Security audit, compliance and standards

Get tips from the experts on security audits, compliance and standards. Advice is offered on data privacy and theft, audit planning and management, how to work with auditors, and compliance with standards, regulations and guidelines such as PCI DSS, GLBA, HIPPA, SOX, FISMA, ISO 17799 and COBIT.

October 11, 2018 11 Oct'18
U.S. weapon systems cybersecurity failing, GAO report says

A U.S. Government Accountability Office report gave failing grades to military weapon systems cybersecurity, but some experts say the report should be a source of encouragement.
October 10, 2018 10 Oct'18
Google security audit begets product changes, German probe

A Google security audit uncovered a glitch in Google Plus that exposed data from nearly 500,000 accounts, causing the company to shutter the social network and spur a German data protection probe.
October 02, 2018 02 Oct'18
Facebook GDPR fate uncertain following data breach

Facebook's GDPR consequences are still up in the air following a data breach, as Irish regulators are waiting on more information before determining if the social network will face a fine.
September 13, 2018 13 Sep'18
Trend Micro apps fiasco generates even more questions

In addition to other Trend Micro apps banished from the Mac App Store for gathering data inappropriately, the company has admitted to publishing the Open Any Files app.

Bring yourself up to speed with our introductory content

Payload (computing)

The term payload, when used in the context of networking or telecommunications, is the data carried inside of a packet (or other network protocol data units like frames or segments). Continue Reading
What standards for business continuity aid in compliance?

Business continuity and disaster recovery compliance is a valuable asset and may require a deeper understanding of modern standards and changes your organization needs to make. Continue Reading
SIEM evaluation criteria: Choosing the right SIEM products

Establishing solid SIEM evaluation criteria and applying them to an organization's business needs goes far when selecting the right SIEM products. Here are the questions to ask. Continue Reading

Weigh the pros and cons of technologies, products and projects you are considering.

Seven criteria for evaluating today's leading SIEM tools

Using criteria and comparison, expert Karen Scarfone examines the best SIEM software on the market to help you determine which one is right for your organization. Continue Reading
SIEM benefits include efficient incident response, compliance

SIEM tools enable centralized reporting, which is just one of the many SIEM benefits. Others include real-time incident response, as well as insight for compliance reporting. Continue Reading
A comprehensive guide to SIEM products

Expert Karen Scarfone examines security information and event management systems and explains why SIEM systems and SIEM products are crucial for enterprise security. Continue Reading

Learn to apply best practices and optimize your operations.

What is missing from the NIST/DHS botnet security report?

The joint DHS and NIST report on botnet security offers goals and action items to counter distributed cyberthreats. Learn the report recommendations with expert Nick Lewis. Continue Reading
Citrix's Peter Lefkowitz on impact of GDPR privacy requirements

New consumer privacy laws are changing the global privacy landscape. Citrix's Peter Lefkowitz explains how Citrix is approaching GDPR compliance and privacy issues in general. Continue Reading
How can cryptojacking attacks in Chrome be stopped?

Google instituted an aggressive ban on all cryptomining extensions for Chrome after cryptojacking attacks started to become more common. Learn how the ban works with Michael Cobb. Continue Reading

We’ve gathered up expert advice and tips from professionals like you so that the answers you need are always available.

Health information management professionals aid cybersecurity

Cybersecurity is an ongoing priority -- and challenge -- for healthcare organizations. A health information management team can help keep data secure and protected. Continue Reading
Q&A: Why data security controls are a hard problem to solve

Feeling less friendly after Facebook? "There is a great deal of power in being able to combine data-sources," says Jay Jacobs, security data scientist. Continue Reading
When does the clock start for GDPR data breach notification?

As new GDPR data breach notification rules go into effect, companies must be ready to move faster than before. Mimecast's Marc French explains what will change and how to cope. Continue Reading