| |
| Home >
Security > Auditing |
 |
|
|
|
An Information Technology (IT) audit or information systems (IS) audit is an examination of the controls within an entity's Information technology infrastructure. These reviews may be performed in conjunction with a financial statement audit, internal audit, or other form of attestation engagement. |
|
| |
 |
Results 1 - 25 of 59 matches |
Sort Results By : Published Date | Title | Company name |
|
|
|
|
|
|
For over a decade now, RADIUS servers have been a mainstay of dial-up and VPN access control. The rather inconspicuous RADIUS server, perhaps better known as that beige, general-purpose PC collecting dust in the corner of your data center, has proved sufficient for performing basic duties like validating passwords and granting network access.
Download Now
|
 |
|
|
|
| By : Qualys |
Published Date: Oct 31, 2008 |
|
|
This paper provides a detailed discussion of the internal and external regulatory challenges now faced by organizations, the scope of these challenges, and 4 key ways in which they can be addressed through better business processes and automation.
Download Now
|
 |
|
|
|
|
|
|
New report issued by Fortrex, Emagined Security and Solidcore reveals the cost of PCI compliance is justified. These PCI requirements exist to protect sensitive data - yet, research indicates that these are among the least satisfied requirements across Level 1 merchants, with almost 40% non-compliance.
Download Now
|
 |
|
|
|
| By : Fortify |
Published Date: Aug 15, 2008 |
|
|
For a CISO, open source introduces a new source of risk and unique security challenge: how do you influence developers over whom you have no direct management control? Jennifer Bayuk, former CISO of Bear Stearns, provides insight on best practices for evaluating, deploying and managing open source code.
Download Now
|
 |
|
|
|
|
|
|
In this whitepaper, Patrick Clawson, Chairman & CEO of Lumension Security, will outline the importance of adopting a Positive Security Model that combines the power of vulnerability management, automated remediation, and whitelist application and device control to eliminate the risk of the unknown threat.
Download Now
|
 |
|
|
|
| By : Aomega |
Published Date: Nov 06, 2006 |
|
|
Recent regulatory additions require that companies take proactive measures like penetration testing to enforce data privacy and integrity. By deploying a distributed model companies can execute testing from different security levels which is important in challenging posture based on level of access.
Download Now
|
 |
|
|
|
| By : CA |
Published Date: Sep 01, 2006 |
|
|
Learn how CA Access Control, a independent security system, complements the native Windows operating system and can enable a strong defense-in-depth security practice for your organization.
Download Now
|
 |
|
|
|
| By : CA |
Published Date: Jul 15, 2008 |
|
|
CA SiteMinder Web Access Manager provides policy based authentication and authorisation, supports multiple advanced authentication techniques, identity federation, and single sign on for Web applications. Traditionally, access management infrastructure has been developed separately for each Web application, leading to duplication and limited control and audit capability. SiteMinder provides centralised capabilities plus extensive additional facilities. Butler Group is impressed with its fine-grained authorisation capabilities, support for advanced authentication techniques, support for a good range of user directories, identity federation based on established standards, and the scalable architecture. Overall, SiteMinder is an impressive solution for mid-sized and large companies who use numerous Web applications to deliver sensitive or business critical data.
Download Now
|
|
|
|
|
| By : Cenzic |
Published Date: Nov 30, 2005 |
|
|
The Cenzic Hailstorm® solution helps financial institutions comply with GLBA and other laws by automating risk assessment, checking for vulnerability to the injection of malicious code into Web servers, automating the testing of code and key controls during the software development process, and helping them respond to new vulnerabilities in the software development lifecycle.
Download Now
|
 |
|
|
|
| By : Tripwire |
Published Date: Jul 11, 2007 |
|
|
In this whitepaper, you will learn how configuration audit and control can be used effectively to ensure system management productivity, and help reduce costs and sustain configuration viability within the bounds of operational, security and regulatory standards.
Download Now
|
 |
|
|
|
|
|
|
The Internet and email have stimulated huge productivity gains for employees. Workers quickly and easily access volumes of research on the Web and correspond with a mouse click. Unfortunately, businesses taking advantage of these tools are increasingly faced with daily onslaughts of spam and unwanted Web traffic.
Download Now
|
 |
|
|
|
| By : Symark |
Published Date: Oct 26, 2005 |
|
|
The purpose of the document is to demonstrate the value of Symark PowerBroker as a tool for eliminating or reducing risk in environments where information security and risk avoidance are considered important.
Download Now
|
 |
|
|
|
| By : Fortify |
Published Date: Apr 16, 2007 |
|
|
This webinar explores 12 of the most common security traps in Java by examining the causes of security failures in modern Java–based applications. Approaching security with an “outside in” style, we look at vulnerabilities from a developer’s perspective, focusing on the source code.
Download Now
|
|
|
|
|
| By : Qualys |
Published Date: Aug 08, 2006 |
|
|
Security administrators need to be more proactive about preventing attacks, making vulnerability assessments a crucial tool in their portfolio.
Download Now
|
|
|
|
|
|
|
|
This white paper presents a solution framework for Life Science Organizations that want to implement enterprise digital trust management to protect their electronic value chain.
Download Now
|
 |
|
|
|
|
|
|
Learn how delegating administrative privileges can aid in improving administrative productivity, system availability and security, while satisfying the demands of auditors. Read this new white paper from NetIQ today.
Download Now
|
 |
|
|
|
|
|
|
A millisecond of downtime can mean millions of dollars. Maintaining compliance while ensuring your firm has the required speed and uptime can be daunting. Learn what you can do with your email and instant messages to prepare for your next regulatory audit.
Download Now
|
 |
|
|
|
| By : Tripwire |
Published Date: Jun 07, 2007 |
|
|
Discover how high-performing IT organizations are able to create a culture that supports and uses change management to their advantage, facilitating enterprise business goals.
Download Now
|
|
|
|
|
|
|
|
This paper details the processes by which ProofMark tags electronic records with a self-validating cryptographic seal that acts as a "tamper indicator" based on a true and provable time-reference datum. With this it is able to provide instantaneous and irrefutable proof of authenticity, no matter where the data resides or who has controlled it.
Download Now
|
|
|
|
|
|
|
|
Assure SOX compliance and address key questions asked by SOX auditors with simple change management enhancement.
Download Now
|
|
|
|
|
| By : Decru |
Published Date: Dec 01, 2006 |
|
|
Company data is vulnerable to threats from - insiders, unauthorized access to data, data backup, off-site mirroring - just to name a few. Encrypting data at rest, on tape or disk, significantly mitigates these threats. This document provides guidance into some of the factors a company should consider when evaluating storage security technology and solutions.
Download Now
|
 |
|
|
|
|
|
|
Software analysis, documentation, migration, upgrades or replacements are daunting and risky endeavors because they are primarily manual and time-consuming. EvolveWare’s S2T Technology provides a solution to these problems with tools that automate the process up to 90%, thus reducing the time and cost of such initiatives by as much as 40-60%.
Download Now
|
 |
|
|
|
| By : ArcSight |
Published Date: Oct 31, 2008 |
|
|
This whitepaper will outline the drivers for log management as well as their underlying challenges and drive towards a common set of requirements for evaluation of log management tools.
Download Now
|
 |
|
|
|
| By : Tripwire |
Published Date: Mar 28, 2008 |
|
|
Tripwire founder/CTO Gene Kim provides seven practical steps that IT organizations can take to mitigate the unique security challenges of virtualization. While some are directed specifically at virtualized environments, many of these steps are solid best practices that apply to both physical and virtualized environments.
Download Now
|
|
|
|
|
|
|
|
In lieu of Sarbanes-Oxley, HIPAA, and other regulations, one of the main concerns in the IT industry today is security. In this white paper, we take a deeper look at the security concerns, the available solutions, their drawbacks, and a new complementary way of addressing today's security issues.
Download Now
|
 |
|
|
|
|
Sort Results By : Published Date | Title | Company name |
|
|
<< Start < Previous 1 2 3 Next > End >>
|
| |
More Security Topics |
|
Access Control, Anti Spam, Anti Spyware, Anti Virus, Application Security, Auditing, Authentication, Biometrics, Business Continuity, Compliance, DDoS, Disaster Recovery, Email Security, Encryption, Firewalls, Hacker Detection, High Availability, Identity Management, Internet Security, Intrusion Detection, Intrusion Prevention, IPSec, Network Security Appliance, Password Management, Patch Management, Phishing, PKI, Policy Based Management, Security Management, Security Policies, Single Sign On, SSL, Secure Instant Messaging, Web Service Security |
|
 |
|
