Security Management Strategies for the CIOEmail Alerts
-
Quiz: Data breach prevention strategies
Test your knowledge of data breach prevention strategies in this five-question quiz. Quiz
-
Quiz: Network content monitoring must-haves
See if you know the essentials of network content monitoring in this SearchSecurity.com Security School quiz. Quiz
-
Quiz: Realign your data protection efforts
How much have you learned about prioritizing your data protection efforts around social engineering attacks? Test your knowledge in this short quiz. Quiz
-
Quiz: Preventing data leaks
A six-question multiple-choice quiz to test your understanding of the content presented by expert Richard Bejtlich in this lesson of SearchSecurity.com's Data Protection Security School. Quiz
-
Steal this Computer Book 4.0: Prevent Google hacking
Learn how to prevent Google hacking in this excerpt from Chapter 8: Stalking the Computer of "Steal this Computer Book 4.0," by Wallace Wang. Book Chapter
-
Man-in-the-middle attacks
This excerpt from Chapter 2 of "Securing Storage: A Practical Guide to SAN and NAS Security" examines how man-in-the-middle attacks affect Fibre Channel security and examines how to determine if your organization is at risk. Book Chapter
-
Elements of a data protection strategy
In this excerpt from Data Protection and Lifecycle Management, Tom Petrocelli addresses the importance of securing data for regulatory compliance and outlines the five components of a data protection strategy. Book Excerpt
-
Recent data breaches redefine failure, demand new approaches
Column: What do recent data breaches at RSA, WordPress and Sony have in common? Companies must not only find weaknesses, but also actively hunt down intruders. Column | 28 Apr 2011
-
Data loss prevention best practices start with slow, incremental rollouts
Early adopters of DLP deployments say slow, incremental rollouts help reduce the burden on IT staff and the potential for chaos among business units. Article | 28 Feb 2011
-
Identity Finder releases new data loss prevention products
Identity Finder has added to its line of data loss prevention products with Identify Finder 5.0 for Windows and Mac operating systems, plus a new Identity Finder DLP console. Article | 15 Feb 2011
-
Symantec encryption strategy expands PGP, nixes GuardianEdge brand
Following its recent encryption acquisitions, Symantec will phase out the GuardianEdge name and integrate PGP Whole Disk Encryption with support for Symantec Data Loss Prevention. Article | 05 Oct 2010
-
Lessons learned: Societe Generale and alleged theft of trade secrets
The recent arrest of a former trader suspected of stealing computer code underscores the need for strong access controls and monitoring. Article | 04 May 2010
-
Sophos sells majority stake to private equity group
Apax Partners, a private equity investment firm, buys a majority interest in computer security vendor Sophos. Sophos is valued at $830 million in the transaction. Article | 03 May 2010
-
Symantec acquires PGP, GuardianEdge for encryption, key management
Symantec said it would integrate PGP's key management platform into the Symantec Protection Center and add encryption capabilities to boost its endpoint protection offerings. Article | 29 Apr 2010
-
McAfee DLP update offers database crawling, promises faster rollout
The vendor claims its latest version better integrates its 2008 acquisition of Reconnex Inc., and builds on its ePolicy Orchestrator for easier policy management. News | 23 Mar 2010
-
Interest in data leakage protection, event log management rises
Compliance projects are fueling interest in log management software. Data leakage protection (DLP) technology is also being considered, according to a new survey of security pros. Article | 23 Feb 2010
-
Health Net breach failure of security policy, technology
Investigators should question why an external hard drive contained seven years of data, but IT security should have had the appropriate security policies and technologies in place to enforce them. Column | 27 Nov 2009
- See More: News on Data Loss Prevention
-
Adopt Zero Trust to help secure the extended enterprise
Forrester Analyst John Kindervag explains Zero Trust Model and how it can be applied to protect data in today’s extended enterprise. Tip
-
EDRM-DLP combination could soon bolster document security management
The integration of enterprise digital rights management solutions and data loss prevention tools could bring a level of automation to document security management. Tip
-
How to know if you need file activity monitoring to track file access
Is file activity monitoring, a new product meant to integrate with DLP to provide more granular file access tracking, right for your enterprise? Tip
-
Data sanitization policy: How to ensure thorough data scrubbing
Could you be inadvertently leaking sensitive data via poorly sanitized devices? Learn techniques for thorough data scrubbing in this tip. Tip
-
Resist credit card data compromise threats due to memory-scraping malware
PCI DSS does a good job of making sure credit card data in persistent storage is secure, however, such data in non-persistent storage -- such as files stored temporarily in memory -- can still be vulnerable to compromise, particularly via memory-scra... Tip
-
Five endpoint DLP deployment data security tips
Deploying data loss prevention technology on endpoints requires a careful roll-out. Expert Rich Mogull offers five tips, including the need to start slowly with a set of power users and how to manage endpoint discovery. Tip
-
Considerations for buying and implementing DLP solutions
Financial institutions are looking to data loss prevention solutions to prevent costly data security breaches. In this tip, Dave Shackleford explains key issues to weigh before buying and installing a DLP product. Tip
-
Breach prevention: How to keep track of data and applications
The well-known Heartland Payment Systems breach demonstrates the importance of data security. Michael Cobb reviews which tools best monitor a company's valuable enterprise applications and keep track of where sensitive and confidential data is headin... Tip
-
Data protection tips for corporate compliance leaders
Author Rebecca Herold explains why compliance professionals need to understand data protection issues in order to successfully do their job. Tip
-
Cyberwarfare and the enterprise: Is the threat real?
Recently, there has been a great deal of press about massive botnets and killer denial-of-service attacks. So how concerned should you really be about cyberwarfare? The threat is real, says contributor Sherri Davidoff, but the underlying problems are... Tip
- See More: Tips on Data Loss Prevention
-
Detecting covert channels to prevent enterprise data exfiltration
A covert channel is just one more way data can leave the network. Learn how to detect and block covert channels from threats expert Nick Lewis. Answer
-
Is laptop remote wipe needed for effective laptop data protection?
Expert Michael Cobb explains how laptop remote wipe technology can ease data loss fears, but shouldn’t be solely relied upon. Answer
-
Negotiating an IT security budget for a data loss prevention tool
If your enterprise is considering a DLP purchase, read this expert response for advice on getting the information security budget to buy the best product possible. Ask the Expert
-
Will technologies like Vanish help create archived, unreadable data?
Self-destructing data is a nice thought, says Michael Cobb, but we're some ways off from achieving reliable document control of this kind. Ask the Expert
-
How to secure USB ports on Windows machines
A readers asks expert Michael Cobb about which product can best secure USB ports. Ask the Expert
-
Will a database anonymization implementation succeed?
Platform security expert Michael Cobb reviews the likelihood of success in a database anonymization implementation. Ask the Expert
-
Are there still Google Desktop security problems?
Expert Michael Cobb explains why Google Desktop's "search across computers" feature has been so controversial. Ask the Expert
-
How to create configuration management plans to install DLP
Installing DLP products on a network can require a lot of configuration management planning that includes cooperation between many business groups. In this security management expert response, learn how to do a network architecture review to install ... Ask the Expert
-
Are encrypted, self-deleting USB storage drives worth the investment?
Expert Michael Cobb explains why some high-end, encrypted, self-deleting USB drives are worth looking into and may be a good investment. Ask the Expert
-
Can you combine RFID tag technology with GPS to track stolen goods?
When laptops or smartphones are stolen, retrieving them can mean the difference between a data breach a close call. Learn if it's possible to combine RFID tag technology with GPS devices for tracking stolen goods to their exact location, and if so ho... Ask the Expert
- See More: Expert Advice on Data Loss Prevention
-
How EDRM can bolster enterprise content management security
Learn about implementing enterprise EDRM and how this technology combo supports enterprise content management security. Video
-
Expert Podcast: Five Ways to Combat Social Engineering Attacks Against Your Organization
Nearly every attack against an organization has its roots in social engineering. Attackers do significant reconnaisance against targets and mine data in order to craft campaigns to steal identity data and access. In this podcast, you’ll learn five wa... Podcast
-
Expert Webcast: Realign Your Data Protection Efforts
Attackers go to great lengths to infiltrate organizations and go well beyond technically savvy hacks to worm through networks and systems to steal identity information and ultimately intellectual property. This webcast will break down a modern attack... Mediacast
-
CISO details DLP deployment issues at RSA Conference 2011
In an interview at RSA Conference 2011, Larry Whiteside Jr., CISO of the Visiting Nurse Service of New York, outlines some of the successes and the pitfalls of deploying data leakage protection software for the first time. Video
-
Forrester's advice for data governance maturity model success
Forrester Research Senior Analyst Andrew Jaquith gives advice for data governance maturity model success and why enterprises should do more than just follow a standardized set of guidelines to protect data. Video
-
Fact or fiction: Inside extrusion detection and prevention technology
According to our latest survey of more than 608 enterprise security pros, 80% of enterprises say protecting data is more important in 2007 than last year, and 72% admit they need a better strategy. SearchSecurity.com is responding to this growing nee... Podcast
-
Defining DLP
The rash of information thefts, security breaches and data loss incidents in recent years has driven the development of a new breed of products designed to prevent sensitive data from making its way out of enterprise networks. But there is a lot of c... Video
-
FAQ: Corporate Web 2.0 Threats
In this expert video, you will learn about Web 2.0 software, the threats it poses, and whether the benefits outweigh the risks. Key areas covered include the threats posed by services like Facebook, MySpace, and LinkedIn, as well as wikis and blogs. ... Video
-
Fact or fiction: The security risks of cloud computing
Check out this expert podcast and learn about the benefits of cloud computing and SaaS and get tips for addressing the security challenges of these business options. Podcasts
-
Fact or fiction: Don't forget about your intellectual prop
By creating a data protection plan, security professionals are able to ensure valuable data remains under control and make more effective use of the assets within a company. Check out the expert Podcast featured here and learn more about creating an ... Podcast
- See More: Multimedia on Data Loss Prevention
-
Quiz: Data breach prevention strategies
Test your knowledge of data breach prevention strategies in this five-question quiz. Quiz
-
Adopt Zero Trust to help secure the extended enterprise
Forrester Analyst John Kindervag explains Zero Trust Model and how it can be applied to protect data in today’s extended enterprise. Tip
-
Quiz: Network content monitoring must-haves
See if you know the essentials of network content monitoring in this SearchSecurity.com Security School quiz. Quiz
-
EDRM-DLP combination could soon bolster document security management
The integration of enterprise digital rights management solutions and data loss prevention tools could bring a level of automation to document security management. Tip
-
How EDRM can bolster enterprise content management security
Learn about implementing enterprise EDRM and how this technology combo supports enterprise content management security. Video
-
Detecting covert channels to prevent enterprise data exfiltration
A covert channel is just one more way data can leave the network. Learn how to detect and block covert channels from threats expert Nick Lewis. Answer
-
Quiz: Realign your data protection efforts
How much have you learned about prioritizing your data protection efforts around social engineering attacks? Test your knowledge in this short quiz. Quiz
-
Expert Podcast: Five Ways to Combat Social Engineering Attacks Against Your Organization
Nearly every attack against an organization has its roots in social engineering. Attackers do significant reconnaisance against targets and mine data in order to craft campaigns to steal identity data and access. In this podcast, you’ll learn five wa... Podcast
-
Expert Webcast: Realign Your Data Protection Efforts
Attackers go to great lengths to infiltrate organizations and go well beyond technically savvy hacks to worm through networks and systems to steal identity information and ultimately intellectual property. This webcast will break down a modern attack... Mediacast
-
How to know if you need file activity monitoring to track file access
Is file activity monitoring, a new product meant to integrate with DLP to provide more granular file access tracking, right for your enterprise? Tip
- See More: All on Data Loss Prevention
About Data Loss Prevention
In this intrusion detection and prevention guide learn how to build a security system to detect and prevent malicious hacker activity with data loss prevention (DLP) software and products.