Abstract: With the emergence of network access control (NAC) technologies, network administrators now have tools to gain critical network understanding. NAC solutions can contribute significantly to an organization’s business objectives by automatically enforcing network and security policies, preventing network downtimes, maintaining network integrity, and meeting compliance regulations. With this in mind, it’s important to look at what NAC implementations actually require.

Abstract: TEC outlines the reasons for having a Security Vulnerability Assessment done, how a security vulnerability assessment is performed, what can be gained by enlisting the Security Vulnerability Assessment process, and what you should expect to see in a Security Vulnerability Assessment report. After all, the most important reason for having a Security Vulnerability Assessment performed is to enable corrective action. How can you know what to secure if you don't know what is insecure?

Abstract: In the converging network and security infrastructure, relating what is reported from security products to what is observed on the network is critical. Q1 Labs’ network security management product, QRadar, combines network behavioral analysis with vulnerability assessment and security event correlation into one platform. Ultimately, this convergence reduces IT acquisition and operations costs, and enhances responses to network security incidents.

Abstract: Today’s Web applications exist in an environment vastly different from when businesses first entered the Internet. Few companies have a comprehensive Web application security program to prevent Internet-borne security breaches. Learn how security concerns for Web applications are different than for traditional applications, and how to build a Web security program that curbs costs and provides effective security.

Abstract: While network complexity and bandwidth demands continue to increase, applications such as voice over Internet protocol (VoIP) increase performance requirements. Today’s network administrators need versatile monitoring and analysis tools to quickly troubleshoot and monitor security and compliance. Retrospective network analysis (RNA) tools let you go “back in time” to reconstruct failure or attack. Discover the benefits.

Abstract: The biggest threat to data security doesn’t come from hackers, misconfigured firewalls, missing patches, or negligent employees. Nor is it in the application layer of the Open Systems Interconnection (OSI) Basic Model. Instead, there are three undocumented layers of the OSI Model that exert a huge influence on security decisions and the integrity of security programs. Learn about those layers and how to manage the threat.

Abstract: HIPAA-Watch for Security is a tool designed to guide organizations through the risk analysis required by the Health Insurance Portability and Accountability Act (HIPAA) compliance process (US). Relevant Technologies, a leading security research and advisory firm, evaluated HIPAA-Watch for Security to verify how well it performed in guiding organizations through the HIPAA security risk analysis process.

Abstract: Original News & Educational Review Course Summary Ernst & Young, has put together the quintessential course for security engineers looking to improve their ability to protect their organization's website, systems, and network. Dubbed eXtreme Hacking, and carrying a price tag of $5,000 a slot, this course is for anyone but hacks. With an impressive course book that fills a two-inch thick binder, leading Ernst & Young security engineers take you step-by-step through all the ways that bad guys try to subvert your mission critical servers and network configurations. Using dual-bootable NT-Linux laptops, and an accompanying network setup for practicing subversive attacks and exploits, attendees will leave the course with an entire new bag of tools and tricks that help them understand how bad guys identify target IP addresses, collect information about the systems they plan on compromising, and exploit weaknesses without being noticed. The idea is to learn how to figure out what the weaknesses are in your organization's network before the bad guys do.

Abstract: When it comes to security architecture, choosing a system that’s scalable and applicable to a broad set of security needs is a wise move. New security services for Internet protocol (IP) networks are emerging that enable new levels of scalability and manageability—while remaining completely transparent to the network. By applying this type of system, you build an optimal framework for future security applications.

Abstract: The greatest threat to the security of the modern network is complexity. Threats to network security almost always play on missed details in the design of a network or a piece of software. These overlooked details enable much larger and potentially devastating security breaches to occur. However, this threat can be countered with a well designed network and vigilant safeguards.

Abstract: Before engaging with vendors to identify the best solution, you need to perform an evaluation of your network capabilities, and assess the potential impact to your business of a converged network. As with any network implementation, a realistic understanding of what is required to reach your objectives will enable you to ensure a successful transition to enhanced network capabilities.

Abstract: X1 Enterprise Edition lets users search enterprise data with desktop, mobile, or browser clients. Thus, when integrating X1 Enterprise Edition security with an existing Microsoft network installation, it’s important to understand how X1 security features are configured and deployed (including web server security), and how X1 and Microsoft Windows security layers work together at runtime.

Abstract: Businesses are being held increasingly accountable for their business application security—by customers, partners, and government. Unfortunately, most businesses are playing catch-up with security. What’s really needed are processes that fix the software development cycle by weaving security expertise into software acquisition, development, and deployment. Businesses that don’t take a process-oriented approach today may end up chasing application security forever.

Abstract: The transition to IP A wireless carrier s national or regional next generation core network will be an all-IP network in the sense that IP will be the network layer (L3) protocol. MPLS (Multiprotocol Label Switching) will be the transport protocol for all IP-based services, applications, and control and management traffic in the network. Learn more in this white paper.

Abstract: Do-it-yourself (DIY) security can be daunting. It requires significant time, effort and expertise to maintain strong security while complying with information access and disclosure regulations. Find out how a hosted security solution can provide reliable and comprehensive security coverage for your company’s e-mail, Web, and instant messaging (IM), without requiring extensive expertise or equipment in-house.

Abstract: Corporations are at risk because Web applications and servers make them susceptible to hackers and cyber crooks. However, companies can perform security risk assessments that mitigate risk by applying security risk management policies designed to protect a company’s data.

Abstract: As the final article in a three-part series on outsourcing security, the following article provides guidelines for selecting a dependable managed security services provider.

Abstract: As proprietary network hardware appliances become obsolete, unified network platforms (UNPs) are slowly gaining momentum. UNPs are the new paradigm for networking and security—operating on a single system that can be implemented on off-the-shelf hardware. With a UNP, organizations can design, build, manage, and maintain secure networks, without the limitations and expense of vendor proprietary hardware and software.