Security Management Strategies for the CIOAccess "Encrypt It"
This article is part of the February 2007 issue of Tips for navigating the maze of global security regulations
Unencrypted data at rest is data at peril. Since Bank of America disclosed in 2005 that it lost a backup tape with customers' personal data, nearly 30 other companies have reported similar embarrassing mishaps. The list of organizations losing tapes with sensitive personal information includes many high-profile names: Ameritrade, Time Warner, CitiFinancial, ABN Amro Mortgage Group, People's Bank, Con Edison, the U.S. Department of Veterans Affairs and Chase Card Services. The breaches affected millions of people, resulted in millions of dollars in direct costs, and even more in indirect costs. Direct costs include notifying customers of the breach, estimated at $5 to $10 per person, and the expenses associated with controlling damage to the brand, such as advertising in national newspapers. Indirect costs stem from damage to the brand. A loss of trust can easily cause some customers to depart, or potential customers to choose another company to do business with; either way, it's lost revenue. The key to your organization avoiding this fate is encryption, as ... Access >>>
Access TechTarget
Premium Content for Free.
What's Inside
Features
-
-
Unified threat management: Fortinet's FortiGate 3600A
Fortinet's FortiGate 3600A
-
Encrypt It
Unencrypted data at rest is data at peril.
-
New tools target ISPs to stop botnets
Security vendors are bringing the botnet fight to ISPs and carriers.
-
Intrusion Prevention: Juniper Networks' ISG 2000 with IDP
Juniper Networks' ISG 2000 with IDP
-
Endpoint Security: ScriptLogic's Desktop Authority 7.5
ScriptLogic's Desktop Authority 7.5
- At Your Service: February 2007 managed security services news
- Events: Information security conferences for February 2007
-
Unified threat management: Fortinet's FortiGate 3600A
-
-
Security system products latest releases: Archsight, Finjan, Sophos
Get information, such as price, features, protection and support, on the most recently released versions of security products, such as Archsight logger and Sophos Security Suite.
-
Vulnerability scanning review: PatchLink's PatchLink Update 6.3
PatchLink's PatchLink Update 6.3
-
IPS by the Numbers
Choosing the right intrusion prevention technologies and products is a complex task, but following these six steps will make it simpler.
-
Information security blueprint for architecture and systems
A formalized security architecture diagrams how you should handle the changing threat and regulatory environments.
-
HIPAA privacy records and guidelines: How to achieve compliance
Learn how to achieve compliance with HIPAA certification and learn to avoid and fix risks with password security, privacy regulations, records, guidelines.
-
Cyber-Ark Enterprise Password Vault 4.0 product review
by Tom Bowers, Contributor
Product review of Cyber-Ark Enterprise Password Vault, a password management and security tool that manages passwords and controls privileged accounts.
-
Going Global
Organizations sending data abroad must be prepared to comply with a slew of privacy and security regulations.
-
Security system products latest releases: Archsight, Finjan, Sophos
-
Columns
-
Ping: Josh Seeger
Josh Seeger
-
Layer8: Is risk management for real?
Fad or For Real?
-
Perspectives: Suite Spot
All-in-one security suites offer an array of advantages versus best-of-breed.
-
Editor's Desk: Can someone call an exterminator?
A Bug's Life
-
Ping: Josh Seeger
More Premium Content Accessible For Free
Next-generation firewalls play by new rules
E-Zine
Firewalls started their journey to the next generation at about the same time as the Star Trek TV series. While the products have advanced with ...
Developing your endpoint security management transition plan
E-Handbook
This TechGuide will help you develop your endpoint security management transition plan. Articles focus on overcoming the challenges of Web-based ...
Unlock new pathways to network security architecture
E-Zine
Network security architecture is showing its age at many organizations. With new technology, different data types, and use of multi-generations of ...