Home > Information Security Magazine > Archives > September 2008
EMAIL THIS
Information Security Magazine

  CURRENT ISSUE  
  FEATURES  
  COLUMNS  
  HOT PICK & PRODUCT REVIEWS  
  ARCHIVES  
  SUBSCRIBE/RENEW  
  
Information Security Magazine
This Month
Sign up for Information Security RSS feeds
NOVEMBER 2009
FEATURES

Integrated change management reduces security risks

Metasploit Project acquisition ups ante for penetration testing market

Enterprises must treat Insider risk as they do external threats

VIEW FEATURES FOR ALL MONTHS
COLUMNS

Schneier-Ranum Face-Off: Is antivirus dead?

Standards compliance does not equal sound information security risk management

Time is now for pandemic flu planning

VIEW COLUMNS FOR ALL MONTHS

HOW WE GRADE PRODUCTS
Read more from Information Security magazine in our back issues.

October 2009

September 2009

July 2009

June 2009

May 2009

April 2009

March 2009

VIEW ALL BACK ISSUES

Archives: September 2008
VIEW OTHER ISSUES FROM 2008:   JAN   |   FEB   |   MAR   |   APR   |   MAY   |   JUN   |   JUL   |   SEP   |   OCT   |   NOV


Compare Featured Security Software Solutions
Features

Companies Finding a Place for Maturing NAC Projects
by David Strom
Four case studies examine how network access control (NAC) projects are faring in the enterprise, and how they're helping with device discovery and policy enforcement, but remediation remains a challenge.

Enterprise Security of Microsoft SQL Server 2008 Improves Over Other Versions
by James C. Foster
New protections in SQL Server 2008 include granular data security features such as encryption, key management and meta data security enhancements. There is also increaded flexibility in role-based permissions that tighten database controls.

Mix of Frameworks and GRC Satisfy Compliance Overlaps
by Michael S. Mimoso
Three organizations reveal how they use a combination of frameworks such as COBIT or ISO 27001 along with GRC tools satisfy overlapping industry and federal regulatory demands.
Columns

GRC: Over-Hyped or Legit?
by Kelley Damore
Governance, risk and compliance (GRC) is being used as a catch-all phrase for most information security strategies and tagged onto various products, adding even more confusion in the market as to what it truly means or promises to corporations.

Viewpoint: Vulnerability researchers doing more than 'search'

Security Certifications' Ethics Programs Merely Window-Dressing
by David Mortman
Professional information security organizations' efforts to improve their ethics programs only dress up an ugly situation.

Shared Identity Providers Could Soothe Password Chaos
by Jay G. Heiser
A security model that requires people to remember multiple passwords and logins has to change.

Interview: Bill Jiminez, Systems Architect at the University of the Pacific
by Dennis Fisher
Rolling out access controls such as NAC and password-management systems providedsome key lessons for dealing with reluctant users.
Hot Pick & Product Reviews

Product review: AirDefense Enterprise 7.3
AirDefense's AirDefense Enterprise 7.3, a wireless intrusion detection and intrusion prevention tool, has new features including support for Power over Ethernet (PoE) for its sensors, a new user interface, overhauled reporting and new features such as WEP cloaking, advanced forensics, spectrum analysis and a centralized console to manage appliances.

Product Review: Altor Networks' Virtual Network Security Analyzer (VNSA) 1.0
The effectiveness of Altor Networks' Virtual Network Security Analyzer (VNSA) 1.0 remains an Achille's Heel, especially for companies with a large number of virtual machine deployments.

Sophos Endpoint Security and Control 8.0 product review
Sophos Endpoint Security and Control 8.0 is a comprehensive endpoint security product, offering antivirus, antispyware, host intrusion prevention, firewalling, application control, device control, and network access control.

Product Review: Workshare Protect Premium 6.0
Workshare Protect Premium 6.0 seeks to eliminate the malicious or accidental leakage of sensitive corporate data.

TechFocus
by Neil Roiter
Central Control

Security Services: Symantec Online Fraud Protection
by Neil Roiter
Symantec's Online Fraud Protection service includes an initial on-site assessment, phishing and transaction monitoring, incident response, monitoring of malware targeting the company's brand and analysis of new malware behavior.




TechTarget Security Media
Information Security View this month\\'s issue and subscribe today.
Information Security Decisions Apply online for free conference admission.
SearchSecurity.com
HomeNewsMagazineMultimediaWhite PapersLearningAdviceTopicsEventsAbout Us
SEARCH :     Site Index Powered by: Search Powered by Google

About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Site Map




All Rights Reserved, Copyright 2003 - 2009, TechTarget | Read our Privacy Policy 		  TechTarget - The IT Media ROI Experts