Security Management Strategies for the CIOAccess "Security Services: Symantec Online Fraud Protection"
This article is part of the September 2008 issue of Lessons learned from good and bad NAC implementations
Symantec Online Fraud Protection Symantec Price: From $100,000 per year per brand protected and from $75,000/year for an online fraud specialist Once Internet commerce became big business, it was inevitable that Inter-net crime would become big business as well. Online fraud, typically some kind of identity theft such as phishing, costs companies and their customers billions of dollars. "What we're really talking about is brand erosion," says Ted Donat, director, product management, for Symantec Consulting Services. "If you get an email from Joe's_bank.com, and you read about a phishing attack or were the victim of a phishing attack, you're going to think twice about opening that email." Symantec's recently announced Online Fraud Protection service is a multifaceted package to help organizations doing a high volume of Internet transactions. Typically these are large banks, brokerages and retailers, but Donat says Symantec is also drawing interest from smaller banks, which are also targeted. The service includes an initial on-site assessment in which Symantec... Access >>>
Access TechTarget
Premium Content for Free.
What's Inside
Features
-
-
Mix of Frameworks and GRC Satisfy Compliance Overlaps
Three organizations reveal how they use a combination of frameworks such as COBIT or ISO 27001 along with GRC tools satisfy overlapping industry and federal regulatory demands.
-
Enterprise Security of Microsoft SQL Server 2008 Improves Over Other Versions
New protections in SQL Server 2008 include granular data security features such as encryption, key management and meta data security enhancements. There is also increaded flexibility in role-based permissions that tighten database controls.
-
Sophos Endpoint Security and Control 8.0 product review
Sophos Endpoint Security and Control 8.0 is a comprehensive endpoint security product, offering antivirus, antispyware, host intrusion prevention, firewalling, application control, device control, and network access control.
-
Product Review: Workshare Protect Premium 6.0
Workshare Protect Premium 6.0 seeks to eliminate the malicious or accidental leakage of sensitive corporate data.
-
Product review: AirDefense Enterprise 7.3
AirDefense's AirDefense Enterprise 7.3, a wireless intrusion detection and intrusion prevention tool, has new features including support for Power over Ethernet (PoE) for its sensors, a new user interface, overhauled reporting and new features such as WEP cloaking, advanced forensics, spectrum analysis and a centralized console to manage appliances.
-
Mix of Frameworks and GRC Satisfy Compliance Overlaps
-
-
Companies Finding a Place for Maturing NAC Projects
Four case studies examine how network access control (NAC) projects are faring in the enterprise, and how they're helping with device discovery and policy enforcement, but remediation remains a challenge.
-
Product Review: Altor Networks' Virtual Network Security Analyzer (VNSA) 1.0
The effectiveness of Altor Networks' Virtual Network Security Analyzer (VNSA) 1.0 remains an Achille's Heel, especially for companies with a large number of virtual machine deployments.
-
TechFocus
Central Control
-
Security Services: Symantec Online Fraud Protection
Symantec's Online Fraud Protection service includes an initial on-site assessment, phishing and transaction monitoring, incident response, monitoring of malware targeting the company's brand and analysis of new malware behavior.
-
Companies Finding a Place for Maturing NAC Projects
-
Columns
-
Shared Identity Providers Could Soothe Password Chaos
A security model that requires people to remember multiple passwords and logins has to change.
-
Interview: Bill Jiminez, Systems Architect at the University of the Pacific
Rolling out access controls such as NAC and password-management systems providedsome key lessons for dealing with reluctant users.
-
GRC: Over-Hyped or Legit?
Governance, risk and compliance (GRC) is being used as a catch-all phrase for most information security strategies and tagged onto various products, adding even more confusion in the market as to what it truly means or promises to corporations.
- Viewpoint: Vulnerability researchers doing more than 'search'
-
Security Certifications' Ethics Programs Merely Window-Dressing
Professional information security organizations' efforts to improve their ethics programs only dress up an ugly situation.
-
Shared Identity Providers Could Soothe Password Chaos
More Premium Content Accessible For Free
Next-generation firewalls play by new rules
E-Zine
Firewalls started their journey to the next generation at about the same time as the Star Trek TV series. While the products have advanced with ...
Developing your endpoint security management transition plan
E-Handbook
This TechGuide will help you develop your endpoint security management transition plan. Articles focus on overcoming the challenges of Web-based ...
Unlock new pathways to network security architecture
E-Zine
Network security architecture is showing its age at many organizations. With new technology, different data types, and use of multi-generations of ...