Video Library

  • PCI compliance requirement 11: Testing

    PCI Requirement 11 is a popular one, according to Diana Kelley. Learn why in this instructional video.

  • PCI compliance requirement 5: Antivirus

    Diana Kelley and Ed Moyle of Security Curve review PCI compliance requirement 5: "Use and regularly update antivirus software."

  • SIMs tools and tactics for business intelligence

    Security information management systems (SIMs) automate the process of looking through logs to help produce effective reports, issue alerts and do forensics. In the era of regulation, organizations...

  • Balancing security and performance: Protecting layer 7

    This video will explain options for securing application-layer traffic using network security technologies, architectures and processes, including Layer 7 switches, firewalls, IDS/IPS, NBAD and more.

  • Cybercrime and threat management

    It's no secret that cybercrime is an ever-growing issue for today's security professionals, but what roles and responsibilities need to change as a result of the glut in illicit cyber activity? In...

  • Using IAM tools to improve compliance

    Provisioning and password management tools can ease complexity, reduce help desk calls and save money. But they also have an added benefit: They can help ease enterprise compliance woes.

  • Who goes there? Securing wireless access

    Learn more about securing wireless access, including best practices for wireless access configuration from Lisa Phifer of Core Competence Inc.

  • From the ground up: Creating secure WLANs

    In this video, Lisa Phifer of Core Competence Inc. focuses on creating secure WLANs, including WLAN basics and implementation best practices.

  • I'll be watching you: Wireless IPS

    Focusing on IPS, Lisa Phifer of Core Competence Inc. discusses some of IPS' common features and how it differs from its wired counterparts.

  • Who should be in charge of cybersecurity?

    Security experts Bruce Schneier and Marcus Ranum debate how the federal government should handle cybersecurity initiatives.

  • PCI DSS: The structure of a standard

    In this video, find out more about the different levels of merchants in PCI DSS, how well merchants understand those levels and whether the government may eventually have to mandate controls over t...

  • Who should secure virtual IT environments?

    Security blogger Chris Hoff and Citrix CTO Simon Crosby discuss whether security companies or virtualization vendors should be responsible for the security of virtual environments.

  • Who should secure virtual IT environments? (Part 2)

    Popular security blogger Chris Hoff and Citrix CTO Simon Crosby discuss whether security companies or virtualization vendors should be responsible for the security of virtual environments.

  • Enterprise endpoint security fundamentals

    Video: Mike Chapple offers a "back to basics" look at enterprise endpoint security to identify the crucial components of an endpoint security program.

  • Federal efforts to secure cyberinfrastrucure

    RSA 2009: Former White House senior advisor Paul Kurtz and James Lewis, director of technology policy at the Center for Strategic and International Studies talk about the state of cybersecurity rea...

  • How to perform MBSA scans

    This month, Peter Giannoulis of and offers an overview of the free Microsoft Baseline Security Analyzer.

  • Courts turn aside data breach suits

    Class action suits based on data breaches have failed without exception. But, companies still face heavy sanctions and have settled in most cases rather than risk losing in court.

  • OWASP Security Spending Benchmarks Project

    An OWASP project investigates company spending on software development. A survey found a majority of firms getting an independent third-party security review of software code.

  • Economy fuels malware, spam

    Dave Marcus of McAfee's Avert Labs, breaks down the threat landscape and explains why spam numbers are rising and malware writers are taking advantage of the down economy.

  • Security incident response 101

    Even the best procedures fail to overcome the stresses in the initial throes of an incident. Security consultant Lenny Zeltser explains how to run a well coordinated response.