TechRepublic : A ZDNet Tech Community

5 Resources for

security information management

  • Subscribe to this listing via:
  • RSS
  • Email
Related Tags: FISMA (27 results)

TechRepublic Resources

Incident Response Requirements for Distributed Security Information Management Systems
Security Information Management Systems SIMs have been providing a unified distributed platform for the efficient management of security information produced by corresponding mechanisms within an organization. However, these systems currently lack the capability of producing and enforcing response policies, mainly due to their limited Incident Response IR functionality. This paper...
Tags: Security Information Management, Security Administration, Security
White papers 2007-06-07
What FIPS and Common Criteria Certifications Mean to SIEM: Understanding the Relevance of Security Standards in the Context of a Security Information Management Systems
By definition, Security Information & Event Management systems SIEMs are used for the collection of events and logs pertaining to sensitive or protected information. A SIEM attempts to collect as much information as possible to determine security threats, and to help mitigate and remediate those threats by making as much...
Tags: Certification, Security Standard, Security Information Management, NitroSecurity, SIEM, Security
White papers 2009-04-13
Securing Critical Infrastructures Through Security Information Management
Several of the critical infrastructure sectors have issued standards or guidelines for configuring and managing the security of Industrial Automation and Control Systems. These include the energy sector, which has issued the Critical Infrastructure Protection CIP standards through the North American Electric Corporation NERC. These standards are referred to as...
Tags: Security, Security Information Management, Standards, NitroSecurity, Quality, Business Operations
White papers 2009-05-15
Security Information Management - Achieve Good Governance Through Proactive Monitoring of IT Controls
Organizations trying to secure its IT environment and demonstrate compliance are getting bogged down with information overload. Information Security and IT Operations teams require a way to monitor and remediate threats proactively and efficiently with automated tools that can help lower compliance costs. The presenter of this webcast explains how...
Tags: Symantec Corp., Information Technology, Compliance, Monitoring, Security Information Management, Symantec Security Information Manager, Strategy, Security, Management
Webcasts
Using Security Information Management Systems for PCI Compliance
This SANS paper focuses on SIM technology functions and how these technologies can be used to effectively meet a number of the requirements within the twelve areas of the Payment Card Industry's Data Security Standard PCI DSS. PCI regulation is more specific than other regulations with regards...
Tags: Security, Security Information Management, SenSage, PCI Regulation, PCI, Storage, Hardware
White papers 2007-06-01

Additional Resources

Use security log management to monitor network activity
Most of us have the recommended layers of protection in place. Firewalls, email filtering, IDS, and IDP systems protect the perimeter and critical network segments. Hardened servers, anti-malware and carefully managed access controls protect individual devices as deperimeterization increases. But how effective are these controls? Is...
Tags: Security, Evidence, Threats, Intrusion Detection, It Management, Compliance, Tom Olzak, HIPAA, log information, monitor, network
Blog posts 2007-02-01
The Pros and Cons of Security Risk Management
Risk management is the method most often used as the path to reach reasonable and appropriate spending and management of security controls. However, there seems to be contention between security professionals who believe this is the proper approach and those who believe that risk management is fundamentally flawed.The following...
Tags: Compliance, HIPAA, It Management, Risk Management, Security, Threat Modeling
Blog posts 2007-03-15
Automating Security Patch Management (UK)
Struggling to ensure security compliance and reduce enterprise IT vulnerability? Chances are, if you're like most IT professionals, the pressure is on to protect the security of your IT infrastructure. A series of crippling virus attacks have put an uncomfortable spotlight on the vulnerability of enterprise IT infrastructures. Learn how...
Tags: ManageSoft Corp., Security Compliance, Chances, Security
White papers 2004-11-01
Deploy an enterprise-wide security solution with Enterprise Security Management (ESM) software
No single piece of technology can solve all of an organization's security problems, but one key piece of technology needed to address security risk is a central logging and analysis solution that also acts as a focal point for real-time and forensic investigation, remediation, reporting, and compliance. Taking a more...
Tags: Software, Enterprise Security, Syngress, Security
Book chapters 2006-09-27
Star Wallet - Ultimate Information Management Tool (Mobile)
Star Wallet is a Comprehensive Information Management Utility for Pocket PC. Safely stores any type of information such as Credit Cards, Bank Accounts, ATM PINs, Emergency Contacts, Events, Appointments, Health & Insurance Info, Travel Information, Website Info, Online Passwords, Shopping Information, Vehicle Information, Passport Details, Software License etc.All the data...
Tags: Information Management, Mobile, Option, Master Password, Pocket PC, Backups, Handhelds, Operating Systems, Hardware, Software
Software downloads 2007-03-03
Study on the E-government Security Risk Management
The implementation of e-government is based on information technology, how to solve the security problem of the e-government system is becoming an extremely urgent subject. This paper, from the angle of security risk management, analyzes the procedures of e-government security risk management from three aspects: risk identification, risk analysis, risk...
Tags: Security, E-government, Government
White papers 2008-06-02
Magic Quadrant for Security Information and Event Management
Broad adoption of SIEM technology is driven by compliance and security needs. New use cases in areas such as application activity monitoring are emerging. Security Information and Event Management SIEM technology provides real-time monitoring and historical reporting of security events from networks, systems and applications. SIEM deployments are often funded...
Tags: Quadrant, SIEM Deployment, Security
White papers 2009-05-29
End-to-End Solutions to Enable Log Management Best Practices: Deploying a Comprehensive Security Information and Event Management Platform
This paper details how RSA's solutions meet the complete set of requirements for a log management infrastructure, including general requirements and specific requirements in log generation and capture; log retention and storage; log analysis; and log security and protection. It is intended to help organizations deploy a comprehensive security information...
Tags: RSA Security Inc., Best Practice, Security
White papers 2007-10-01
Global Biopharmaceutical Company Stays Secure With Security Information and Event Management System
Global biopharmaceutical is a leading pharmaceutical company, with headquartered in the United States. The organization is challenged with continuing security audits of its network and data security systems by its partner companies and the Federal Drug Administration FDA. The company needed a Security Information and Event Management SIEM system that...
Tags: Check Point Software Technologies Ltd., Security
Case studies 2008-05-07
The Evolution of Security Information & Event Management: (and the Technology That Can Take Us There)
As the Security Information and Event Management SIEM market has matured, products within the market have lost the ability to quickly respond to threatening situations, and no longer meet the requirement to be a real-time decision support system RTDSS. The root cause of the problem is the woefully inadequate scalability...
Tags: NitroSecurity, Data Management, Storage, Databases, Security, Hardware, Enterprise Software, Software
White papers 2009-08-19
Building an Effective Information Security Risk Management Program
Information technology IT infrastructure services and operations, designed to support the healthcare mission at UT M. D. Anderson Cancer Center MDACC, have been significantly enhanced and made more secure due to extensive implementation of an institution-wide Information Security Risk Management Program RMP. Information security at MDACC facilitates clinical operations and...
Tags: Information Security, University Of Texas, E-health, Security, Healthcare
White papers
China's Ministry of Railways Secures Information Management System With Juniper Networks Integrated Security Gateway Solution
The Ministry's railway information management system is key to China's railway development. The system is deployed nationwide and captures a tremendous volume of information. Given the vital role it plays in ensuring passenger safety and national economic development, there is no margin for error. The operational and security requirements set...
Tags: Security, Information Management, Juniper Networks Inc., Ministry, Transportation, Strategy, Management
Case studies 2008-08-01
IT Security Management as a Business Enabler
Effective IT security management is based on a comprehensive and integrated strategy that includes three major components: Identity and Access Management IAM, Security Information Management SIM and Integrated Threat Management ITM. Properly managing all three of these core requirements, in an interconnected way, can help one to more easily and...
Tags: IT Security, Information Technology, IT Security Management, Computer Associates International Inc., Security
White papers 2006-10-01
Building an Infrastructure That Enables Log Management Best Practices: A Technology Strategy for Comprehensive Security Information and Event Management
Building an infrastructure to incorporate an ILM strategy for log data involves combining Security Information and Event Management SIEM technology with tiered storage. Although infrastructure requirements will vary depending on each organization's particular environment, there are many that are common across organizations. This paper is intended to help organizations determine...
Tags: Strategy, RSA Security Inc., Best Practice, Storage, Security, Hardware
White papers 2007-09-01
The Case for Security Information and Event Management (SIEM) in Proactive Network Defense
It's widely accepted that Security Information and Event Management SIEM systems are excellent tools for regulatory compliance, log management and analysis, trouble-shooting and forensic analysis. What's surprising to many is that this technology can play a significant role in actively defending network. This paper explains precisely how real-time analysis, combined...
Tags: Security, Network, Analysis, TriGeo Network Security, Networking
White papers 2008-05-15
  • << Previous
  • page 1 of 1
  • Next >>


Quick Reference: Linux Commands
Reduce stress and speed up resolutions with the easiest command references right at your fingertips. You'll receive a PDF file covering Linux, packed with the most common commands you'll need and use daily.
Buy Now
500 Things Every Technology Professional Needs to Know
Did you know Microsoft's RegClean does not work with XP but you can use shareware to clean your registry? Did you know most wireless access points don't have encryption enabled by default? Did you know there are 500 tidbits of information contained in TechRepublic's 500 Things Every Technology Professional Needs to Know that will help you become a successful IT professional.
Buy Now

Keep up with ZDNet