Solution Search:
User Search Results
Business Driven Access Management and Governance: Simplifying the Delivery and Governance of Access throughout the Enterprise by Aveksa
Progressive organizations are adopting a new process for how access is requested, approved, fulfilled, validated and...
E-Book: Compliance in the EU, U.S.A.-- Learn What U.S. Companies Need to Know About European Union Compliance and Vice Versa by SearchCompliance.com
Read this e-book to learn about compliance differences in the U.S.A. and the EU, and differences between global business...
The Future of Authentication for Online Services by SafeNet, Inc.
In this white paper, we take a look at how strong authentication can benefit eCommerce and online services. We will...
Process Automation With VMware by UC4 Software, Inc
In this white paper, you’ll discover how to grapple virtualization's complexities by automating time drains like on/off...
ASK THE EXPERTS
Rogue antivirus programs have been one of the most successful attacker schemes, according to SANS. Why do you think so many people have fallen for these scams, and what are some best practices that can prevent my employees from downloading rogue antivirus software on enterprise machines? Rogue antivirus programs have preyed on users' fears for several years now, and their presence has increased. As the mass media used scare tactics and warned of dangerous computer attacks, many...
SECURITY TIP OF THE DAY

You've done it; your first enterprise network penetration test is now complete. The only problem is that you have what seems like a mountain of vulnerability information, but don't know how to not only parse it to identify the truly relevant weaknesses you've uncovered, but also use that information to strengthen network defenses.

While the thought of starting a network penetration test analysis may make your head spin, in this tip we'll detail a step-by-step process for analyzing and acting on penetration test results data.

During the network penetration testing design process, there are boundaries that need to be laid out to prevent scope creep, namely which devices, services and networks will be tested and which won't; this scope will depend on the objectives of the test. Be sure to document and save this plan, as after the test it will serve as your framework of what the results should (and shouldn't) encompass.

For instance, say your scope included all routers and switches within the organization and the task was to check for any vulnerability that could be associated with those devices. In the process of your scan, the data shows a Windows box that has a vulnerable FTP server on it. While the vulnerable...

SECURITY DOWNLOADS
ESET NOD32 Antivirus 4 Trial
By ESET
Effective, and Easy to use internet security. Receive a FREE Trial of a fully integrated security solution which includes Antivirus and Antispyware all managed...
View the abstract
View more from this sponsor
Altor VF3 Live Demonstration
By Altor Networks
Altor is the leading provider of security for virtual data centers and clouds. This link provides you with full access to Altor security software running within...
View the abstract
View more from this sponsor
SECURITY ARTICLES

Microsoft plans to issue a bevy of bulletins next week repairing more than two dozen Windows vulnerabilities across...

Microsoft is broadening its Security Development Lifecycle (SDL) program this week, introducing a new template to help...

SECURITY COLUMN

If you haven't focused on an enterprise-wide Web security strategy then it's time for a reality check. It's safe to assume that various parts of your organization are using Web applications and a cloud computing infrastructure or services, and the time to wrap a security strategy around that is now.

The recent Cisco Systems 2009 Annual Security Report... More...