Home > Information Security Magazine
EMAIL THIS
Information Security Magazine

  CURRENT ISSUE  
  FEATURES  
  COLUMNS  
  HOT PICK & PRODUCT REVIEWS  
  ARCHIVES  
  SUBSCRIBE/RENEW  
  
Information Security Magazine
This Month
Sign up for Information Security RSS feeds
NOVEMBER 2009
FEATURES

Integrated change management reduces security risks

Metasploit Project acquisition ups ante for penetration testing market

Enterprises must treat Insider risk as they do external threats

VIEW FEATURES FOR ALL MONTHS
COLUMNS

Schneier-Ranum Face-Off: Is antivirus dead?

Standards compliance does not equal sound information security risk management

Time is now for pandemic flu planning

VIEW COLUMNS FOR ALL MONTHS

HOW WE GRADE PRODUCTS
Read more from Information Security magazine in our back issues.

October 2009

September 2009

July 2009

June 2009

May 2009

April 2009

March 2009

VIEW ALL BACK ISSUES

2008 Features

VIEW FEATURES FROM PREVIOUS YEARS::  

 2009   |   2008   |   2007   |   2006   |   2005
November 2008

Security researchers leading way in biometrics, insider threats, encryption and virtualization
by Michael S. Mimoso
Carnegie Mellon University's CyLab is blazing trails in biometrics, insider threats, key exchange, virtualization and more.

Diverse mobile devices changing security paradigm
by Lisa Phifer
Enterprises must develop more creative strategies for enabling business use of smartphones and PDAs, including those that cannot be fully managed and secured.

Host-based intrusion prevention addresses server, desktop security
by Neil Roiter
HIPS is used for everything from traditional signature-based antivirus/antispyware and host firewalls to behavior analysis.

TrueCrypt an open source laptop encryption choice for SMBs
by Russ McRee
TrueCrypt eases security and privacy concerns. The open source security software encrypts a dedicated space on your hard drive, a partition or the whole disk, as well as removable storage devices.
October 2008

Security 7 Award winners tackle important information security issues
The 2008 Security 7 Award winners have their say on information sharing, perimeter security, relationships, convergence, strategy, history and progress.

Encryption no longer an optional technology
by Brien Posey
Unravel the ins and outs of how your organization should deploy encryption.
September 2008

Companies Finding a Place for Maturing NAC Projects
by David Strom
Four case studies examine how network access control (NAC) projects are faring in the enterprise, and how they're helping with device discovery and policy enforcement, but remediation remains a challenge.

Enterprise Security of Microsoft SQL Server 2008 Improves Over Other Versions
by James C. Foster
New protections in SQL Server 2008 include granular data security features such as encryption, key management and meta data security enhancements. There is also increaded flexibility in role-based permissions that tighten database controls.

Mix of Frameworks and GRC Satisfy Compliance Overlaps
by Michael S. Mimoso
Three organizations reveal how they use a combination of frameworks such as COBIT or ISO 27001 along with GRC tools satisfy overlapping industry and federal regulatory demands.
July 2008

How to be an Information Security Know-it-all
The essentials every chief information security officer must master, including PCI compliance, server and desktop security, securing the data lifecycle and how to best align security and business.

Avoiding Audit Trouble: Getting PCI Compliant
by Diana Kelley
Get compliant with Payment Card Industry Data Security Standard Compliance (PCI DSS) with solutions and tips from auditors and audit survivors.

Secure Configuration of Windows XP Desktops
by Brien Posey
DESKTOP SECURITY 5 steps to properly configure desktop security.

Windows Server 2003 hardening services ensures better security
by Sandra Kay Miller
Shutting down unneeded services, ports and accounts makes Windows Server 2003 tough to beat.

Data Lifecycle Management Model Shows Risks and Integrated Data Flow
by Ernie Hayden
Information flows through business processes in an orderly fashion; security must flow right along with it.

Information Security and Business Integration
by Ravila Helen White
INTEGRATION Security professionals can rely on the same models and frameworks used by traditional business to earn a seat at the table.
June 2008

Virtualization server security best practices
by Thomas Ptacek
Avoid server virtualization security bad practices with these dos and don'ts. Get info on virtualization products, segmentation, implementation, avoiding malware, and staging, deploying and patching virtual machines, segmentation and implementation.

GRC Tools Help Manage Regulations
by Diana Kelley & Ed Moyle
GOVERNANCE, RISK AND COMPLIANCE We look at three GRC products and the distinct ways these tools can help organizations navigate the complicated regulatory game.

Security Awareness Employee Training Essential to Infosec Program
by Marcia Savage
Security awareness training initiatives such as online tutorials, newsletters, MP3s and prizes get the security message across to users.

Spam Blockers Losing Ground on Sophisticated Attackers
by Mike Rothman
SPAM Spam hasn't been "solved"; in fact, the scourge has grown worse as attackers continually trump countermeasures and refine their focus on high-value targets.
May 2008

7 Security Questions to Ask Your SaaS Provider
by Heather Clancy
Outsourcing software as a service (SaaS) puts control over an organization's applications in the hands of others. Learn what questions to ask your provider, how to define security policies, how to understand how service providers handle security and ensure enforcement of policies.

Identity Management Suites Enable Integration, Interoperability
by Joel Dubin
IDENTITY MANAGEMENT Feature-rich product suites are putting a face on integration and interoperability.

5 Steps for Developing Strong Change Management Program Best Practices
by Dave Shackleford
Poor change control and configuration management can affect the security of your systems and networks. Follow these five steps for a strong change management program.
April 2008

Readers' Choice Awards '08: IT Security Products of the Year
by Information Security / SearchSecurity.com Staff
Information Security magazine's annual Readers' Choice Awards honor security software, services and products of the year in several areas: antimalware, application, email and mobile security, network access control, firewalls, remote access, firewalls, SIMs, UTM, vulnerability management, wireless, IDS/IPS, and Web gateways.

Web security gateways keep Web-based malware at bay
by Michael Cobb
Web Security Gateways - A new breed of integrated technology takes Web-based malware off the menu.
March 2008

Security Learning its Role in E-Discovery
by Trent Henry
Security teams are learning their crucial role in processing e-discovery requests.

Comparative Product Review: Six Web Application Firewalls
by Sandra Kay Miller
No longer can security managers focus only on perimeter and host security. The application has become the prime target for hackers. We review six leading Web application firewalls from Barracuda, Bee Ware, Breach Security, Citrix, F5 and Imperva that help deliver your critical apps securely.

Case Study: Company deploys full disk encryption policy on laptops
by Bill Brenner
One billion-dollar company isn't taking chances with data stored on its laptops. It deployed full disk encryption on every machine, an increasingly popular security strategy.
February 2008

Examine Security Features and Tools of Microsoft Windows Server 2008
by Beth Quinlan
Unwrap Windows Server 2008, the first server revision under Trustworthy Computing. Microsoft promises it is secure by design, default and deployment.

Data Loss Prevention Tools Offer Insight into Where Data Lives
by Rich Mogull
DLP tools help mitigate incidents and aid with data discovery.

Survey: Security Pros Identify Priorities for 2008
by Marcia Savage
Security professionals prioritize mobility and security, identity and access management, protecting data and intellectual property and vulnerability management.
January 2008

Blow Out the Candles
by Michael S. Mimoso
Information Security magazine turns 10 years old, maturing right alongside the security industry.

Reflections
A Dynamic Decade | News of the Day | Trustworthy Finally? | Crystal Ball

Milestones
Getting the Point | Turning Points | Nefarious Numbers | SOX Appeal | Evolution of a Hacker | Digital Pickpockets | The Toughest Battle: 10 Years, 10 Attacks | We Hardly Knew Ye

People
Impact | 8 More Security Stars | 10 Researchers to Watch | Melting Pot | Where Are They Now? | Face-Off

Future
The View from Visionaries | Taking the Services-on-Demand Plunge | Warning Signs | Web of Worry | Attack Toolkits | VoIP Vulnerable




TechTarget Security Media
Information Security View this month\\'s issue and subscribe today.
Information Security Decisions Apply online for free conference admission.
SearchSecurity.com
HomeNewsMagazineMultimediaWhite PapersLearningAdviceTopicsEventsAbout Us
SEARCH :     Site Index Powered by: Search Powered by Google

About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Site Map




All Rights Reserved, Copyright 2003 - 2009, TechTarget | Read our Privacy Policy 		  TechTarget - The IT Media ROI Experts