Home >
> Security Policies
|
 |
|
|
|
A Security Policy is a plan of action for tackling security issues, or a set of regulations for maintaining a certain level of security. It can span anything from the practices for securing a single computer, to building/premises security, to securing the existence of an entire nation-state. |
 |
|
Results 1 - 25 of 66 matches |
Sort Results By : Published Date | Title | Company name |
|
|
Effective Email Policies: Why Enforcing Proper Use is Critical to Security |
| By :Sophos |
Published Date: May 07, 2008 |
|
The unmonitored and unguarded use of email by employees poses a multitude of risks to organizations. The distribution of inappropriate or offensive content, malicious emails, and the risks of data leakage all threaten working environments, IT resources and an organization's reputation. A comprehensive, transparent and enforceable email acceptable use policy (AUP), combined with robust email security solutions, dramatically reduces exposure to these risks.
Download Now
|
 |
|
|
|
Effective Web Policies: Ensuring Staff Productivity and Legal Compliance |
| By :Sophos |
Published Date: Apr 10, 2008 |
|
Employees increasingly expect to use the internet at work for their own personal use in return for longer hours, working from home and interrupting vacations. This has a number of security, productivity, bandwidth and legal ramifications that require organizations to create and implement a web usage policy that is backed up by effective web filtering tools.
Download Now
|
|
|
|
|
|
|
Guide to Effectively Remediate Network Vulnerability and Policy Compliance |
| By :Qualys |
Published Date: Aug 09, 2007 |
|
Consistent, ongoing execution of vulnerability management and policy compliance is difficult, if not impossible to do on a manual basis. There are simply too many "moving parts" to juggle and act on in a timely and cost-effective manner. This guide provides a step-by-step guide for automating the vulnerability and compliance workflow process.
Download Now
|
 |
|
|
|
How One Company Conquered the Audit Challenge |
| By :Qualys |
Published Date: Aug 08, 2006 |
|
The Marine Corps Community Services (MCCS) manages a global network that serves Marines and their families. MCCS chose a managed service to conduct comprehensive vulnerability assessments and prioritize patches and fixes.
Download Now
|
|
|
|
|
IT Departments on Data Security: A Research Concepts Survey |
|
|
A survey of 185 IT professionals finds that, although computer and data security are high priorities, they are surprisingly unprepared to prevent data breaches and computer theft. 1 out of 4 organizations surveyed had a data breach in the past year. Preventative measures are found to be consistently undermined, with only 1 in 100 employees consistently following security policy. This white paper explores the survey findings.
Download Now
|
 |
|
|
|
Meeting PCI DSS Merchant Requirements with a WatchGuard Firebox |
|
|
While some firewall companies may claim their products are “PCI Compliant,” there’s no such thing. Compliance requires more than just plugging in a security appliance and calling it good: you need a network design with physical and logical boundaries that allow you to segregate and monitor your PCI-compliant operating environment.
Download Now
|
 |
|
|
|
NAC: Managing Unauthorized Computers |
| By :Sophos |
Published Date: Apr 05, 2007 |
|
Unauthorized endpoint computers pose significant security risks to organizations. Where underlying network-based enforcement is available, network access control (NAC) solutions provide detection and implementation of security policies to minimize these risks. However, in some environments the network cannot provide this enforcement.
Download Now
|
|
|
|
|
NAC at the Endpoint: Control Your Network Through Device Compliance |
| By :Sophos |
Published Date: May 23, 2008 |
|
Protecting IT networks used to be a straightforward case of encircling computers and servers with a firewall and ensuring that all traffic passed through just one gateway. However, the increase in mobile workers, numbers and type of device and the amount of non-employees requiring network access, has led to a dissolving of that network perimeter.
Download Now
|
|
|
|
|
On-Demand Vulnerability Management |
| By :Qualys |
Published Date: Aug 08, 2006 |
|
Learn how to start your own self-auditing process by setting goals and answering key questions about your infrastructure. This podcast examines what to look for in a self-audition solution, how to use vulnerability management to ease the pain and why your software solution really matters.
Download Now
|
|
|
|
|
|
|
|
|
Strengthening Network Security with On Demand Vulnerability Management & Policy Compliance |
| By :Qualys |
Published Date: Aug 28, 2007 |
|
Despite defensive efforts with firewalls, intrusion detection, antivirus and the like, criminals, careless employees and contractors have exposed more than 158 million digital records of consumers' personally identifiable information since 2005. This security guide describes the requirements and on demand software-as-a-service (SaaS) solution called QualysGuard for effective vulnerability management and policy compliance.
Download Now
|
|
|
|
|
Secure at the Source: Implementing Source Code Vulnerability Testing in the Development Life Cycle |
|
|
Organizations should implement source code analysis tools as part of the software development life cycle to find and fix the highest number of security issues early in the project. This will result in a higher-quality product and lower overall application life cycle costs. Countless studies and analyst recommendations suggest the value of improving software security during the development life cycle (SDLC) rather than trying to address security vulnerabilities in software discovered after widespread adoption and deployment.
Download Now
|
 |
|
|
|
The Path to a Secure Application: A Source Code Security Review Checklist |
|
|
The path to application security begins by rigorously testing source code for any and all vulnerabilities, to ensure the application will not compromise, or allow others to compromise, data privacy and integrity. This paper outlines the steps to secure source code development practices, and presents a source code security review checklist.
Download Now
|
|
|
|
|
Trust, But Verify: How to Manage Risk in Outsourced Applications |
|
|
This paper will discuss the need for addressing security concerns in outsourced applications, outline a framework for addressing those concerns, explore the role of source code review to assess and certify outsourced applications, and provide a sample contract addendum for including secure code requirements in RFP's and outsourcing contracts.
Download Now
|
|
|
|
|
|
|
|
|
LAN Security: Identity-Based Solution Guide |
|
|
The ability to monitor, track and report usage based on actual user identity and applications provides for quicker reaction time, easier reporting for compliance, as well as more visibility into the network. Learn about a complete line of solutions for effective identity-based policy enforcement.
Download Now
|
 |
|
|
|
|
|
|
|
E-Policy Best Practices Guide |
|
|
Download this information-packed white paper by Nancy Flynn, Executive Director of the ePolicy Institute, for a no-nonsense look at the business risks and legal liabilities associated with employee misuse of the Internet, email, instant messaging (IM), and peer-to-peer (P2P) file-sharing technology.
Download Now
|
 |
|
|
|
Eurekify Enterprise Role Manager for CA Identity Manager |
| By :CA |
Published Date: May 12, 2008 |
|
Organizations are facing an explosion in the number of users of all types - employees, customers, partners and contractors - all of which need access to applications, data and other resources. While trying to provide access to the resources each user needs as quickly as possible, the organization must also ensure users do not have access to things they do not need.
Download Now
|
 |
|
|
|
|
|
|
| |
|
|
|
Results 1 - 25 of 66 matches |
Sort Results By : Published Date | Title | Company name |
Home >
> Security Policies
|
|
<< Start < Previous 1 2 3 Next > End >>
|
More Security Topics |
Access Control, Anti Spam, Anti Spyware, Anti Virus, Application Security, Auditing, Authentication, Biometrics, Business Continuity, Compliance, DDoS, Disaster Recovery, Email Security, Encryption, Firewalls, Hacker Detection, High Availability, Identity Management, Internet Security, Intrusion Detection, Intrusion Prevention, IPSec, Network Security Appliance, Password Management, Patch Management, Phishing, PKI, Policy Based Management, Security Management, Security Policies, Single Sign On, SSL, Secure Instant Messaging, Web Service Security, PCI Compliance |
|
|
|
SPECIAL REPORT |
|
Using Virtualization to Maximize Your IT Environment
|
|
The business of managing IT infrastructures has reached a crossroads. The number of global players is shrinking through mergers and acquisitions while the playing field, also known as the customer’s IT environment, has become exceedingly complex and difficult to manage. This working paper presents CA’s corporate and technology strategy behind appropriate virtualization management positioning and commitments as an important element in preparation for the move toward that model in your IT environment. |
|
|
