Search Results Page
Displaying Results for:
- Security Standards, Regulations, & Legislation (Remove)
Track research using these terms:
Sort by:
Displaying results 1-25 of 88 results
Results based on your search criteria
For Security & Risk Professionals
Case Study: Baker Tilly Virchow Krause Builds Trust With Strong Authentication
Customer Data Is Accessible Yet Safe Whether Users Are Connected Or Not
by Bill Nagel, November 16, 2009
Matt Jennings at Baker Tilly Virchow Krause needed to overhaul the accounting and advisory firm's security processes and technologies to ensure ongoing regulatory compliance and customer confidence. Replacing the company's use of a single password as . . .
For Security & Risk Professionals
Cloud Computing Checklist: How Secure Is Your Cloud? 
(43 KB XLS)
by Chenxi Wang, Ph.D., October 30, 2009
If your organization is interested in cloud computing, there are some key security and privacy, compliance, and legal issues that you need to broach with the service provider. To help with this process, we've put together a checklist of key issues and . . .
For Security & Risk Professionals
PCI X-Ray: File Integrity Monitoring
by John Kindervag, October 26, 2009
To effectively deal with the broad and complex requirements of Payment Card Industry (PCI) data security, you need to break the elements apart to provide enhanced clarity. We've designed the PCI X-Ray series to provide actionable information to help Forrester . . .
For Application Development & Program Management Professionals
Test Data Privacy Is Critical To Meet Compliances
Data Masking Can Help Protect Test Data
by Noel Yuhanna, October 13, 2009
Using customer, employee, or other confidential data straight from production for testing or developing applications violates data privacy laws and regulations and makes that data a soft target for attacks. Data privacy is not just a concern for production . . .
For Application Development & Program Management Professionals
Your Enterprise Database Security Strategy 2010
Stronger Measures Have Become Essential To Defend Against Growing Attacks
by Noel Yuhanna, September 28, 2009
With increasingly sophisticated attacks and rising internal data theft, database security merits a stronger focus that goes beyond traditional authentication, authorization, and access control (AAA). A single intrusion that compromises private data such . . .
For Enterprise Architecture Professionals
Taking The Fog Out Of Cloud Computing: Planning For Security And Risk Management
by Randy Heffner, September 22, 2009
Architectural planning for an organization's use of cloud computing products and services should focus first on the biggest differences between cloud computing and traditional computing options, and security and risk management (SRM) concerns are among . . .
For Business Process & Applications Professionals
Transparency Is The Next Step In Compliance . . . Bring On Enterprise Content Management
Compliance Processes Remain Untamed And Short On Insight
by Craig Le Clair, Chris McClean, August 28, 2009
Milestones in regulation such as the USA PATRIOT Act, Sarbanes-Oxley (SOX) Act, and amendments to the Federal Rules of Civil Procedure (FRCP) helped drive substantial enterprise content management (ECM) enhancements for better document management and . . .
For Enterprise Architecture Professionals
SOA Security 2009: Products And Specifications
Selecting Standards, Specifications, And Products For SOA Security
by Randy Heffner, August 20, 2009
As enterprise architects set their organization's strategy for service-oriented architecture (SOA) security, they will have to filter through a variety of standards, emerging specifications, and products that can contribute features and functions for . . .
For Infrastructure & Operations Professionals
IT Compliance: From Painful To Pleasant
by Khalid Kark, July 31, 2009
With increasing workforce mobility and the extension of the business supply chain globally, organizations are struggling to keep up with increasing corporate and regulatory compliance requirements. Regulations such as the Health Insurance Portability . . .
For Security & Risk Professionals
Healthcare Security: Ready Or Not, Here It Comes
Applying Five Cardinal Rules Of Information Security To Healthcare Companies
by Khalid Kark, July 24, 2009
The US Congress enacted the Health Insurance Portability and Accountability Act (HIPAA) in 1996. The security and privacy rules took effect in 2003, but none of this really improved the overall state of information security across the healthcare industry. . . .
For Security & Risk Professionals
Articulating The Business Value Of Information Security
by Khalid Kark, July 24, 2009
Many CISOs struggle to articulate the value of their security programs and justify the security budget to business and executive management. This problem was acutely evident in the current economic downturn: Many security managers saw their budgets slashed, . . .
For Security & Risk Professionals
PCI X-Ray: Network Segmentation
by John Kindervag, July 17, 2009
To effectively deal with the broad and complex requirements of Payment Card Industry (PCI) data security, you need to break the elements apart to provide enhanced clarity. We've designed the PCI X-Ray series to provide actionable information to help Forrester . . .
For Security & Risk Professionals
How Secure Is Your Cloud?
A Close Look At Cloud Computing Security Issues
by Chenxi Wang, Ph.D., May 8, 2009
Amid a downturn economy, organizations increasingly look to cloud computing to improve operational efficiency, reduce headcounts, and help with the bottom line. But security and privacy concerns present a strong barrier-to-entry. In an age when the consequences . . .
For Security & Risk Professionals
Market Overview: Security Information Management (SIM)
PCI Gives The SIM Market Its Second Wind, But The Field Will Thin Out In The Years Ahead
by John Kindervag, Andrew Jaquith, April 30, 2009
The security information management (SIM) market has undergone a dramatic transformation in the past five years. After growing to a respectable size in a short period in the early 2000s, the SIM market stagnated until the Payment Card Industry Data Security . . .
For eBusiness & Channel Strategy Professionals
Security And Data Management: What The Global eCommerce Leader Needs To Know
An Ever-Increasing Set Of Regulations And Standards Drives Complexity
by Brian K. Walker, April 23, 2009
Security and data compliance are issues that can be easily ignored in the face of the next product launch or marketing campaign. But global eCommerce leaders need to take control of these issues and marshal their resources, including vendors, to ensure . . .
For Technology Sales Enablement Professionals
Role Profile: The Chief Information Security Officer
Understanding And Marketing To Security And Risk Professionals
by Emily Van Metre, Eric G. Brown, April 15, 2009
The chief information security officer (CISO) drives technology and services decisions that ensure compliance and protect the company's IT assets and brand. Knowing these stakeholders will help your sales force start the right conversation with a prospect, . . .
For Security & Risk Professionals
Privacy Policies And Drivers 2008 
(201 KB PPT)
by Chris McClean, April 9, 2009
Privacy programs in North America and Europe typically include policies for protecting corporate intellectual property and sensitive data. Although government regulation is by far the biggest driver for privacy programs in public sector organizations, . . .
For Security & Risk Professionals
PCI X-Ray: IDS And IPS
by John Kindervag, April 8, 2009
To effectively deal with the broad and complex requirements of Payment Card Industry (PCI) data security, you need to break the elements apart to provide enhanced clarity. We've designed the PCI X-Ray series to provide actionable information to help Forrester . . .
For Vendor Strategy Professionals
Data Security And Regulatory Compliance Drive Healthcare Security Decisions (402 KB PPT)
by Eric G. Brown, March 27, 2009
Data Security And Regulatory Compliance Drive Healthcare Security Decisions
For Security & Risk Professionals
Inquiry Spotlight: PCI, Q1 2009
by John Kindervag, February 26, 2009
With the increase in identity theft and fraud, credit card companies are making a concentrated effort to improve compliance rates. Merchants now face fines or loss of privileges to use the card brand if an audit shows noncompliance. Forrester's IT security . . .
For Infrastructure & Operations Professionals
Look To Network Access Control (NAC) To Streamline IT Compliance
Maximize Your NAC Deployment To Aid In GLBA, HIPAA, PCI DSS, And SOX Efforts
by Robert Whiteley, February 24, 2009
Did your organization just fail an audit test, and were you, the IT manager, blamed for not keeping your infrastructure or IT operations up to snuff? The Gramm-Leach-Bliley Act (GLBA), the Health Insurance Portability and Accountability Act (HIPAA), the . . .
For Security & Risk Professionals
PCI X-Ray: Firewalls
by John Kindervag, February 13, 2009
To effectively deal with the broad and complex requirements of Payment Card Industry (PCI) data security, you need to break the elements apart to provide enhanced clarity. We've designed the PCI X-Ray series to provide actionable information to help Forrester . . .
For Security & Risk Professionals
PCI X-Ray: What's New In 1.2?
by John Kindervag, January 30, 2009
To effectively deal with the broad and complex requirements of Payment Card Industry (PCI) data security, you need to break the elements apart to provide enhanced clarity. We've designed the PCI X-Ray series to provide actionable information to help Forrester . . .
For Vendor Strategy Professionals
What President-Elect Obama's Cybersecurity Agenda Means For Security Vendors
by Khalid Kark, January 8, 2009
President-elect Barack Obama has acknowledged that leaving America's information systems unprotected could lead to a "crippling blow" to our economy. He has promised to make cybersecurity his top priority, declare cyberinfrastructure a strategic asset, . . .
For Business Process & Applications Professionals
XBRL: Finding Purpose Beyond Regulatory Reporting
by Scott Tiazkun, November 10, 2008
In the US, eXtensible Business Reporting Language (XBRL) is promoted largely through the efforts of the US Securities and Exchange Commission (SEC) and is currently pending guidelines for reporting of annual and quarterly financial statements. But once . . .
