Auditing, testing and assessment for compliance, Bank Secrecy Act compliance, Basel II regulatory compliance and requirements, Compliance best practices, Electronic data discovery compliance, FACTA law requirements, FFIEC compliance guidelines, GLBA compliance requirements, HIPAA: Laws and guidelines, PCI DSS: Audits and requirements, Risk frameworks, metrics and strategy, SEC and FDIC regulations, SOX financial reporting compliance, State data security breach laws
Data governance best practices, IT disaster recovery planning and management, Risk assessment and management, Threat prevention, Risk management frameworks, metrics and strategy
Business partner and vendor security issues, Debit and credit card fraud prevention, Financial transaction protocols and security, Logical and physical security convergence
Corporate network security, ID management and access control, Online, Web and application security, Secure communications
In this video, Diana Kelley of Security Curve, explains the greatest challenges to PCI compliance, as well as dealing with application security for compliance, encryption and compensating controls.
( Jun 14, 2011 )
( Jul 15, 2010 )
The PCI Council will continue to issue recommendations for mobile payment security, according to Bob Russo, general manager of the PCI SSC.
Expert Nick Lewis analyzes the increasing ability by hackers to exploit Java and the need to perform a JRE security policy analysis in response.
Editor Eric B. Parizo says controversies involving Oracle security patches and InfoSec World 2012 prove the importance of differing opinions.
Applying DLP technology to virtual machines can enable cloud computing with enhanced security and compliance.
Organizations can boost PaaS security late in the game by implementing these stopgap measures.
Think you understand cloud-specific security technologies as well as expert Joseph Granneman does? Test your knowledge with this quiz.
Biometric authentication helps ensure only authorized smartphone users can access a network. David Jacobs weighs the pros and cons of three methods.
The Vault partner program uses incentives to increase visibility for F5 firewalls and its architecture bundle.
DMARC aids the DKIM and SPF protocols that help keep spam out and let legitimate emails in. David Jacobs explains how.
To maintain information security during the 2012 Olympics, security and IT contingency plans must be tested in several key areas.
Do your Web app users upload files to your servers? Find out the dangers of malicious file uploads and learn six steps to stop file-upload attacks.
Organisations are looking beyond NAC and MDM to resolve BYOD security issues; MDM, security and hybrid vendors are responding with new products.
Windows Phone 7 security features are proving to be a mixed bag. Sam Cattle assesses the enterprise security pros and cons of the latest Windows mobile platform.
Whether starting your career or planning your next step as an IT security professional, this tip will guide you toward the best certifications for your interests and experience.
SearchMidmarketSecurity.com’s tutorials offer IT professionals in-depth lessons and technical advice on the hottest topics in the midmarket IT security industry. Through our tutorials we seek to provide site members with the foundational knowledge needed to deal with the increasingly challenging job of keeping their organizations secure.
The CIO role was under the microscope at MIT this week. Will CIOs be the standard bearers of the IT revolution or just stuck cleaning up the mess?
Download the latest Enterprise CIO Decisions issues
This tip discusses how to achieve the goals of business process reengineering, including application process optimization for innovation and agility.