Auditing, testing and assessment for compliance, Bank Secrecy Act compliance, Basel II regulatory compliance and requirements, Compliance best practices, Electronic data discovery compliance, FACTA law requirements, FFIEC compliance guidelines, GLBA compliance requirements, HIPAA: Laws and guidelines, PCI DSS: Audits and requirements, Risk frameworks, metrics and strategy, SEC and FDIC regulations, SOX financial reporting compliance, State data security breach laws
Data governance best practices, IT disaster recovery planning and management, Risk assessment and management, Threat prevention, Risk management frameworks, metrics and strategy
Business partner and vendor security issues, Debit and credit card fraud prevention, Financial transaction protocols and security, Logical and physical security convergence
Corporate network security, ID management and access control, Online, Web and application security, Secure communications
Flaws in Internet Explorer and the Windows C Runtime library could be used to gain access to system files and download additional malware onto a victim’s machine.
Centrify mobile security supports Apple iOS and Google Android devices and can connect them to Microsoft Active Directory, but it lacks the robust management features found in major MDM suites, analyst says.
Survey of more than 2,000 IT security pros finds many getting raises and promotions despite lagging economy and tighter IT budgets.
Organizations face a March 1 deadline for ensuring their cloud and other service providers comply with Massachusetts’ data protection regulation.
Deciding whether your cloud provider is a business associate comes down to a judgment call based on the type of cloud usage.
A look at SaaS encryption techniques and challenges.
HIPAA compliance services can lead to solid business growth for solution providers. Kevin McDonald's HIPAA security checklist has 10 ways to begin.
VARs expect customers to increase spending on security more than any other IT area in 2012. See which security segments will grow the most.
Blogging can produce new leads for security solution providers. Focus on content in your computer security blog that connects with customers.
A study finds attackers targeting firms with poor patch management policies, exploiting vulnerabilities that should have been patched years ago.
New DDoS statistics suggest hactivist groups are to blame for an increase in the number and types of DDoS attacks across the Internet.
New Web application vulnerability statistics show the number of vulnerabilities is rising, despite the use of Web application development frameworks.
Windows Phone 7 security features are proving to be a mixed bag. Sam Cattle assesses the enterprise security pros and cons of the latest Windows mobile platform.
Whether starting your career or planning your next step as an IT security professional, this tip will guide you toward the best certifications for your interests and experience.
SearchMidmarketSecurity.com’s tutorials offer IT professionals in-depth lessons and technical advice on the hottest topics in the midmarket IT security industry. Through our tutorials we seek to provide site members with the foundational knowledge needed to deal with the increasingly challenging job of keeping their organizations secure.
Center for CIO Leadership founder Harvey R. Koeppel talks about how the CIO role is a good one from which to use IT consumerization for business gain.
Future technology leaders could come from the non-IT ranks. A drive for business value gained from data and industry experience are making it happen.
Data quality remains a top challenge for business intelligence. For CIOs, this should be the question: What's good enough for the task at hand?