Sarbanes Oxley Act
- October 03, 2008
The Consensus Controls project aims to provide organizations with a peer review system for IT controls.
- August 28, 2008
Using visualization tools, security pros can build charts and graphs to make sense of complex log files and data and improve their company's security stance.
- April 10, 2008
SAN FRANCISCO -- Companies need to embark on data classification projects to gain more control over its movement and minimize data leakage, but it's difficult to find a company successfully carrying out a project. Rena Mears, Deloitte's global and ...
- April 02, 2008
As Executive Editor Dennis Fisher explains, the Hannaford supermarket breach illustrates how too much emphasis on compliance puts critical data at risk.
- February 19, 2008
Kristin Lovejoy came to IBM as chief technology officer of Consul Risk Management, which was acquired by Big Blue in early 2007. Lovejoy helps contribute to IBM's company-wide security strategy, overseeing the company's governance, risk and ...
- November 01, 2007
IBM plans to invest $1.5 billion on security research in 2008. The company is also using recent acquisitions to introduce a PCI DSS program.
- October 08, 2007
The Cyber Security Industry Alliance is shifting from educating businesses to targeting members of Congress in its push for tougher data security and data breach notification laws.
- October 02, 2007
Sreekanth Ravi was a co-founder of SonicWall, where he and his brother Sudhakar worked to commoditize firewalls for the SMB market. Now the CEO of Code Green Networks, Ravi hopes to achieve more success in the SMB market by making data protection ...
- September 20, 2007
A VeriSign review of PCI Data Security Standard (PCI DSS) assessments it conducted found that more than half were still stumbling on the path to compliance.
- June 20, 2007
Log management is expected to be a hot topic at the upcoming Burton Group Catalyst Conference. Experts say log data can help organizations comply with numerous guidelines.
- February 05, 2007
Experts say the use of security information and event management systems can not only give organizations overall visibility into their network security and improve their incident response, but also meet compliance demands.
- December 13, 2006
The Securities and Exchange Commission is looking to make it easier for smaller companies to meet the requirements of Sarbanes-Oxley without going broke.
- August 01, 2006
There's really no one technology answer for regulatory compliance. That's why experts suggest that a variety of tools are needed to meet the requirements of regulations such as Sarbanes-Oxley.
- June 19, 2006
Miscommunications often cause rifts between security pros and auditors, but an analyst at this year's Burton Group Catalyst Conference said it doesn't have to be that way.
- February 07, 2006
As more organizations move their security officers out of IT, it may become easier for CISOs to succeed, but harder for other security pros to avoid a career dead-end.