Security Management Strategies for the CIOEmail Alerts
-
Quiz: Reinventing defense in depth
This quiz is part of SearchSecurity.com’s Intrusion Defense Security School lesson, Reinventing defense in depth. Reinforce your knowledge of the key concepts of this lesson by taking the five-question quiz below. Quiz
-
CISSP Essentials training: Domain 10, Operations Security
Discover everything you need to know to ace the CISSP® exam with our first series of SearchSecurity.com Security School webcasts focused on CISSP training. Each lesson corresponds to a specific domain in the CISSP exam's "Common Body of Knowledge" --... Security School
-
Technical Security Architecture
Security Architectural Mo
-
Protection Mechanisms
Security Architectural Mo
-
The Protection Process
Security Architectural Mo
-
SecurityEXPERT eases device configuration but requires the UpdateEXPERT patching tool
Learn how St. Bernard's SecurityEXPERT automates deployment and enforcement of strong security configurations across Windows and Unix devices, based on industry best practices. However, it lacks customized reporting and requires the UpdateEXPERT patc... Review
-
RSA SecurID breach: Executives attempt to repair tarnished image
While the RSA SecurID breach cost EMC’s security division more than $60 million, executives admit it could take years to restore its tarnished image. News | 16 Jan 2012
-
Critical Windows 7 zero-day vulnerability could lead to iFrame attacks
Danish vulnerability clearinghouse Secunia is warning of a highly critical memory corruption zero-day vulnerability that could be targeted by attackers. Proof-of-concept code has been published. News | 20 Dec 2011
-
NIST guidelines seek to minimize risk of BIOS attacks
Amid emerging attack methods and the rollout of a new generation of BIOS, NIST offers guidelines to help enterprises reduce the risk of BIOS attacks. News | 21 Sep 2011
-
Maiffret: Configuration changes, attack mitigation can reduce attack surface
A new report produced by noted security researcher Marc Maiffret outlines free steps companies can take to greatly reduce the attack surface. News | 05 May 2011
-
LANDesk Software acquired by private equity firm
Thoma Bravo said it signed an agreement to buy LANDesk Software from Emerson Electric to further build out its security market portfolio. Article | 23 Aug 2010
-
EMC adds configuration management with Configuresoft acquisition
EMC said it would move Configuresoft into its Resource Management Software Group. The software could detect configuration changes in both virtual and physical environments. Article | 27 May 2009
-
McAfee to acquire Solidcore Systems for whitelisting
The $47 million deal adds Solidcore's whitelisting technology to McAfee's product line up. Article | 15 May 2009
-
Misconfiguration issues could have contributed to Hannaford breach
Hannaford takes heat from officials who believe the supermarket chain was slow in disclosing its breach. Meanwhile, one of Hannaford's security vendors gets defensive. Article | 19 Mar 2008
-
Misconfigured networks create huge security risks
Security experts say IT pros should be more concerned about the risks created by misconfigured networks than all the flaws and exploit code they read about. Article | 05 Mar 2008
-
Private sector should learn from government insecurity
The State Department hearings drew attention to the serious security problems that plague government networks. Federal security improvements will help push private sector progress. Column | 26 Apr 2007
- See More: News on Configuration Management Planning
-
NMAP NSE tutorial: Network asset and vulnerability identification
In this screencast, expert Mike McLaughlin offers an NMAP NSE tutorial for enterprise network asset and vulnerability identification. Tip
-
Best practices for enterprise database compliance
Successful enterprise database compliance means, for starters, access must be tightly controlled and monitored. Charles Denyer covers key database compliance essentials. Tip
-
2006 Products of the Year: Vulnerability management
We asked. You answered. Here are your choices for best vulnerability management product of the year. Tip
-
Configuresoft's Enterprise Configuration Manager v4.7
Information Security magazine's contributing editor, Mike Chapple, reviews Configuresoft's Enterprise Configuration Manager v4.7. Tip
-
Five ways to simplify the vulnerability management lifecycle
Learn how to quickly and accurately quantify your exposure, communicate that exposure and deploy resources to remediate. Tip
-
Quiz: Vulnerability management
Test your knowledge of vulnerability management process and methodology with this quiz by Shon Harris, CISSP. Tip
-
Products of the Year: Vulnerability management
Information Security magazine unveils its best vulnerability management products of 2005. Tip
-
Week 19: Configuration Management (CM)
In this week's column, Bard offers some tips on configuration management. Tip
-
Security templates -- the key to simplified deployment
Security templates could be the key to simplifying security deployments. Tip
-
Applying Windows 2000 Service Pack 2
Tip
-
BIOS security: Are BIOS attacks worth defending against?
Expert Nick Lewis analyzes the risk of a BIOS attack in juxtaposition to the irritation and expense of securing a network against this threat. Answer
-
How to bolster BIOS security to prevent BIOS attacks
BIOS attacks can be thwarted by implementing NIST guidelines for BIOS security. Answer
-
Is laptop remote wipe needed for effective laptop data protection?
Expert Michael Cobb explains how laptop remote wipe technology can ease data loss fears, but shouldn’t be solely relied upon. Answer
-
How does 'arbitrary code' exploit a device?
Ask the Expert
-
Corporate antivirus benchmarks
Ask the Expert
-
McAfee installation error
Ask the Expert
-
Configuring a server for VPN and Internet access
Ask the Expert
-
Installing software on SOHO appliances
Ask the Expert
-
De-activating telnet command
Ask the Expert
-
Dynamic Host Configuration Protocol and security
Ask the Expert
- See More: Expert Advice on Configuration Management Planning
-
policy server
A policy server is a security component of a policy-based network that provides authorization services and facilitates tracking and control of files... Definition
-
Default deny security: How to implement a positive security model
What is 'default deny' security? How difficult is the implementation process, and how could you sell it to executives? In this video, expert Mike Rothman explains how a positive security model works and how to decide if it's right for your enterprise... Video
-
BIOS security: Are BIOS attacks worth defending against?
Expert Nick Lewis analyzes the risk of a BIOS attack in juxtaposition to the irritation and expense of securing a network against this threat. Answer
-
RSA SecurID breach: Executives attempt to repair tarnished image
While the RSA SecurID breach cost EMC’s security division more than $60 million, executives admit it could take years to restore its tarnished image. News
-
Critical Windows 7 zero-day vulnerability could lead to iFrame attacks
Danish vulnerability clearinghouse Secunia is warning of a highly critical memory corruption zero-day vulnerability that could be targeted by attackers. Proof-of-concept code has been published. News
-
How to bolster BIOS security to prevent BIOS attacks
BIOS attacks can be thwarted by implementing NIST guidelines for BIOS security. Answer
-
NMAP NSE tutorial: Network asset and vulnerability identification
In this screencast, expert Mike McLaughlin offers an NMAP NSE tutorial for enterprise network asset and vulnerability identification. Tip
-
Best practices for enterprise database compliance
Successful enterprise database compliance means, for starters, access must be tightly controlled and monitored. Charles Denyer covers key database compliance essentials. Tip
-
NIST guidelines seek to minimize risk of BIOS attacks
Amid emerging attack methods and the rollout of a new generation of BIOS, NIST offers guidelines to help enterprises reduce the risk of BIOS attacks. News
-
Is laptop remote wipe needed for effective laptop data protection?
Expert Michael Cobb explains how laptop remote wipe technology can ease data loss fears, but shouldn’t be solely relied upon. Answer
-
Maiffret: Configuration changes, attack mitigation can reduce attack surface
A new report produced by noted security researcher Marc Maiffret outlines free steps companies can take to greatly reduce the attack surface. News
-
Quiz: Reinventing defense in depth
This quiz is part of SearchSecurity.com’s Intrusion Defense Security School lesson, Reinventing defense in depth. Reinforce your knowledge of the key concepts of this lesson by taking the five-question quiz below. Quiz
- See More: All on Configuration Management Planning
About Configuration Management Planning
Configuration management and configuration management databases (CMDBs) have quickly become indispensable tools for security professionals. Get the latest news and tactics on the configuration management process, tools and software.