UK Data Security Solution Finder

Solution Search:
Closing the Gaps in Enterprise Data Security: A Model for 360° Protection by Sophos Inc.
CSOs) and IT security management within enterprises, and recommends best-practice techniques to minimize and overcome risks to data security. These best practices have been successfully implemented and deployed in organizations worldwide as components of a This paper examines the primary...
Oracle Database 11g: Cost-Effective Solutions for Security and Compliance by Oracle Corporation
nature of information theft, and the continued emergence of new data privacy protection regulations worldwide, requires strong data security. Effective information security starts by protecting data at the source - the databases in which it resides. Read on to learn more. The increasingly...
The Business Impact of Data Security Regulations: Featuring Massachusetts by Sophos Inc.
has taken the lead in passing a new regulation - 201 CMR 17:00 -that requires companies to implement a comprehensive data security plan that includes encryption. This article discusses some aspects of this regulation and offers suggestions on how data security best practices can...
SafeGuard Enterprise by Sophos Inc.
your confidential information and comply with regulatory mandates. SafeGuard Enterprise provides multi-layered endpoint data security by combining encryption and data leakage prevention. Try it for yourself with this 30-day trial. Product Type: Modular Data Protection Solution

Target User:...
Cost Effective Security and Compliance with Oracle Database 11g Release 2 by Oracle Corporation
privileged user and multi-factor access control, data classification, and data masking, organizations can deploy reliable data security solutions that do not require any changes to existing applications, minimizing the costs associated with regulatory compliance and the deployment of...
Webcast: Portable Panic- The Evolution of USB Insecurity by Lumension
View this webcast to hear Lumension's VP of Endpoint Security, Bill Aubin, provide insight on the security risks introduced by the proliferation of portable devices and how organizations can protect their data...
Enhanced File Integrity Monitoring: Tripwire’s Automated, Continuous PCI 1.2 Compliance for Secure Cardholder Data by Tripwire, Inc.
audit. Read this solution brief to learn more about securing cardholder data and proving PCI compliance. The Payment Card Industry Data Security Standard (PCI DSS) was created to help organizations that process credit card payments secure cardholder data and prevent credit card fraud from hackers...
Securing Sensitive Information: An Examination of Information Security Issues, Methods and Securing Data With LTO-4 Tape Drive Encryption by Hewlett-Packard Company
Each month many companies, big or small, well known or unknown, experience a data security loss with the potential exposure of thousands to millions of sensitive customer or employee records. This brief examines cryptographic methods...
bwin Success Story with Novell Sentinel® by Novell Inc.
gaming entertainment. All companies that process, store or transmit payment card data must comply with the Payment Card Industry Data Security Standard (PCI-DSS). This standard aims to prevent fraud, protecting both consumers and businesses from financial loss.

With millions of customers, thousands...
The Enterprise Database Security Lifecycle: Configuration and Controls by Guardium, an IBM Company
stores. Featuring Adrian Lane and Rich Mogull, specific points of emphasis include preventative controls, detection controls, and a data security life-cycle overview. This video provides clear and actionable steps to protect an enterprise database and the data that it stores. It covers the...
Next Generation Log and Event Management by Tripwire, Inc.
of. The auditors said that everything needed to be captured and stored. 

Compliance regulations such as Payment Card Industry Data Security Standard (PCI DSS), NERC, Sarbanes-Oxley (SOX), and the Federal Information Security Management Act (FISMA) changed at least part of that scenario. Organizations...
Data Security Laws in the US by Quantum Corporation
This list features a selection of Data Security laws in the US. As Quantum is a computer storage company, we cannot be held responsible for the accuracy of this list. Please check with your local government...
Data Security Articles
based on new MSc theses from students at Royal Holloway University, London.

Hyams works as information security manager for SCI Entertainment, the publishers of such titles as Tomb Raider, Hitman, Championship Manager and... More...

A company can tell customers that data on a missing or stolen device was encrypted, but that will do little to quell anxiety unless there's actual proof that was... More...

Trade Commission (FTC) is investigating the breach.

TJX violated some of the basic tenets of the PCI Data Security Standard (PCI DSS), several PCI auditors told SearchSecurity.com recently, and the company will pay a heavy financial... More...

Data Security Advice
What are the best products and security processes that can help with USB drive security in the enterprise?

I'm assuming here that the issue that you are trying to address is the use of unapproved USB... More...

healthcare system against a set of established requirements. The goals of this analysis are to find the data capture gaps, suggest possible solutions and bring the system up to desired standards to ensure appropriate capture of data and ease of access. What are... More...
advise me on how to resolve these Windows 2003 DNS configuration issues? I would advise instead that layered security is implemented, which allows no direct outbound client connections to the Internet. This arrangement prevents malware from spreading or communicating... More...
Featured Book Chapters
The Craft of System Security
The following is an excerpt from the book, The Craft of System Security. In this section of Chapter 16: Hardware-Based Security (.pdf), authors Sean Smith and John Marchesini explain how an adversary can extract data from a device, even after... More...
Virtual Honeypots: From Botnet Tracking to Intrusion Detection
The following is an excerpt from the book Virtual Honeypots: From Botnet Tracking to Intrusion Detection. In this section of Chapter 11:Tracking Botnets (.pdf), authors Niels Provos and Thorsten Holz explain how virtual honeypots can be... More...
Data Security Podcasts
Data Breaches Rise in Number and Dollar Amount by ESET
In this podcast, learn how a majority of data breaches are occurring and what companies are and aren't doing to mitigate security risks. The Ponemon Institute...
Ensuring proper data deletion or destruction of backup media by Quantum Corporation
Kevin Beaver, information security consultant with Principle Logic LLC, discusses the importance of proper data deletion/destruction for backup media, data deletion options in the market today, and who really needs to be...
Time's Up on PCI Compliance by SonicWALL
strategies that will keep you ahead of deadlines and help you avoid costly penalties for non-compliance.

With new looming deadlines for the Payment Card Industry's Data Security Standard DSS (PCI DSS) right around the corner, the time is now to get ready. These new requirements will affect...
The Malware Report: Hotel Business Center PCs Strike Again by ESET
Matt Grant talks with Randy Abrams about security issues with hotel business center computers. These are public computers and they often have insufficient...
When Good Applications Go Bad: Adding Application Control to your Toolbox by Fortinet, Inc. / Alternative Technology Group of Arrow ECS
Application security threats have evolved in the last two years. The delivery method has changed and is now primarily Web-based. This...
Data Security QA Interviews
H.D. Moore speaks about Metasploit Project deal, Release 3.3 by Neil Roiter, Senior Technology Editor, Information Security magazine
What kind of reaction has the Metasploit community had to the Rapid7 deal? What are your fans saying?

For the most part, people who use the framework are happy about it. They key things are that the license doesn't change... More...
Network traffic collection, analysis helps prevent data breaches by Robert Westervelt, News Editor
I understand the benefit of collecting and storing network traffic in the event of a breach, but what is the benefit of using the data prior to a breach?

I think there is a level of frustration and maybe dissatisfaction... More...
Some IT security certifications are overvalued, analyst says by Carolyn Gibney, Assistant Editor
What are the key takeaways from the research?

The two major issues are that, on the one hand, we still need security as a profession, and all these certifications provide additional benefit, but [they don't necessarily... More...
Wireless Security Columns
Annual security reports offer some hope for the enterprise by Ron Condon

Most of the security companies have a stab at predicting events around this time of year, and reading their end-of-year reports can have the same effect as reading a medical dictionary -- you may end up imagining all sorts... More...