Security Management Strategies for the CIO-
The role of IAM systems in enterprise compliance
Learn about the identity management and compliance relationship and how IAM should and shouldn't support good enterprise compliance processes.
-
Exposed WPS flaw affects enterprise wireless security
The recent WPS flaw isn't just a consumer issue. Nick Lewis explains the effect on enterprise wireless security and how to avoid security issues.
-
The four vulnerable DNS components that enable attacks
DNS attack prevention demands an understanding of the four core DNS components attackers often target. Expert Char Sample explains.
-
Types of DNS attacks reveal DNS defense tactics
A thorough understanding of the types of DNS attacks, including DoS, reflector attacks and DNS cache poisoning, reveal key DNS defense tactics.
-
Will HTML5 security be better than Flash?
Will HTML5 replace Flash? Expert Michael Cobb discusses whether HTML5 security is better than Flash, and why HTML5 traffic can be harder to secure.
-
SearchSecurity.com IT security certifications guide
Afraid of making a wrong turn in your career? Our newly updated 2012 guide to information security certifications maps out all your options.
-
Vendor-specific information security certifications
Certification experts Ed Tittel and Kim Lindros provide an overview of vendor-specific information security certifications available.
-
How to deal with antimalware overload
Enterprise antimalware has a way of spreading everywhere. Get Diana Kelley's advice on managing antimalware security products efficiently.
-
Planning for a DoS attack: What you need from an ISP
Expert Nick Lewis says an effective DoS attack responses demand better business continuity plans, including pre-negotiating with providers.
-
How should enterprises react to Google privacy changes?
Google’s tentacles reach deep into most enterprises, but should enterprises worry about the new Google privacy policy? Expert Michael Cobb discusses.
-
NSTIC: The future of online identity protection?
The new NSTIC identity proposal would have identity brokers handling enterprise merchant customer authentication. But can it work?
-
Testing firewalls: A three-step guide
There are three steps when testing firewalls for your organization. Expert Joel Snyder explains how to test a firewall.
-
Mitigating threats to customer-centric Web apps
New, interactive Web-facing applications are popping up all the time, but expert Nick Lewis advises enterprises on how to be vigilant against Web application threats.
-
PCI compliance: Who can perform the SAQ?
Expert Mike Chapple clarifies whether a PCI Level 2 merchant can carry out an annual PCI self-assessment questionnaire.
-
How to start a network security intelligence program
Use the network and host data at your disposal to create business-focused information security intelligence policies and strategies.
-
Set up your own secure enterprise Android app store
Reduce the risk posed by smartphones and mobile applications by setting up a corporate app store for users that helps ensure Android application security.
-
SIEM technology primer
After a rocky start with early SIEM technologies, current offerings are easier to use and provide more reliable automated responses.
-
Career advice: Demand growing for security specialists
Recruiter Peter Rendall sees information security career paths leading toward security specialist jobs; SIEM, DLP and analysis are especially hot.
-
Primer: EU cookie compliance for U.S. enterprises
With recent changes to European data privacy laws, U.S. enterprises must make website changes to meet EU cookie compliance deadlines.
-
The case for integrating search, log analysis
Search is a key discipline for security log management. John Burke explains how to better search log files to improve security event log management.
-
Facing the threat of SSL vulnerabilities
Recent SSL vulnerabilities have renewed questions about the protocol's security. Expert Nick Lewis covers how to implement and configure SSL securely.
-
How to prep for KPMG's HIPAA audit tidal wave
KPMG HIPAA audits will hit 150 companies this year. What if yours is one of them? Mike Chapple explains how to handle the HIPAA compliance hot seat.
-
How to protect against APT attacks
Mike Chapple offers best practices to defend your network against the latest threat to the security landscape, targeted APT attacks.
-
Are Kindle Fire, Silk browser too risky for businesses?
Do Kindle Fire security issues, combined with weak Silk browser security, make the red-hot consumer device too risky for enterprises? Michael Cobb explains.