Features

Features

• Readers’ top picks for enterprise firewalls

  The companies and key functionality organizations seek out when they upgrade or add firewall technology to their enterprise environments.  Continue Reading

• Leaky enterprise: Data loss tops mobile security threats

  With the absence of high-profile breaches, mobile data protection is still on the backburner at some organizations. Why it’s time to change course.  Continue Reading

• Three criteria for selecting the right IPS products

  Expert contributor Karen Scarfone examines important criteria for evaluating intrusion prevention system (IPS) products for use by an organization.  Continue Reading

• Vormetric Transparent Encryption: Product overview

  Expert Ed Tittel takes a look at Vormetric Transparent Encryption, a component of Vormetric's Data Security Platform that encrypts data and does access control for that data.  Continue Reading

• HP Security Voltage's SecureData Enterprise: Product overview

  Expert Ed Tittel examines SecureData Enterprise, which is a part of the HP Security Voltage platform, a scalable database security product that encrypts both structured and unstructured data, tokenizing data to prevent viewing and more.  Continue Reading

• Trustwave DbProtect: Database security tool overview

  Expert Ed Tittel checks out Trustwave DbProtect, a centrally managed enterprise-level database activity monitor that includes vulnerability assessment functionality.  Continue Reading

• Protegrity Database Protector: Database security tool overview

  Expert Ed Tittel examines Protegrity Database Protector, a database security add-on product that provides column- and field-level protection of confidential and sensitive data stored in nearly any type of relational database.  Continue Reading

• Fortinet FortiDB: Database security tool overview

  Expert Ed Tittel examines Fortinet FortiDB, an add-on product for better securing databases through database activity monitoring and vulnerability assessment.  Continue Reading

• Oracle Advanced Security: Database security tool overview

  Expert Ed Tittel examines Oracle Advanced Security, a database security add-on product with transparent data encryption (TDE) and data redaction features.  Continue Reading

• McAfee Database Activity Monitoring: Database security tool overview

  Expert Ed Tittel takes a look at McAfee Database Activity Monitoring and McAfee Vulnerability Manager for Databases to see how they protect enterprises' databases and corporate data.  Continue Reading

• Imperva SecureSphere: Database security tool overview

  Expert Ed Tittel examines Imperva SecureSphere Database Activity Monitoring and Database Assessment, products that are deployed as an inline bridge or as a lightweight agent to assess and monitor local database access.  Continue Reading

• IBM Guardium: Database security tool overview

  Expert Ed Tittel examines IBM Guardium, a security product that offers continuous, real-time, policy-based monitoring of database activities.  Continue Reading

• Enterprise benefits of network intrusion prevention systems

  Expert Karen Scarfone explains how most organizations can benefit from intrusion prevention systems (IPSes), specifically dedicated hardware and software IPS technologies.  Continue Reading

• Windows 10 security fixes longtime OS vulnerabilities

  Windows 10 security incorporates years of improvements to remove or mitigate long-term issues with Windows vulnerabilities.  Continue Reading

• The basics of network intrusion prevention systems

  Expert Karen Scarfone explores intrusion prevention systems and their acquisition, deployment and management within the enterprise.  Continue Reading

• Five criteria for purchasing Web fraud detection systems

  Expert Ed Tittel describes the purchasing criteria for Web fraud detection systems and explains how they can protect banking, e-commerce and other industries.  Continue Reading

• Emerging security threats you're up against now

  Learn about the 'hacking as a service' and other emerging security threats.  Continue Reading

• Comparing the best data loss prevention products

  Expert Bill Hayes examines the strengths and weaknesses of top-rated data loss prevention (DLP) products to help enterprises make the right purchasing decision.  Continue Reading

• Hacking and Penetration Testing with Low Power Devices

  In this excerpt of Hacking and Penetration Testing with Low Power Devices, author Philip Polstra describes "The Deck" -- a custom Linux distribution -- that breaks the traditional penetration model by providing pen testers an OS that runs on ...  Continue Reading

• Cyber Reconnaissance, Surveillance and Defense

  In this excerpt of Cyber Reconnaissance, Surveillance and Defense, author Robert Shimonski describes commonly used mobile technology and how phone tracking works.  Continue Reading

• Cyber Crime and Cyber Terrorism Investigator's Handbook

  In this excerpt of Cyber Crime and Cyber Terrorism Investigator's Handbook, authors Babak Akhgar, Andrew Staniforth and Francesca Bosco outline the classification, types and categories of cybercrime.  Continue Reading

• Building an Information Security Awareness Program

  In this excerpt of Building an Information Security Awareness Program, authors Bill Gardner and Valerie Thomas discuss why lecturing is an ineffective method of security awareness programs and offer alternative measures enterprises should consider.  Continue Reading

• Choose the best vulnerability assessment tools

  This Buyer's Essentials guide helps InfoSec pros assess vulnerability management products by explaining how they work and by highlighting key features corporate buyers should look for so they can evaluate vendor offerings.  Continue Reading

• Cybersecurity investment pays more than monetary dividends

  Companies are investing in cybersecurity startups to reap the benefits of working with problem-solving technology.  Continue Reading

• The CISO role rises: How is it working out?

  An unusual game of musical chairs is unfolding as companies scramble to ensure information security and shore up their ranks to the tune of regulators.  Continue Reading

• Five supporting technologies for DLP products

  Expert Bill Hayes examines five technologies that can complement data loss prevention products and improve enterprise security.  Continue Reading

• How to deploy the right DLP products for the right jobs

  Expert Bill Hayes maps specific data loss prevention products to three deployment scenarios to better help readers make their own purchase decisions.  Continue Reading

• The best SSL VPN products in the market

  SSL VPNs are essential for securing network connections and communications. Here's a look at the best SSL VPN products in the industry.  Continue Reading

• Comparing the best Web application firewalls in the industry

  Expert Brad Causey compares the best Web application firewalls on the market across three types of product types: cloud, integrated and appliance.  Continue Reading

• Four enterprise scenarios for Web fraud detection systems

  Expert Ed Tittel describes use cases for Web fraud detection systems and products and explains how they can increase account and transaction security.  Continue Reading

• Warnings, neglect and a massive OPM data breach

  Why no one should have been surprised by the massive government Office of Personnel Management data hack.  Continue Reading

• App security: Surviving the merger and acquisition process

  Some companies are trying to head off information security glitches before they sign on the dotted line, with help from security officers.  Continue Reading

• Introduction to Web fraud detection systems

  Expert Ed Tittel explores the purpose of Web fraud detection systems and services, which are designed to reduce the risks inherent in electronic payments and e-commerce.  Continue Reading

• Comparing the top database security tools

  Expert Ed Tittel examines the strengths and weaknesses of top-rated database security tools -- from database activity monitoring to transparent database encryption -- to help enterprises make the right purchasing decision.  Continue Reading

• Nine steps for purchasing database security tools

  Expert Adrian Lane lays out the criteria for procuring the right database security software for your enterprise.  Continue Reading

• Developing an IAM strategy for third-party vendors

  This Beyond the Page informs InfoSec pros of the security concerns related to third-party vendor access, and how an enterprise IAM strategy can help.  Continue Reading

• Comparing the top wireless intrusion prevention systems

  Expert Karen Scarfone examines the top wireless intrusion prevention systems (WIPS) to help readers determine which may be best for them.  Continue Reading

• Cybersecurity skills shortage demands new workforce strategies

  The race to find InfoSec professionals who can outpace advanced threats has companies worldwide facing hurdles.  Continue Reading

• Is BYOD policy the foundation for mastering enterprise mobility?

  Today, many companies have adopted a mobile-first strategy. But when employees are left to their own devices, InfoSec pros face uncharted territory.  Continue Reading

• Is third-party access the next IAM frontier?

  Identity and access management of employees is so complex that many companies have faltered when it comes to securing programs for trusted partners.  Continue Reading

• The top threat intelligence services for enterprises

  Threat intelligence takes data from multiple sources and turns it into actionable, contextual information. Expert Ed Tittel takes a look at the top threat intelligence services.  Continue Reading

• LogRhythm Security Intelligence: Threat intelligence services overview

  In this threat intelligence service overview, Expert Ed Tittel looks at the LogRhythm Security Intelligence threat intelligence platform, designed for simple setup and ease of use.  Continue Reading

• Comparing the best UTM products in the industry

  Expert Ed Tittel examines the top unified threat management appliances to determine which one could be the best for your organization.  Continue Reading

• Six criteria for purchasing unified threat management appliances

  Expert Ed Tittel explores key criteria for evaluating unified threat management (UTM) appliances to determine the best choice for your organization.  Continue Reading

• How UTM products can benefit your enterprise network environment

  Expert Ed Tittel explains why unified threat management is the right holistic IT security approach for SMBs and how it can fit into the enterprise, as well.  Continue Reading

• Comparing the top security analytics tools in the industry

  Expert Dan Sullivan examines the top security analytics products to help readers determine which may be best for their organization.  Continue Reading

• Tips for creating a data classification policy

  Before deploying and implementing a data loss prevention product, enterprises should have an effective data classification policy in place. Expert Bill Hayes explains how that can be done.  Continue Reading

• Scour your enterprise with network security monitoring tools

  Advanced network security monitoring tools offer new hope for catching malware threats that fly under the traditional radar.  Continue Reading

• The top antimalware protection products for endpoint security

  Antimalware protection is essential for securing client computers and devices. Here's a look at the top endpoint protection products in the industry.  Continue Reading

• What features do you need in an EMM tool?

  Enterprise mobility management products evolved from different types of mobility management tools, and so can vary greatly. Review capabilities and features you’ll want to consider before you buy.  Continue Reading

• How to keep track of sensitive data with a data flow map

  Expert Bill Hayes describes how to create a data flow map to visualize where sensitive data is processed, how it transits the network and where it's stored.  Continue Reading

• Six criteria for buying data loss prevention products

  Expert Bill Hayes lays out six steps to take in order to buy the right data loss protection (DLP) products for your organization.  Continue Reading

• Four enterprise scenarios for deploying database security tools

  Expert Adrian Lane describes the use cases and ways database security tools are used to boost enterprise security.  Continue Reading

• Introduction to database security tools for the enterprise

  Expert Adrian Lane explains why database security tools play a significant, if not the majority, role in protecting data in the enterprise data center.  Continue Reading

• Three usage scenarios for deploying data loss prevention products

  Expert Bill Hayes details usage scenarios for deploying data loss prevention: standalone suites, integrated tools and standalone/integrated DLP combined.  Continue Reading

• The business case for data loss prevention products

  Data loss prevention (DLP) can help any organization where the loss of sensitive information could seriously impact continued operation, explains Bill Hayes.  Continue Reading

• Introduction to data loss prevention products

  Expert Bill Hayes describes how data loss prevention (DLP) products can help identify and plug information leaks and improve enterprise security.  Continue Reading

• Beyond the Page: What's the latest in virtualization security tools?

  Learn how malware is responding to the spread of virtualization in enterprise systems and how to choose the best tools to secure your virtual environment.  Continue Reading

• Endpoint threat detection gets more response

  While there’s a major focus on continuous endpoint monitoring and remediation today, security teams have to fight malware on all fronts.  Continue Reading

• User behavior analytics: Conquering the human vulnerability factor

  How do they know it’s really you? New behavioral technologies use data science to monitor user activity within the network.  Continue Reading

• Malware analysis: How some strains ‘adapt’ to virtual machines

  Server-oriented malware is actually more likely to infect a virtual system than a physical one in many organizations. Now what?  Continue Reading

• Seven criteria for purchasing a wireless intrusion prevention system

  Expert George V. Hulme details the important criteria to weigh when evaluating wireless intrusion prevention systems for enterprise security.  Continue Reading

• Secure updates are difficult, but less risky than not patching

  Recent malware issues with Lenovo's automatic update system have some worried about the risks associated with automatic updates. Experts say secure update processes are better than ever and result in less risk than waiting to patch vulnerabilities.  Continue Reading

• Six criteria for procuring security analytics software

  Security analytics software can be beneficial to enterprises. Expert Dan Sullivan explains how to select the right product to fit your organization's needs.  Continue Reading

• Three enterprise benefits of email security gateways

  Virtually every enterprise can benefit from email security gateways. Expert Karen Scarfone examines the primary benefits of the products.  Continue Reading

• User behavioral analytics tools can thwart security attacks

  This guide to user behavioral analytics tools helps InfoSec pros determine what features they should consider before making a purchase and reviews both deployment strategies and reasonable performance expectations.  Continue Reading

• Beyond the Page: Network security at the edge

  The network perimeter is changing; approaches to network perimeter security must adapt. Here's how to cope with the new security environment.  Continue Reading

• Introduction to unified threat management appliances

  Expert Ed Tittel describes unified threat management (UTM) appliances and features, and explains its advantages to organizations of all sizes.  Continue Reading

• Comparing the top SSL VPN products

  Expert Karen Scarfone examines the top SSL VPN products available today to help enterprises determine which option is the best fit for them.  Continue Reading

• Four criteria for selecting the right SSL VPN products

  SSL VPNs can offer critical protection for enterprise network communications. Expert Karen Scarfone examines the most important criteria for evaluating SSL VPN products.  Continue Reading

• The three enterprise benefits of SSL VPN products

  Expert Karen Scarfone outlines the ways SSL VPN products can secure network connections and communications for organizations.  Continue Reading

• Introduction to SSL VPN products in the enterprise

  Virtual private networks secure the confidentiality and integrity of network communications. Expert Karen Scarfone explains how SSL VPN products work.  Continue Reading

• Cybersecurity information sharing: Industries join forces

  Industry peers are increasingly focused on disseminating risk and incident information to allow for a collective defense. Is there room for Uncle Sam?  Continue Reading

• In the API economy, API security moves to center stage

  Integrating systems and data could pay off big. But publishing an API requires a lifetime commitment to monitoring its use.  Continue Reading

• Postcards from the perimeter: Network security in the cloud and mobile era

  Security professionals break old boundaries with new network edge protection strategies.  Continue Reading

• RASP is latest grasp at secure software delivery

  Runtime application self-protection could provide more secure software applications after delivery, but you need to recognize its limitations.  Continue Reading

• Symantec Endpoint Encryption: Full disk encryption product overview

  Expert Karen Scarfone examines the features of Symantec Endpoint Encryption, a full disk encryption product for Windows laptops, desktops and servers.  Continue Reading

• Sophos SafeGuard: Full disk encryption product overview

  Expert Karen Scarfone examines the features of Sophos SafeGuard, a full disk encryption product for laptops, desktops and servers.  Continue Reading

• Microsoft BitLocker: Full disk encryption software overview

  Expert Karen Scarfone examines the features of BitLocker, Microsoft's native full disk encryption software for Windows laptops, desktops and servers.  Continue Reading

• McAfee Complete Data Protection: Full disk encryption product overview

  Expert Karen Scarfone examines the features of McAfee Complete Data Protection, a full disk encryption product for securing client-side computers and servers.  Continue Reading

• DiskCryptor: Full disk encryption product overview

  Expert Karen Scarfone examines the features of DiskCryptor, an open source full disk encryption product for securing client-side computers and servers.  Continue Reading

• Dell Data Protection | Encryption: Full disk encryption product overview

  Expert Karen Scarfone examines the features of Dell Data Protection | Encryption, a full disk encryption product for securing client-side devices.  Continue Reading

• Check Point Full Disk Encryption product overview

  Expert Karen Scarfone examines the features of Check Point Full Disk Encryption, an FDE product for securing client devices such as laptops and desktops.  Continue Reading

• Apple FileVault 2: Full disk encryption software overview

  Expert Karen Scarfone examines the features of Apple's bundled full disk encryption software for Mac OS X, FileVault 2.  Continue Reading

• The top full disk encryption products on the market today

  Full disk encryption can be a key component of an enterprise's desktop and laptop security strategy. Here's a look at some of the top FDE products in the industry.  Continue Reading

• Beyond the Page: Advanced Persistent Threats, Ransomware and More

  The era of mobile, cloud and the Internet of Things is also an era of advanced persistent threats, ransomware and more. Here's how to stay secure.  Continue Reading

• Social engineering: You got nailed!

  Move beyond prevention to fast detection to combat a stealthy social engineering attack.  Continue Reading

• Information security jobs unfilled as labor pains grow

  Why cybersecurity hiring is the real cyberwar.  Continue Reading

• New cyberthreats: Defending against the digital invasion

  The confluence of the Internet of Things and bring your own device may turn into a beachhead for attackers.  Continue Reading

• Three reasons to deploy security analytics software in the enterprise

  Expert Dan Sullivan outlines three use case scenarios for security analytics tools and explains how they can benefit the enterprise.  Continue Reading

• Introduction to security analytics tools in the enterprise

  Expert Dan Sullivan explains how security analysis and analytics tools work, and how they provide enterprises with valuable information about impending attacks or threats.  Continue Reading

• Four questions to ask before buying a Web application firewall

  Web application firewalls are complex products. Expert Brad Causey explains the key criteria enterprises need to consider before investing in a WAF product.  Continue Reading

• Six ways to use wireless intrusion prevention systems in the enterprise

  Expert George V. Hulme presents six real-world use cases for the deployment of WIPS to beef up wireless network security in the enterprise.  Continue Reading

• Introduction to wireless intrusion prevention systems in the enterprise

  Expert contributor George V. Hulme explains how wireless intrusion prevention systems (WIPS) protect enterprise networks from attacks and prying eyes.  Continue Reading

• Beyond the Page: New SIEM Battleground Unfolds with Advanced Analytics

  Robert Lemos looks at next-generation security information and event management analytic tools and cloud-based systems.  Continue Reading

• Closer look at 'good enough' security after recent data breaches

  What is 'good enough' security and when you need something better.  Continue Reading

• New scrutiny on bug bounties: Is there strength in numbers?

  Bug bounty programs are a cool idea and often work, so why haven't they taken off for non-tech companies?  Continue Reading

• The hunt for data analytics: Is your SIEM on the endangered list?

  Analytics-driven security disrupts -- and sometimes supplants -- SIEM tools.  Continue Reading

• Three things to consider before deploying a next-generation firewall

  Expert contributor Mike Villegas outlines the three factors to consider when making the decision to purchase and deploy a next-generation firewall.  Continue Reading

• Business-use scenarios for a Web application firewall deployment

  Web application firewalls can be a critical security layer for many companies. Expert Brad Causey explains when and how to deploy a WAF in the enterprise.  Continue Reading