This article is part of an Essential Guide, our editor-selected collection of our best articles, videos and other content on this topic. Explore more in this guide:
5. - Your questions answered: Read more in this section
- Mike Chapple, Enterprise Compliance
- Joseph Granneman, security management
Explore other sections in this guide:
Mike Chapple, Ph. D., CISA, CISSP, is an IT security manager with the University of Notre Dame. He previously served as an information security researcher with the National Security Agency and the U.S. Air Force. Chapple is a frequent contributor to SearchSecurity.com, and serves as its resident expert on enterprise compliance, frameworks and standards for its Ask the Experts panel. He previously served as site expert on network security, is a technical editor for Information Security magazine and the author of several information security titles, including the CISSP Prep Guide and Information Security Illuminated.
See below for Mike's archive of advice on both compliance and network security. To submit a question for Mike, click on the "Ask a Question" tab above.
Do you have a question for our experts?
Contributions from Mike Chapple, Enterprise Compliance
- Can a Web client not supporting SSL still connect to a secure server?
- Do P2P networks share the same risks as traditional ones?
- Building application firewall rule bases
- What is an Nmap Maimon scan?
- How to keep packet sniffers from collecting sensitive data
- How do a DMZ and VPN work together?
- Is a transition from IPv4 to IPv6 worth the effort?
- Are rogue DHCP servers a serious network risk?
- Network isolation as a PCI Data Security Standard compl
- What to consider when deploying NAC products
- What are the risks of placing enterprise users in a DMZ?
- Can Skype phones threaten an enterprise network?
- Do information leak prevention products protect critical data?
- What are the benefits of a tunnelless VPN?
- Public wireless networks present a raft of dangers
- How well do content filtering tools limit network traffic?
- Can a TCP connection be made without an open port?
- Are all data packets treated equally?
- Which security practices can lower exposure to zero-day attacks?
- Which wireless security assessment tools are commercially available?