security control

TechRepublic Resources

• sort by:
• Relevance
• Date
• Popularity

The security control nobody used...

Not every security control is successful, particularly those not transparent to business users. This is the story of a failed attempt to encrypt email and the lessons learned. by Tom Olzak

Tags: Message, Security, Team, Security Control, E-mail, Team Management, Online Communications, Management, Tom Olzak

Blog posts 2008-07-23

Sanity check: The six consumer technologies that are destroying traditional IT

Are consumer technologies destroying traditional IT?Link to the original post:http://blogs.techrepublic.com.com/hiner/?p=548What do think about the challenges that consumer technologies are causing for IT departments?IT awareness6. Messaging is often easier to use despite being disruptive to non-creative work such as relearning interfaces for every new software upgrade.5. Dumbphones that display text just...

Tags: Strategy, messaging, P2P, Jason Hiner, information technology, consumer technology, security, traditional IT, security control

Discussion threads 2007-09-14

Estimate the true cost of a new security control

By accurately capturing the cost of a new security control, you can give management the information it needs to help protect the security of your network. In this edition of Security Solutions, Mike Mullins takes the mystery out of calculating the real price tag of a new security control. ...

Tags: Michael Mullins CCNA, MCP, security control, security, new security control, Security Solutions Newsletter, Cost, Control, Mike Mullins, Michael \"Mullins CCNA, MCP\"

Technical articles 2006-07-13

NIST releases final security guidelines

Stay on top of the latest tech news with our free IT News Digest newsletter, delivered each weekday. Automatically sign up today! By ...

Tags: security, NIST, security guideline, security control, agency, federal agency

Technical articles 2005-03-01

Use a security controls matrix to justify controls and reduce costs

A controls matrix exercise is a good way to step back and make sense of what you've done over the past three or four years, strengthening the security controls foundation before moving forward. by Tom Olzak

Tags: Security Control, Matrix, Security, Tom Olzak, Control, Controls Matrix

Blog posts 2008-10-15

Integrated Security Policy Management: Demonstrating Compliance and Security Controls for Your IT Infrastructure

This webcast focuses on security policy management leading practices, the impact of regulatory compliance on security policy, case study examples from major corporations that have automated the policy management process and how policy compliance data can be correlated with security event data utilizing Symantec Enterprise Security Manager to enable faster...

Tags: IT Infrastructure, Symantec Corp., Security Control, Information Technology, Compliance, Security

Webcasts

Advanced Security Control 2.1 (Windows)

ASC lets administrators set up rules for the local computer, defining when any program can be executed and by whom. You can control access to any 32-bit software, such as games, Internet browsers, or anything else depending on the time of day and day of week. Configuration is as simple...

Tags: Program, Security, Security Control, ASC, Microsoft Windows, Operating Systems, Software

Software downloads 2000-03-28

Model-Based Assurance of Security Controls

The paper presents an innovative way to assess the effectiveness of security controls where measurable aspects of controls are first captured in the models and then the models are used to analyse the security data gathered from the IT environment. The aim is to lift the risk and security control...

Tags: Security, Security Control

White papers 2008-01-29

CIGNA Corporation Uses a Cisco Routed Access Solution for Enabling Innovative Security Controls and Improving Manageability

CIGNA Corporation provides employee benefits plans for organizations and offers health care, and disability and life insurance coverage products and services in 30 countries. They wanted to deploy in-depth security defenses, but their legacy network infrastructure made it extremely difficult to deploy and manage the security measures that they wanted...

Tags: CIGNA Corp., Security, Security Control, Microsoft Access, Cisco Systems Inc., Insurance, Business Operations, Corporate Insurance

Case studies 2006-10-01

Identifying Windows XP and Server 2003 Common Criteria Certified Requirements for the NIST Special Publication 800-53 Recommended Security Controls for Federal Information Systems

The NIST Special Publication SP 800-53 has special significance in that the security controls contained in the recommended baselines form the basis for those controls that will become mandatory in a Federal Information Processing Standard. The proposed Federal Information Processing Standard FIPS 200, Minimum Security Controls for Federal Information Systems,...

Tags: Security, Information System, Security Control, Microsoft Windows XP, FISMA, Server, NIST, Microsoft Windows, Operating Systems, Software

White papers 2006-01-11

Satisfying Sarbanes-Oxley Computer and Security Controls Requirements: Feeling Lucky?

Recent indictments of corporate executives prove that the SEC is serious about enforcing Sarbanes-Oxley. Don't gamble on this one! When it comes to passing the Computer and Security Controls for Sarbanes-Oxley, how do you know what constitutes a safe bet? How much security is really needed? Auditing firms are debating...

Tags: Security, Security Control, BindView Corp.

Webcasts

It's all about the basics

When something as fundamental as an agency-wide security program is missing, it's easy to understand why basic security controls are also absent and why employees don't understand the difference between safe and risky behavior. by Tom Olzak

Tags: Security Control, Internal Revenue Service, Security, Tom Olzak

Blog posts 2009-01-12

Additional Resources

Estimate the true cost of a new security control

left out some itemsIt should include the loss of business efficiency as a result of the new security control. It should also include, what is the impact of the loss of flexiablity?What is the increase vulnerablitity (what happens if the security vendor goes out of business, has a break in,...

Tags: SECURITY, Viruses and worms, blue-knight

Discussion threads 2006-07-20

Vista UAC: A security manager's perspective

Microsoft’s UAC has come under intense fire. It appears that the consensus among security researchers is that UAC is not an effective security control. An example of the arguments against relying on it as a workstation access control is contained in an eWeek article by Lisa Vaas (“Microsoft:...

Tags: HIPAA, Identity Theft, It Management, Malware, Microsoft, Microsoft Windows Vista, Microsoft&rsquo, s UAC, Security, Tom Olzak, Viruses, Vista, Vista UAC, Windows Vista

Blog posts 2007-02-27

The importance of an effective VPN security policy

Before implementing a VPN there is a lot of workto be done. Fortunately, this article will make that work easier. Just like youdon't go out and implement a new enterprise application without proper design,planning, testing, analysis, and documentation, you don't implement a newcompany VPN without this type of proper planning....

Tags: David Davis CCIE, MCSE+I, SCSA, VPN, VPN Security, VPN Security Policy

Technical articles 2006-07-12

Security certs may be mandatory for IT pros in financial and healthcare fields

If you've been in IT for any length of time, you've heard the debates about experience vs. certification. Experienced professionals sometimes claim that they do not need a certification to prove their knowledge, since hands-on experience is the best proof of all. Others, who are trying to advance their careers,...

Tags: Allen Keele, certification, financial, health care, health care company, HIPAA, information security, information technology, security

Technical articles 2003-05-02

Security/Control software for XP SP2 wireless devices

Hi there,Does anyone know of software that can be installed on XP SP2 laptops to control use of wireless? If possible it would be nice to ensure the users can connect just to one wireless setup and cant use no security wireless setups like at airports, also, is the software...

Tags: Wi-Fi, Microsoft Windows XP Service Pack 2, Service Pack 2, Microsoft Windows XP, wireless device, wireless, software

Discussion threads 2008-06-24

Red Hat Identity Management and Security Solutions

Red Hat identity management and security solutions are designed to simplify management of identity information in complex heterogeneous environments, bring the benefits of the open source development model to enterprise identity and security infrastructures, provide a clear path to integrated identity and security control as processes and so solutions continue...

Tags: Red Hat Inc., Identity Management, Open Source, Security

White papers 2005-09-26

The re-emergence of HIPAA security

Glad to hear that one of the two holes in HIPAA may be addressedHIPAA as a ePHI regulation typically has two great "unwritten" holes. 1) Management sees HIPAA as yet another risk to be managed which is neither life threatening or legally dangerous. 2) There is no minimum...

Tags: Regulatory compliance, Regulations, DWT168@..., HIPAA, ePHI

Discussion threads 2007-03-30

War stories from the front lines of network security

By Joseph W. Popinski III, CPP CISSP CISMOver the past five years of managing network vulnerability assessments and penetration tests as a consultant, I've uncovered several "situations" that, from a network security viewpoint, border on the unbelievable. Below are two brief accounts. Could either of these happen to your company?Just...

Tags: e-mail, network, Guest Contributor, e-mail server, firewall, network security, Internet, security, server

Technical articles 2004-05-13