tags:
asset,
reading

Europe battling €100bn health fraud losses

As well as a large fine and the recovery of around £750,000 the NHS froze assets including eight houses and a Mercedes S class from that one rogue dentist. We measure to within 0.1 per cent. We have always believed that unless you can accurately...

Channel:
Law & Policy
Tags:
fraud,
nhs

Meta Group Quarterly: How regulation is driving IT strategy

One tool to help measure IT improvements is benchmarking. Leading IT executives use benchmarking to categorise performance into a baseline of measures that a performance improvement programme can act upon.

Channel:
Comment & Analysis

The Bloor Perspective: Governance checklist, back-up for utility computing and Nauticus

These activities allow IT management to plan, execute, measure and manage IT strategies, to keep them aligned with the business and to minimise the programme risks. The planning activity creates a programme of the IT projects and services that are...

Channel:
Storage

Siebel's poison pill

The company said it adopted the plan as a preventive measure against abusive takeover tactics and not in response to any particular proposal. The rights plan gives all Siebel shareholders as of 13 February 2003 the option to buy a new series of...

Channel:
Applications

World Cup security: Avaya poised to tackle DoS attacks

He said in a brief interview he was "extremely confident" that Fifa and its partners were taking all measures to prevent attacks. Kelly acknowledged the value of the information held by Fifa, which includes extensive personal details of applicants...

Featured White Papers

IDC reports on Novell's Secure Desktop Solution: A Modern-Day Marriage of Business Benefit and Risk Reduction

This IDC whitepaper examines how companies are turning to integrated security solutions, such as Novell Secure Desktop Solution, to deal with the vulnerability of mobile assets and implement a comprehensive security strategy.

Publisher:
Novell

Green IT: Reducing your Carbon Footprint with Citrix

Going green has become an imperative, not an option, for companies facing the new reality of balancing business objectives with dwindling environmental resources. Read on to learn how Citrix products can help bring environmental and organizational objectives into alignment by alleviating the energy impact of equipment needed to serve both the datacenter and the desktop.

Publisher:
Citrix Systems

Identity and Security Management and Strong Information Technology Goverance

A total identity and access management (IAM) – driven goverance, risk and compliance (GRC) solution should ensure foolproof and accurate measurements of policies and practises across the enterprise. This IDC white paper examines identity and security management (ISM) solutions and how these integrated offerings can play a key role in enforcing security compliance.