UK Data Security Solution Finder

Solution Search:
The State of Privacy and Data Security Compliance by Sophos, Inc.
The purpose of the study is to determine if various international, federal and state data security laws improve an organization’s security posture. What is the value of compliance and does it correlate with the value of the compliance effort? Read on...
Oracle Database 11g: Cost-Effective Solutions for Security and Compliance by Oracle Corporation
nature of information theft, and the continued emergence of new data privacy protection regulations worldwide, requires strong data security. Effective information security starts by protecting data at the source - the databases in which it resides. Read on to learn more. The increasingly...
Cost Effective Security and Compliance with Oracle Database 11g Release 2 by Oracle Corporation
privileged user and multi-factor access control, data classification, and data masking, organizations can deploy reliable data security solutions that do not require any changes to existing applications, minimizing the costs associated with regulatory compliance and the deployment of...
Webcast: Portable Panic- The Evolution of USB Insecurity by Lumension
View this webcast to hear Lumension's VP of Endpoint Security, Bill Aubin, provide insight on the security risks introduced by the proliferation of portable devices and how organizations can protect their data...
Enhanced File Integrity Monitoring: Tripwire’s Automated, Continuous PCI 1.2 Compliance for Secure Cardholder Data by Tripwire, Inc.
audit. Read this solution brief to learn more about securing cardholder data and proving PCI compliance. The Payment Card Industry Data Security Standard (PCI DSS) was created to help organizations that process credit card payments secure cardholder data and prevent credit card fraud from hackers...
Securing Sensitive Information: An Examination of Information Security Issues, Methods and Securing Data With LTO-4 Tape Drive Encryption by Hewlett-Packard Company
Each month many companies, big or small, well known or unknown, experience a data security loss with the potential exposure of thousands to millions of sensitive customer or employee records. This brief examines cryptographic methods...
Avoiding PCI Non Compliance by Guidance Software, Inc.
they face.

For many organisations’ Chief Information Officers and Chief Security Officers, the Payment Card Industry Data Security Standard (PCI DSS) was going to spell the end of the road for criminals who were ‘cashing in’ on the supposedly easy target of credit card theft - and...
Creating an enterprise data protection framework by McAfee, Inc.
Jones of Deloitte & Touche explains the basic steps for creating a data protection plan and shows you how to implement effective data security policies and procedures.

Every enterprise has sensitive, mission-critical data it needs to protect. By creating a data protection plan, security...
bwin Success Story with Novell Sentinel® by Novell Inc.
gaming entertainment. All companies that process, store or transmit payment card data must comply with the Payment Card Industry Data Security Standard (PCI-DSS). This standard aims to prevent fraud, protecting both consumers and businesses from financial loss.

 

With millions of customers...
Next Generation Log and Event Management by Tripwire, Inc.
of. The auditors said that everything needed to be captured and stored. 

Compliance regulations such as Payment Card Industry Data Security Standard (PCI DSS), NERC, Sarbanes-Oxley (SOX), and the Federal Information Security Management Act (FISMA) changed at least part of that scenario. Organizations...
Data Security Laws in the US by Quantum Corporation
This list features a selection of Data Security laws in the US. As Quantum is a computer storage company, we cannot be held responsible for the accuracy of this list. Please check with your local government...
Using Microsoft Active Directory to Address Payment Card Industry (PCI) Data Security Standard Requirements in Heterogeneous Environments by Centrify Corporation
to address specific PCI DSS requirements.

The Security Standards Council of the Payment Card Industry (PCI) owns and maintains the Data Security Standard (DSS), which is a rigorous set of requirements that all merchants, payment processors, point-of-sale vendors, and financial institutions must follow...
Data Security Articles
weren't readily apparent.

"Most attacks are for fame and fortune," said Kevin Haley, director Symantec Security Response. "One of the first things Conficker did was to monetize by downloading rogue antivirus programs. The Dozer... More...

and by other NHS organisations, either via a local area network, or by a specially customised SSL VPN.

"A data security breach could potentially put in danger the personal and sensitive information of both the data stored on our internal... More...

A Sheffield-based company has developed a system it says could destroy data held on a lost or stolen laptop, and thus prevent information falling into the wrong hands.

The Backstopp product from... More...

Data Security Advice
What are the best products and security processes that can help with USB drive security in the enterprise?

I'm assuming here that the issue that you are trying to address is the use of unapproved USB... More...

healthcare system against a set of established requirements. The goals of this analysis are to find the data capture gaps, suggest possible solutions and bring the system up to desired standards to ensure appropriate capture of data and ease of access. What are... More...
advise me on how to resolve these Windows 2003 DNS configuration issues? I would advise instead that layered security is implemented, which allows no direct outbound client connections to the Internet. This arrangement prevents malware from spreading or communicating... More...
Featured Book Chapters
The Craft of System Security
The following is an excerpt from the book, The Craft of System Security. In this section of Chapter 16: Hardware-Based Security (.pdf), authors Sean Smith and John Marchesini explain how an adversary can extract data from a device, even after... More...
Virtual Honeypots: From Botnet Tracking to Intrusion Detection
The following is an excerpt from the book Virtual Honeypots: From Botnet Tracking to Intrusion Detection. In this section of Chapter 11:Tracking Botnets (.pdf), authors Niels Provos and Thorsten Holz explain how virtual honeypots can be... More...
Data Security Podcasts
Data loss prevention tools: The new way to prevent data theft by McAfee, Inc.
Every security professional knows that implementing a DLP product into a large corporate network is by no means a walk in the...
Podcast: Data Protection and Security by CA
Data protection, security and disaster recovery are some of the most critical disciplines facing the IT industry...
Ensuring proper data deletion or destruction of backup media by Quantum Corporation
Kevin Beaver, information security consultant with Principle Logic LLC, discusses the importance of proper data deletion/destruction for backup media, data deletion options in the market today, and who really needs to be...
Time's Up on PCI Compliance by SonicWALL
strategies that will keep you ahead of deadlines and help you avoid costly penalties for non-compliance.

With new looming deadlines for the Payment Card Industry's Data Security Standard DSS (PCI DSS) right around the corner, the time is now to get ready. These new requirements will affect...
Podcast: SMB Server School: Security considerations for a Windows Server integration by Dell, Inc. and Intel
This podcast explores the security implications of integrating a Windows Server into an existing infrastructure.  Gain insight into steps that...
Data Security QA Interviews
H.D. Moore speaks about Metasploit Project deal, Release 3.3 by Neil Roiter, Senior Technology Editor, Information Security magazine
What kind of reaction has the Metasploit community had to the Rapid7 deal? What are your fans saying?

For the most part, people who use the framework are happy about it. They key things are that the license doesn't change... More...
Network traffic collection, analysis helps prevent data breaches by Robert Westervelt, News Editor
I understand the benefit of collecting and storing network traffic in the event of a breach, but what is the benefit of using the data prior to a breach?

I think there is a level of frustration and maybe dissatisfaction... More...
Some IT security certifications are overvalued, analyst says by Carolyn Gibney, Assistant Editor
What are the key takeaways from the research?

The two major issues are that, on the one hand, we still need security as a profession, and all these certifications provide additional benefit, but [they don't necessarily... More...
Wireless Security Columns
Full disk encryption: Safer and easier than file and folder encryption by Ron Condon

Hardly a month passes without news that a laptop containing unencrypted confidential information has been lost by some organisation or other.

Ever since the Nationwide Building Society incurred a fine of £... More...