Using Information Shield Publications for ISO/IEC 27001 Certification

Microsoft FDCC Webcast Series: Do It Right: Log in as Normal User

Download

FDCC requires that the typical user run as Normal User whenever possible; without this, a managed environment is practically impossible. For organizations that have given Local Administrator rights to their...

• Publisher:
• Microsoft

• Tags:
• security standards

Gartner Report: Magic Quadrant for Secure Web Gateway, 2007

Download

Interested in what analyst firm Gartner has to say about Blue Coat Secure Web Gateway solutions? Read its "Magic Quadrant for Secure Web Gateway, 2007" report to find out....

• Publisher:
• Blue Coat Systems

• Tags:
• security standards,
• gateway,
• filtering,
• form

Diffie-Hellman Key Exchange -- A Non-Mathematician's Explanation

Download

The Diffie-Hellman algorithm is one of the most common protocols used in networking today. An understanding of its underlying protocols and processes helps a great deal when trouble-shooting a system....

• Publisher:
• Global Knowledge

• Tags:
• security standards,
• protocols,
• deal,
• algorithm

Segregation of Duties in the Real World: Risk-Based SoD Management With Continuous Monitoring Lowers Compliance Costs

Download

Segregation of duties in the real world demands top-down management that eliminates financial risk without adding overhead costs or extinguishing ERP-fueled efficiency gains of the last decade. Fortunately, auditors and...

• Publisher:
• Oversight Systems

• Tags:
• security standards

Encryption Essential to Meet Information Security and Compliance Initiatives

Download

California's unique notice of security breach act (frequently called "S.B. 1386") and the Gramm-Leach-Bliley Act of 1999 (also known as "The Financial Services Modernization Act") are two major laws that...

• Publisher:
• PC Guardian Technologies

• Tags:
• security standards,
• act,
• sarbanes oxley,
• health

PCI Policy Compliance Using Information Security Policies Made Easy

Download

Many organizations are building or updating written information security policies in response to the newly updated Payment Card Industry Data Security Standard (PCI-DSS). Written information security policies are fundamental to...

• Publisher:
• Information Shield

• Tags:
• security standards

Using Information Shield Publications for ISO/IEC 27001 Certification

Download

Organizations seeking certification against ISO 27001 can save considerable time and effort using pre-written information security policies from Information Shield. ISPME Version 10 provides complete policy coverage for the eleven...

• Publisher:
• Information Shield

• Tags:
• security standards

The New ISO 17799:2005 - Security Policy Implications for Business

Download

For most organizations that have already adopted the ISO/IEC 17799:2000 standard, the updated ISO 17799:2005 will impact them in several major areas. While there were many changes in naming and...

• Publisher:
• Information Shield

• Tags:
• security standards

A Brief History of Regulatory Time

Download

As security professionals, we live in an increasingly regulated world. As more companies do business internationally, they must be aware of the security and privacy requirements of the countries where...

• Publisher:
• Information Shield

• Tags:
• security management,
• professionals,
• countries,
• compliance

Microsoft: Learn to love software licences

The ISO standard put a stake in the ground and there is the Itil [IT Infrastructure Library] guide," he said. That is about a month away and part of that will be a three-step process to help with tools and policies.

• Channel:
• Applications
• Tags:
• wga,
• software licence,
• microsoft

Sun plans Microsoft Office migration help

The tools are designed to let administrators centrally and remotely manage desktops and software system images to be copied to new systems; define groups of users and policies, such as access rights; and "lock down" features to disable certain...

• Channel:
• Operating Systems

US bids to hold on to net

Nearly all the components of internet governance already are distributed by geographic region.internet addresses are assigned by regional organizations including ones in Europe, Asia and Latin America, and national governments currently control...

• Channel:
• WebWatch

Palladium: A must or a menace?

Moreover, US lawmakers have introduced controversial bills this year that could strengthen copyright controls over computers and the data they store. Concerns about trusted computing initiatives have been fuelled by policies and legislation such as...

• Channel:
• Security Strategy

Quocirca's Straight Talking: The beauty and bother of mobile email

A further discussion of the challenges and best practices for deploying and managing mobile devices is available in our recent report, called Mobile Devices and Users: Keep mobile working safe, secure and under control.

• Channel:
• Mobile & Wireless
• Tags:
• mobile email,
• security,
• quocirca

IT and compliance: A risk management 'odd couple'

ISO 27001 is a certification standard to ensure that they’ve got it right. ISO 17799 (expected to be renamed ISO 27002 this year) provides a set of best practices for security, in areas including compliance.

• Tags:
• paypal,
• risk management,
• risk