Security Management Strategies for the CIO-
Top five free network intrusion detection tools
Snort is one of the industry's top network intrusion-detection tools, but there are plenty of free alternatives. Matthew Pascucci discusses.
-
How to implement and supplement remote wipe for BYOD
Remote data wipe is key to any BYOD security policy, but each OS handles it differently. Lisa Phifer covers how to use it with other controls to protect data.
-
Windows Server 2012 security: What to expect
Expert Michael Cobb wades through the security features of Windows Server 2012 to find out what's new and beneficial in Microsoft's latest release.
-
The Stored Communications Act and workplace privacy
A state supreme court decision addressing webmail hacking under the Stored Communications Act affects email privacy and the ability to sue hackers.
-
Analysis of new PCI mobile payment security guidelines
The PCI SSC recently released mobile application development security guidelines. Mike Chapple outlines the document and highlights key takeaways.
-
Learn to manage VPN leaks on dual-stack networks
The ongoing transition to IPv6 has revealed security issues with VPN leaks on dual-stack networks. Fernando Gont explains and offers mitigations.
-
Why having a CISO can reduce data breach costs
Filling the CISO position with the right person can reduce the costs a company will experience from a data breach. Expert Ernest Hayden explains why.
-
The Java security crisis: Using the JRE safely
Constant Java security vulnerabilities plague Oracle and enterprises alike. Expert Nick Lewis offers tips on how to use Java and the JRE securely.
-
Validation requirements for PCI DSS-covered merchants
Mike Chapple details the PCI validation requirements for merchants covered by PCI DSS.
-
Windows 8 security: What to expect; how to prepare
Expert Michael Cobb says Windows 8's security features, like Windows Defender and Secure Boot, are a step forward for desktop and BYOD security.
-
After antimalware: Managing the move to what's next
Is it time to "cut the cord" with endpoint antimalware? Matthew Pascucci discusses possible antivirus alternatives.
-
How to properly implement a Web security gateway
In this secure Web gateway overview, learn how to implement, configure and maintain a Web security gateway to support other security devices.
-
How to align an IAM program with business priorities
Randall Gamby says aligning enterprise identity and access management with business and CIO priorities demands a more strategic approach to IAM.
-
SAP security overview: How to deal with SSRF attacks
Expert Michael Cobb provides an SAP security overview, including steps enterprises can take to defend against server-side request forgery attacks.
-
Awareness training for executives: How to get started
Expert Ernie Hayden provides advice for enterprises that are establishing security awareness training for their security-unaware executives.
-
Security big data: How to get started
Learn how security big data initiatives support enterprise information security and how to prepare for a big data collection implementation.
-
Certificate security: Attack methods and defenses
Is your enterprise struggling with digital security certificate problems? Expert Nick Lewis discusses mitigations for digital certificate attacks.
-
Complying with new NIST incident response guidelines
NIST recently updated its incident response guidelines. Find out how to comply with these changes and incorporate them into an incident response plan.
-
Analysis: Surface tablet up for BYOD security challenge
Expert Michael Cobb says the forthcoming Windows tablet security features on Microsoft's Surface could help meet enterprise BYOD challenges.
-
Primer: Software-defined networking security
Matthew Pascucci offers an intro to software-defined networking and explains why SDN security relies on securing the SDN controller at all costs.
-
Exploit toolkits explained: How they aid cyberattacks
Expert Nick Lewis details how automated exploit kits are evolving and offers mitigations for the latest methods employed by these attack toolkits.
-
How to prevent the top five most common Web app flaws
Expert Michael Cobb details the five most common Web application vulnerabilities and provides methods to help enterprises to secure them.
-
SIEM best practices for advanced attack detection
SIEM struggles are common, but Mike Rothman explains why SIEM products are critical for advanced attack detection, and offers a SIEM tuning step-by-step.
-
Reducing compliance risk through compliance automation
Tony UcedaVelez offers tips for automating compliance tasks to reduce IT security and compliance risk while easing the pain of arduous compliance audits.