UK Data Security Solution Finder

Solution Search:
Computer Weekly - 3 April 2012: Data security best practice by ComputerWeekly.com
This week’s Computer Weekly kicks off our Buyer's Guide to data security by looking at the changing role of the IT security chief. We also examine why flexible working is proving so slow to roll out and we talk to the UK's air traffic...
Preparing an RFI for Virtualization and the PCI Data Security Standard by HyTrust
debit cards and the requirements and guidelines for securing cardholder data are specified in the Payment Card Industry (PCI) Data Security Standard (DSS).

Protecting cardholder data is a critical and mandatory requirement for all organizations that process, store or transmit information on...
2011 IOUG Data Security Survey: Databases More at Risk Than Ever by Oracle Corporation
IT professionals were recently surveyed on their data security practices. The results were disturbing with 60% saying that a data breach is likely, or they’re not sure what to expect, over the next 12 months. Download this...
IOUG 2011 Survey: The Petabyte Challenge: 2011 IOUG Database Growth Survey by Oracle Corporation
More than 300 database and information security professionals were recently surveyed on their data security practices. The results were disturbing with 60% saying that a data breach is likely over the next 12 months. Download this complimentary copy of the 2011 IOUG...
Data Security and Governance best practices for 2012 by Advent Global Solutions Inc.
This extensive e-guide focuses on how to remain up to speed with data security and governance programs for your growing enterprise.

Despite on-going concerns about the global economy, businesses are realizing that data security and...
Information Security Magazine - April 2012 by SearchSecurity.com
Access this month’s issue to uncover the latest tokenization trends (including, payment card data security, tokenization as a service, as well as protecting PII data) and explore how this revived technology not only offers enhanced data protection, but can ease the...
Cost Effective Security and Compliance with Oracle Database 11g Release 2 by Oracle Corporation
privileged user and multi-factor access control, data classification, and data masking, organizations can deploy reliable data security solutions that do not require any changes to existing applications, minimizing the costs associated with regulatory compliance and the deployment of...
Virtualization and PCI-DSS: Security, Operations & Architecture Aligned for Compliance by HyTrust
tools, measurements and support resources to help you ensure the safe handling of information at every step. Understand how PCI Data Security Standard (PCI DSS), provides you with a robust payment card data security process, including prevention, detection and appropriate reaction to security...
PCI-Compliant Cloud Reference Architecture by HyTrust
and additional controls needed to address the three cloud challenges to achieve PCI compliance.

Payment Card Industry (PCI) Data Security Standard (DSS) defines a set of requirements to protect payment cardholder data, and the environments in which cardholder data is stored, processed, or...
Websense TRITON Mobile Security by Websense, Inc.
When it comes to mobile security, the biggest concern isn’t the mobile device itself – it’s the data; so it’s important to implement the most effective measures to fend off mobile threats. In this...
A Pragmatic Approach to SIEM by Tripwire, Inc.
their belief that security “due diligence” can be reduced to the level prescribed by regulations such as the Payment Card Industry Data Security Standard (PCI DSS) is more common than ever. Unfortunately, the results of this flawed thinking include security breaches and other damag­ing events.

This...
Cost Effective Security and Compliance with Oracle Database 11g Release 2 by Oracle Corporation
Consolidation, outsourcing and cloud computing are just a few of the business initiatives driving IT organizations to focus on data security. Companies have moved beyond securing the network perimeter and made strengthening security controls around data a top priority. Read this whitepaper to...
Data Security Articles
in Microsoft's Virtual PC virtualization software that could allow an attacker to bypass Windows security features and attack vulnerable applications in virtual sessions.

An advisory issued Tuesday by Core Security... More...

University is setting out to find what many people would think is the holy grail of information security – the perfect information security strategy.

The three-year project is the brainchild of Professor Martin Gill... More...

is available, Secunia rated the flaw extremely critical, its highest severity rating. The French Security Incident Response Team (FrSIRT) gave the flaw a critical rating in its FrSIRT/ADV-2007-3984 advisory. The flaw was... More...
Data Security Advice
in method of ensuring the sender really is who they seem to be.

If email encryption is not feasible, adequate security may be achieved by using a tool such as WinZip or WinRAR to compress and encrypt the sensitive material. The zip file can then be sent as an email attachment... More...

Is there a benchmark that can be used in a comprehensive security review of a Web service that accepts interaction via multiple interfaces (such as touch-screen kiosks and Web-based forms) in any industry? Web services... More...
between static code analysis and dynamic code analysis? Is one method preferred over another in terms of security?

Static and dynamic code analyses are performed during source code reviews. Static code analysis is done without executing any of the code; dynamic code... More...

Featured Book Chapters
Employee security training for Data Protection Act compliance

More than ever before, organizations must ensure they protect personal information. New powers accorded to the Information Commissioner's Office allow it to impose hefty fines on any organization that fails to show due care of... More...

The Craft of System Security
The following is an excerpt from the book, The Craft of System Security. In this section of Chapter 16: Hardware-Based Security (.pdf), authors Sean Smith and John Marchesini explain how an adversary can extract data from a device, even after... More...
Data Security Podcasts
Mitigating Risk and Securing Devices for the Mobile Employee by Fiberlink
As more mobile devices are adopted at work, mobile application and data security is becoming more important than ever for IT leaders.

With the tremendous growth in the adoption of iPhones, iPads...
Jack Madden and Tom Kemp Discuss Centrify's Free Mobile Security Management Solution: Express for Mobile by Centrify Corporation
Mobile device management is imperative to assuring the security of your corporate networks, applications, and data. Listen to this podcast to hear about a mobile security...
Ensuring proper data deletion or destruction of backup media by Quantum Corporation
Kevin Beaver, information security consultant with Principle Logic LLC, discusses the importance of proper data deletion/destruction for backup media, data deletion options in the market today, and who really needs to be...

How one CIO leveraged private clouds for greater data security

 by Dell, Inc.
executive VP and CIO of State Street Corp., the Boston-based financial services provider, as he discusses building an industrial-strength private cloud. Learn why the security and integrity of data is as valuable as currency in the banking business and why a public cloud wouldn't cut it.

...
Podcast: Ensuring Hyper-V security: What virtualization means for network protection by Dell and Microsoft
for protecting your virtualized network, including setting up and managing endpoint protection software and the different requirements for host and guest security.

Microsoft’s Hyper-V offers many benefits for IT shops looking to virtualize Windows servers, but like other...
Data Security QA Interviews
Think Money offers lessons in meeting financial compliance regulations by Ron Condon, UK Bureau Chief
What security challenges has your organisation faced, and what regulations are you subject to?

We are subject, of course, to the Data Protection Act, to PCI DSS, and we are on our way to achieving ISO 27001. We have a specific... More...
Major ISPs can remove botnets, malware, CISO says by Robert Westervelt, News Editor
You participated in a recent cybersecurity study from the Center for Strategic and International Studies (CSIS) and McAfee Inc. that surveyed CISOs about the state of critical infrastructure globally. Was there... More...
H.D. Moore speaks about Metasploit Project deal, Release 3.3 by Neil Roiter, Senior Technology Editor, Information Security magazine
What kind of reaction has the Metasploit community had to the Rapid7 deal? What are your fans saying?

For the most part, people who use the framework are happy about it. They key things are that the license doesn't change... More...
Wireless Security Columns
Opinion: Apply computer quarantine via network access control policy by Michael Cobb
Microsoft's Scott Charney, the leader of the software giant's trustworthy computing team, hit the headlines recently when he proposed that virus-infected computers that pose a risk to other PCs should be blocked from... More...