Search the Library
 
Home >

Security

>

Vulnerability Management
In computer security, the term vulnerability is applied to a weakness in a system which allows an attacker to violate the integrity of that system. Vulnerabilities may result from weak passwords, software bugs, a computer virus or other malware, a script code injection, a SQL injection or misconfiguration.<br><br>A security risk is classified as a vulnerability if it is recognized as a possible means of attack. A security risk with one or more known instances of working and fully-implemented attacks is classified as an exploit.

Results 1 - 25 of 98 matches Sort Results By : Published Date | Title | Company name
Data Protection
By : SC Published Date: Mar 18, 2010
A new privacy regulation in Massachusetts has evoked anxiety for many, but the requirements, which have been referred to as the strictest in the nation, may prove to be no big deal. The legislation differs from other state disclosure bills because it insists that organizations take measures to protect information, as opposed to other guidelines that only require companies alert customers should their data be compromised. A number of experts we spoke with for this ebook, say that for companies already in line with PCI or HIPAA, tweaking their security practices should not be a burden.
Download Now
SC
Security training: Weakest link
By : SC Published Date: Mar 10, 2010
After a number of attacks on the networks within the House of Representatives, legislators got the message: it was time to to begin mandatory security awareness training of all House members and their staffs. Dan Beard, chief administrative officer of the House of Representatives, was tasked with revamping the House's security policies, notably the training of end-users. SC Magazine Senior Reporter spoke with Beard, as well as a number of other IT experts in similar positions, on the need to educate employees on proper digital safeguards. He found that the human element is the largest security risk in any organization. Technology solutions are one part of the fix, but holding classes is another vital step. "The most powerful preventive tools will be communication and the reinforcement of secure behaviors," one report concluded. This new eBook from SC Magazine provides illustrations into how Dan Beard at the House, and several other IT security experts, rely on a mix of positive and negative reinforcements to train their employees, and as a result are witnessing a payoff from motivating their employees to become aware of the dangers lurking out there on their enterprise networks.
Download Now
SC
Business continuity and recovery services from IBM - Strengthen your business with cloud computing
By : IBM Corporation Published Date: Feb 24, 2010
Ensure your business stays up and running through cloud computing. When disaster strikes, business must keep moving. Combing the advantages of a cloud computing infrastructure, IBM helps deliver business continuity and resiliency solutions based on tested methodologies, architecture, and information management designed specifically for your enterprise. Read this paper and learn how cloud computing can give you access to your data no matter what.
Download Now
IBM Corporation
Clabby Analytics White Paper: Don't Overlook Business Resiliency and Security When Building a Dynami
By : IBM Corporation Published Date: Feb 24, 2010
Security and business resiliency are crucial to a dynamic infrastructure. Many companies moving to a dynamic infrastructure ignore two important aspects-security and business resiliency. Read the Clabby Analytics Research Brief and see how IBM can help. Plus get a closer look at IBM's Smarter Planet initiative to help companies use IT more efficiently.
Download Now
IBM Corporation
Podcast: Were You Attacked Before You Patched: Negative Day Threat Detection
By : Solera Networks Published Date: Nov 24, 2009
With Negative Day Threat Detection, you can see if you were infected before you patched. Identify anything that crossed the network prior to a security update, patch install or system change.
Download Now
Solera Networks
The Benefits of Network Forensics: Using Surveillance for Remediation, Fortification, and Incident I
By : Solera Networks Published Date: Nov 24, 2009
No security system will keep your organization absolutely secure. If you have assets on the network, assume that some threat exists that can exploit vulnerabilities in your security. If it doesn't exist today, it probably will tomorrow. Network forensics can help you prepare for swift and intelligent incident response.
Download Now
Solera Networks
Approaching Security White Paper - Complete Security: Out of Reach or Attainable Goal? A Guide to Su
By : Solera Networks Published Date: Nov 24, 2009
What security tools will make us completely secure? Nothing. Literally. If we have assets to protect, threats and vulnerabilities will always put those assets at risk. Absolute security is not possible. Security should not be considered a goal or a final destination, but rather a perpetually reiterative effort to manage risk.
Download Now
Solera Networks
Webinar: The Case for Network Forensics
By : Solera Networks Published Date: Nov 24, 2009
View this joint webinar from CSI and Solera Networks to learn how network forensics can help you determine the true source and scope of any network security event within your organization
Download Now
Solera Networks
Network Forensics Survey: Most Networks are Unprepared for Quick Response
By : Solera Networks Published Date: Nov 24, 2009
What are your odds of experiencing a network breach? You might change your thinking about the need for network forensics and swift incident response. . More than 85 percent have had a major network incident in the past 36 months or expect to have one in the coming 36 months
Download Now
Solera Networks
Quest Solutions for PCI Compliance
By : Quest Software Published Date: Mar 01, 2010
In order to standardize security for the payment card industry, all providers must comply with the Payment Card Industry Data Security Standard (PCI-DSS). Unfortunately, many merchants aren't in compliance! What does this mean for them - and you? Fines, lost business and a shaky reputation with your customers. In this new Quest Software white paper, learn about each and every PCI-DSS requirement - and the solution you need to address them. Whether for Windows, Exchange or even UNIX systems, discover the tools and controls to quickly and easily comply with PCI-DSS. Read it today.
Download Now
Quest Software
Four Steps to Cure Your Patch Management Headache
By : Lumension Published Date: Mar 01, 2010
Using patch and vulnerability management as the principal component of your risk mitigation strategy and taking prudent measures to establish a best practices approach can help reduce costs and risks in the long term.
Download Now
Lumension
Free (ISC)2® studISCope® self-assessment
By : (ISC)2 Published Date: Feb 01, 2010
If you're trying to decide whether a certification is the right path for you or whether you possess the knowledge needed to pass the CISSP® examination, we can help.
Download Now
(ISC)2
Next Generation Log and Event Management
By : Tripwire Published Date: Jan 25, 2010
Compliance regulations have made log management a mandatory IT practice for organizations, but there's an increasing awareness of what those logs can also do for security through tracking suspicious activity and user behavior. Organizations are starting to realize they can use logs to pinpoint holes in their cyber defenses and thereby boost security. This white paper highlights the upcoming trends in log and event management security in 2010. This paper will look at the following: - Dynamic Activity Analysis - Real-time threat monitoring - Automated Event Response - Comprehensive Log Management
Download Now
Tripwire
Security Beyond the Windows Event Log
By : Prism Microsystems Published Date: Jan 20, 2010
This technical white paper describes the ten most critical security conditions that are not monitored by the Windows Operating System or logged in the Event Log. These conditions are critical for any enterprise large or small.
Download Now
Prism Microsystems
Sarbanes-Oxley Roadmap
By : Prism Microsystems Published Date: Jan 20, 2010
This "how to" guide is organized into two parts. Part 1 provides an overview of SOX Section 404 and COSO. It also introduces EventTracker and details how it helps met corporate compliance requirements. The second part is an administrative guide detailing a sample three-day deployment process to SOX compliance with EventTracker.
Download Now
Prism Microsystems
Meeting HIPAA Compliance
By : Prism Microsystems Published Date: Jan 20, 2010
There are a number of steps a healthcare provider must undertake to meet the Technical Safeguards mandated in the Security Rules of Title II (Administrative Simplification) of the Health Insurance Portability and Accountability Act (HIPAA). With EventTracker a healthcare provider can be confident they have the solution in place to help effectively meet audit requirements
Download Now
Prism Microsystems
Leveraging Log Management to provide business value
By : Prism Microsystems Published Date: Jan 20, 2010
Despite the obvious benefits of Log Management and its increasing recognition as a critical necessity by the IT organization, Log Management is still viewed by Executives and Senior Management as a tactical effort, an item on a checklist that addresses a specific set of requirements, typically related to compliance or security.
Download Now
Prism Microsystems
The Top 10 Insider Threats
By : Prism Microsystems Published Date: Jan 20, 2010
This Whitepaper discusses the top ten insider activities you have to monitor to make sure your employees are not violating security policy or opening up easy routes for insider abuse. Implementing these recommendations is fast, cost effective and will help prevent costly insider hacks and data leakage from impacting your business.
Download Now
Prism Microsystems
Managing USB Mass Storage Devices
By : Prism Microsystems Published Date: Jan 20, 2010
This White Paper discusses how you can take advantage of the power of high capacity USB storage devices like thumb/flash drives without leaving your operation wide open to critical company information being misappropriated. Until now the choice has been to either shut down USB devices - either in Active Directory or through more extreme methods (the "glue in the USB port" trick comes to mind) - or simply trust every user to do the right thing. This paper introduces a third way that Prism Microsystems calls "Trust but Verify" which is made possible by EventTracker's advanced USB monitoring capability.
Download Now
Prism Microsystems
Securing Electronic Medical Records
By : Nitro Security Published Date: Jan 20, 2010
Electronic Medical Records present new and complex information security needs. Tools are needed to protect EMR where it is stored, where it is accessed at various applications, and to actively block viruses and malware that put EMR at risk. A security information & event management system (SIEM) provides the ability to detect complex threats and effectively secure EMR.
Download Now
Nitro Security
9 Keys to Comprehensive Enterprise Security: A Simple Guide for IT & Security Administrators
By : WinMagic Inc. Published Date: Jan 18, 2010
Sensitive data, from trade secrets to customer data, is more valuable and hence, more vulnerable than ever. Securing the data stored within the enterprise can be challenging in dealing with the heterogeneous nature as to where this information can be stored.
Download Now
WinMagic Inc.
Databases at Risk
By : Guardium Published Date: Jan 05, 2010
Databases at Risk by Jon Oltsik, Principal Analyst, Enterprise Strategy Group In a recent Research Brief, ESG analyzed the current state of database security. Based upon a survey of 179 North American-based security professionals working at organizations with over 1,000 employees, ESG found that: . Databases house a higher percentage of confidential data than any other type of data repository. . Database security depends upon too many manual processes. . Enterprise-class organizations aren't diligent enough about database security. This Research Brief categorizes databases as a "dangerous and growing security gap", and offers steps to improve database security across the enterprise.
Download Now
Guardium
When Corporate Network Safety Starts at Employees' Homes
By : WatchGuard Published Date: Dec 04, 2009
With the increasing sophistication and ease with which hackers attack, IT managers must train their end users on wireless security, specifying wireless router hardware and configuration settings, and in some cases, providing firewall/VPN endpoint appliances (managed from the data center) for key employees' in-home use. This white paper covers eight essential tips for nailing down security for off-site wireless users. Share it with your remote users today to help them work from home safely.
Download Now
WatchGuard
Botnets Exposed: Stopping Next-Generation Attacks
By : McAfee Inc Published Date: Nov 20, 2009
The increasing sophistication and dynamism of multi-vectored network attacks, including use of botnets to deliver threats deep inside the enterprise, requires rethinking network security. In light of this sophistication and the corresponding multi-pronged attacks, traditional exploit-based solutions fail to be effective countermeasures to secure the network.
Download Now
McAfee Inc
Is a Unified Threat Management solution right for you?
By : McAfee Inc Published Date: Nov 16, 2009
Today's small and mid-sized businesses (SMBs) and the remote branch offices of larger organizations face increasing Internet-borne security risks. This paper discusses integrated network security appliances that can help these organizations enhance their security easily and affordably.
Download Now
McAfee Inc
 
Results 1 - 25 of 98 matches Sort Results By : Published Date | Title | Company name
Home >

Security

>

Vulnerability Management
<< Start < Previous 1 2 3 4 Next > End >>

More Security Topics

Access Control

,

Anti Spam

,

Anti Spyware

,

Anti Virus

,

Application Security

,

Auditing

,

Authentication

,

Biometrics

,

Business Continuity

,

Compliance

,

DDoS

,

Disaster Recovery

,

Email Security

,

Encryption

,

Firewalls

,

Hacker Detection

,

High Availability

,

Identity Management

,

Internet Security

,

Intrusion Detection

,

Intrusion Prevention

,

IPSec

,

Network Security Appliance

,

Password Management

,

Patch Management

,

Phishing

,

PKI

,

Policy Based Management

,

Security Management

,

Security Policies

,

Single Sign On

,

SSL

,

Secure Instant Messaging

,

Web Service Security

,

PCI Compliance

,

Vulnerability Management
SUBSCRIBE FORM
Receive an email alert whenever new research is added into:
Vulnerability Management
Enter your email below:

RELATED TOPICS
Security
519 Documents

Search the Library
White Papers powered by
    Vulnerability Management Technology
   Learn about White Paper Lead Generation opportunities

This material may not be published, broadcast, rewritten or redistributed in any form without prior authorization.

Your use of this website constitutes acceptance of Haymarket Media's Privacy Policy and Terms & Conditions