| |
| Home >
Security > Auditing |
 |
|
|
|
An Information Technology (IT) audit or information systems (IS) audit is an examination of the controls within an entity's Information technology infrastructure. These reviews may be performed in conjunction with a financial statement audit, internal audit, or other form of attestation engagement. |
|
| |
 |
Results 1 - 25 of 49 matches |
Sort Results By : Published Date | Title | Company name |
|
|
|
|
|
|
This white paper will detail a strategy that enables companies to painlessly gain PCI compliance and ensure effective security. By mapping technical controls to PCI standards and by continuously monitoring, assessing and reporting the status of your environment, Lumension’s Security Suite will make your PCI audit the most efficient and actionable of your life.
Download Now
|
 |
|
|
|
| By : Tripwire |
Published Date: Jun 06, 2008 |
|
|
This paper outlines the nature of infrastructure integrity, change auditing, and compliance solutions. It describes how an investment in configuration assessment and change auditing solutions can stabilize IT operations, lowering the operational costs associated with the IT infrastructure; be a force multiplier; and provide a solid foundation that increases the effectiveness of the investment in information security.
Download Now
|
 |
|
|
|
| By : McAfee |
Published Date: May 01, 2008 |
|
|
Companies feel a sense of security from encrypting data stored on corporate systems on desktops, laptops and mobile devices. They believe this act will protect their intellectual property, and sensitive customer information will remain safe and secure from unauthorized access. But that is not enough. Simply encrypting this information doesn’t help you prove compliance with external regulations or internal controls during a financial audit or legal discovery process.
Download Now
|
 |
|
|
|
|
|
|
The realities of security and compliance have changed considerably since patch management faced its first big paradigm shift some years ago. At that time many organizations wrestled with the transition from manual patching and remediation to an automated process. Of course, nothing in security is ever static, so it is no surprise that patch management has continued to evolve since then. Though still automated, today’s best patch management tools and techniques are significantly different from their predecessors.
Download Now
|
|
|
|
|
| By : Tripwire |
Published Date: Mar 28, 2008 |
|
|
Tripwire founder/CTO Gene Kim provides seven practical steps that IT organizations can take to mitigate the unique security challenges of virtualization. While some are directed specifically at virtualized environments, many of these steps are solid best practices that apply to both physical and virtualized environments.
Download Now
|
|
|
|
|
|
|
|
Assure SOX compliance and address key questions asked by SOX auditors with simple change management enhancement.
Download Now
|
 |
|
|
|
|
|
|
New report issued by Fortrex, Emagined Security and Solidcore reveals the cost of PCI compliance is justified. These PCI requirements exist to protect sensitive data - yet, research indicates that these are among the least satisfied requirements across Level 1 merchants, with almost 40% non-compliance.
Download Now
|
|
|
|
|
|
|
|
This paper details the processes by which ProofMark tags electronic records with a self-validating cryptographic seal that acts as a "tamper indicator" based on a true and provable time-reference datum. With this it is able to provide instantaneous and irrefutable proof of authenticity, no matter where the data resides or who has controlled it.
Download Now
|
 |
|
|
|
|
|
|
This IT audit checklist guide includes advice on assessing the effectiveness of change management in a variety of areas. As companies grow more dependent on interdependent IT systems, the risks associated with untested changes in development and production environments have increased proportionately.
Download Now
|
|
|
|
|
|
|
|
The PCI DSS is demonstrably becoming a de facto standard of due care for any organization responsible for the privacy and integrity of data. The increased focus on application security in the latest revisions of the PCI DSS can be traced directly to many of the recent high profile breaches, where insecure applications have proved to be the point of access for hackers, and the source of data loss.
Download Now
|
 |
|
|
|
|
|
|
In this whitepaper, Patrick Clawson, Chairman & CEO of Lumension Security, will outline the importance of adopting a Positive Security Model that combines the power of vulnerability management, automated remediation, and whitelist application and device control to eliminate the risk of the unknown threat.
Download Now
|
|
|
|
|
|
|
|
For over a decade now, RADIUS servers have been a mainstay of dial-up and VPN access control. The rather inconspicuous RADIUS server, perhaps better known as that beige, general-purpose PC collecting dust in the corner of your data center, has proved sufficient for performing basic duties like validating passwords and granting network access.
Download Now
|
 |
|
|
|
| By : CA |
Published Date: Sep 13, 2007 |
|
|
Your organization relies on servers to store and access to your most critical information resources. CA Access Control is a product that centralizes control and distributed enforcement of appropriate role-based access to sensitive server resources.
Download Now
|
 |
|
|
|
|
|
|
Enabling IT equipment vendors to perform remote service on your data centers helps maximize uptime and lower TCO—but at what risk? Dial-up modems and VPNs introduce security vulnerabilities and lack sufficient auditing capabilities—making it virtually impossible to track external access and maintain data center security. Download this white paper to learn how you can manage security risks, lower service-related costs, achieve regulatory and internal compliance, and more.
Download Now
|
 |
|
|
|
|
|
|
Learn how delegating administrative privileges can aid in improving administrative productivity, system availability and security, while satisfying the demands of auditors. Read this new white paper from NetIQ today.
Download Now
|
 |
|
|
|
|
|
|
Identifying critical change control failure points in your infrastructure can help reduce the threat of costly downtime, potential security breaches, and compliance weaknesses. Read this paper for guidelines on how to identify and categorize systems that have characteristics which heighten risk.
Download Now
|
|
|
|
|
|
|
|
This paper lays out the challenges with complying with SOX and suggests a radical solution: build a self-service, automated IT control framework in which all the information required to verify compliance is available in a single reporting system.
Download Now
|
|
|
|
|
|
|
|
Do you need to simplify your financial reporting process to ensure that you are meeting the Sarbanes Oxley requirements? Read this whitepaper to learn more…
Download Now
|
 |
|
|
|
|
|
|
A millisecond of downtime can mean millions of dollars. Maintaining compliance while ensuring your firm has the required speed and uptime can be daunting. Learn what you can do with your email and instant messages to prepare for your next regulatory audit.
Download Now
|
 |
|
|
|
| By : Tripwire |
Published Date: Jul 11, 2007 |
|
|
In this whitepaper, you will learn how configuration audit and control can be used effectively to ensure system management productivity, and help reduce costs and sustain configuration viability within the bounds of operational, security and regulatory standards.
Download Now
|
|
|
|
|
|
|
|
Learn how to meet regulatory requirements for system change and user activity monitoring with NetIQ Change Guardian for Windows, without the need for performance-hindering native auditing.
Download Now
|
|
|
|
|
|
|
|
This white paper presents a solution framework for Life Science Organizations that want to implement enterprise digital trust management to protect their electronic value chain.
Download Now
|
|
|
|
|
| By : Tripwire |
Published Date: Jun 07, 2007 |
|
|
Discover how high-performing IT organizations are able to create a culture that supports and uses change management to their advantage, facilitating enterprise business goals.
Download Now
|
|
|
|
|
| By : CA |
Published Date: May 07, 2007 |
|
|
UNIX and Linux systems have inherent security issues that pose high risk to the business objectives of complying with regulations and data protection. To reduce security risks, you need full superuser containment and the ability to enforce strict access control to critical system resources through centralized and automated policy management across different platforms.
Download Now
|
|
|
|
|
| By : Shunra |
Published Date: Mar 18, 2007 |
|
|
Effective IT disaster recovery and business continuity planning is essential for every business. All businesses depend on their IT services for moment-to-moment operations. It is vital to ensure that those services are not disrupted due to any disaster. Pre-test your plans in a simulated network.
Download Now
|
 |
|
|
|
|
Sort Results By : Published Date | Title | Company name |
