http://www.compliancehome.com/ ComplianceHome is one of the Web's largest library of resources for compliance management of HIPAA, SOX, FISMA, GLBA, FDA, FFIEC, Basel II, OSHA and ISO 27002/17799. Visit our directories which are the best source on White papers, related news articles, resources on the web, training, webinars, conferences, rules & regulation overview, ask the expert, job and search on vendors, solutions & products. http://www.compliancehome.com/images/rsslogo.gif http://www.compliancehome.com/ en-us Mon, 18 Jul 2011 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract12013.html The main challenge for developing a Basel software solution is around the various calculations which are involved and the accuracy of calculations. Most of the time, there is little thrust on understanding the basics behind the calculations; rather banks IT department relies on the vendors to provide all calculations and related computing. http://www.compliancehome.com/whitepapers/Basel-II/abstract12013.html Mon, 17 May 2010 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11950.html Cleaning Services Vancouver is one of the specialized Cleaning Service provider which offers quality and affordable cleaning services. It offers a host of cleaning services which is inclusive of both commercial as well as residential cleaning. http://www.compliancehome.com/whitepapers/Basel-II/abstract11950.html Sun, 14 Feb 2010 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11834.html The Basel II framework has become an international standard for banks to use to ensure that they have enough capital in reserve, using these funds as a safety net against various forms of risk. http://www.compliancehome.com/whitepapers/Basel-II/abstract11834.html Mon, 11 Jan 2010 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11812.html Operational Risk exists everywhere in the business environment. It is the oldest risk facing any commercial institution, and in particular banks, insurance companies and other financial institutions. Any financial institution will face financial risk long before it decides on its first market trade or credit transaction. http://www.compliancehome.com/whitepapers/Basel-II/abstract11812.html Mon, 11 Jan 2010 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11811.html Risk Management, Compliance and Governance that followed the corporate failures of the past decade have dramatically changed today's business environment. Organizations world-wide are coping with a proliferation of new regulations and standards, are challenged to do so in a way that supports performance objectives, upholds stakeholder expectations, sustains value and protects organization's brand. http://www.compliancehome.com/whitepapers/Basel-II/abstract11811.html Mon, 11 Jan 2010 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11810.html Open framework to support Governance, Risk Management and Compliance (GRC) strategic projects and regulatory compliance http://www.compliancehome.com/whitepapers/Basel-II/abstract11810.html Tue, 29 Dec 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11787.html Strategic business activities, especially those where a lot of money or even the companys future is at stake, usually involve a lot of people who do not work for the company, or at least not directly. These may include external board members or consultants; partners interested in a joint venture; or, increasingly, regulatory authorities. This is why digital documents relevant to these processes cannot be kept behind the companys firewall, as they must be able to circulate securely among the authorized project participants. http://www.compliancehome.com/whitepapers/Basel-II/abstract11787.html Tue, 22 Dec 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11786.html Given the current legislative and regulatory environment that includes the Sarbanes-Oxley Act on financial practices and corporate governance, Basel II on banking laws and regulations, the Patriot Act on communications and financial transactions, and other laws that include provisions for financial and legal sanctions, becoming and remaining regulatory compliant has become a high-level organizational priority. Enterprise architecture brings together visualization of an organization's goals, strategies, processes, information and technology; documentation of systems and data sources; integration of models and processes; and collaboration or information-sharing across corporate entities at the enterprise level. http://www.compliancehome.com/whitepapers/Basel-II/abstract11786.html Thu, 17 Dec 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11778.html One of the principal objectives of supervision is to alienate depositors from the financial risks of the bank. In today's volatile markets, it is imperative to ensure that capital set aside for capital adequacy measures is readily available for depositors in adverse market conditions. Basel II has largely left unchanged the question of how to actually define bank capital, which diverges from accounting equity in important respects. The definition, as modified up to the present, remains in place. Basel II uses a http://www.compliancehome.com/whitepapers/Basel-II/abstract11778.html Thu, 17 Dec 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11777.html Master data management is not a new problem. Enterprises have been struggling with it for some time. However, new global regulations such as Sarbanes-Oxley in the United States and Basel II in Europe and increasing interest in performance management have given it a new urgency. Why? Compliance and performance management both require consistent master data across an enterprise. In fact, master data management has become such a high priority that the Tower Group estimates that 80 percent of enterprises have plans to centralize it. http://www.compliancehome.com/whitepapers/Basel-II/abstract11777.html Thu, 17 Dec 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11776.html Corporations of the 21st century must face up to the growing challenge of compliance. Governments worldwide are regulating information management and security with increasing amounts of legislation. Legislation that is written in an ambiguous legal language which may require small hordes of legal experts to decipher. These experts may understand the legal requirements for compliance, but may be ignorant of what constitutes a pragmatic solution. At the core of all these laws are authorization, identity management, data integrity and security. http://www.compliancehome.com/whitepapers/Basel-II/abstract11776.html Thu, 17 Dec 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11775.html If you use data mining or rules-based models to make key decisions, you may need to explain the basis for these decisions to satisfy compliance for Sarbanes-Oxley, Basel II, and other regulations. This executive brief explains how you can address regulatory compliance by using proven analytics management technology to automatically audit your predictive models, track your analytical assets over time, and centralize and secure predictive models. By doing so, you will be able to demonstrate compliance while protecting your analytical assets. http://www.compliancehome.com/whitepapers/Basel-II/abstract11775.html Fri, 04 Dec 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11741.html As if financial institutions did not have enough compliance worries, a new international standard - Basel II - now looms on the compliance horizon. Unlike other laws and standards affecting financial institutions in the US and overseas such as the Gramm-Leach-Bliley Act ( http://www.compliancehome.com/whitepapers/Basel-II/abstract11741.html Tue, 23 Jun 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11526.html The Obama Administration has proposed to Congress the most sweeping and fundamental regulatory reform of the U.S. financial and securities markets since the New Deal. The proposals goals are to regulate systemic risk, enhance transparency and disclosure, delink executive compensation from excessive risk, improve investor protection, and prevent regulatory arbitrage. The Administration has set forth detailed recommendations on the regulation of hedge funds and over-the-counter derivatives, including credit default swaps, as well as draft legislation on a new resolution authority to unwind failing securities and commodities firms. The Administration also recommends major corporate governance reforms, such as shareholder advisory votes on compensation and enhanced compensation committees. http://www.compliancehome.com/whitepapers/Basel-II/abstract11526.html Tue, 05 May 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11402.html Many senior executives are realizing that weak or no information security will result in substantial financial losses, while compliance costs are high and threaten to go higher. Yet, compliance with a law or regulation does not equate to security. The ReymannGroup has performed numerous compliance reviews and risk assessments through which they have engaged hundreds of executives in discussions about a comprehensive and strategic approach to data security and compliance. Many senior executives are focusing on these important challenges. This paper offers thought leadership to help you address each of these challenges. It will also introduce you to the value and importance of a hardware security module as a key part of any successful information security program. http://www.compliancehome.com/whitepapers/Basel-II/abstract11402.html Thu, 09 Apr 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11299.html While governments rally to bring some order to the worldwide economic crisis, customer confidence in the financial industry is waning. That means institutions must be able to prove that they're doing all the right things; among other things, appropriately auditing and controlling the IT environment. Now, more than ever, an institution's mandatory compliance with government guidelines plays a crucial role in restoring customer confidence, one institution at a time. http://www.compliancehome.com/whitepapers/Basel-II/abstract11299.html Tue, 07 Apr 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11279.html The disposition of digital assets in the modern enterprise is undergoing a fundamental and revolutionary transformation. For decades, businesses have focused primarily on how to compile valuable information within the organization and share it between functional units. Convergent regulatory, technological and user convenience requirements are compelling companies to consider how best to confront emerging information management challenges. http://www.compliancehome.com/whitepapers/Basel-II/abstract11279.html Mon, 06 Apr 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11273.html SCB can transparently control, audit and replay the Secure Shell (SSH) and Remote Desktop (RDP) protocols commonly used to remotely access and manage servers. The document is recommended for technical experts and decision-makers working on auditing server-administration processes for policy compliance (e.g., PCI-DSS), or for forensics situations in case of security incidents. http://www.compliancehome.com/whitepapers/Basel-II/abstract11273.html Fri, 03 Apr 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11260.html The increased demands of regulatory compliance are causing IT security managers to review their access governance policies and procedures with an eye toward improving efficiency while reducing the complexity and cost associated with demonstrating compliance. Within many organizations, however, regulatory compliance is simply regarded as a sunk cost. This narrow perspective can obscure the true value of investing in technologies that strengthen, automate, and streamline access governance.In fact, meeting compliance requirements and reducing costs are not the only compelling reasons for investing in access governance. http://www.compliancehome.com/whitepapers/Basel-II/abstract11260.html Wed, 01 Apr 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11256.html Escalating financial concerns and intensifying competition are forcing business executives to strive for more effective and secure communications among an increasingly dispersed and mobile workforce, and with external parties including consultants, subcontractors, partners, clients, advisors, suppliers, investors and more. These trends are driving corporations of all sizes to seek new methods of encouraging collaboration beyond the four walls of the traditional workplace. In addition, business managers are seeking more streamlined processes to meet their communications and collaboration needs while also satisfying their information protection, security and compliance requirements. An increasing number of businesses are adopting a Software-as-a-Service (SaaS) document management solution called http://www.compliancehome.com/whitepapers/Basel-II/abstract11256.html Wed, 01 Apr 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11255.html While governments rally to bring some order to the worldwide economic crisis, customer confidence in the financial industry is waning. That means institutions must be able to prove that they're doing all the right things; among other things, appropriately auditing and controlling the IT environment. Now, more than ever, an institution's mandatory compliance with government guidelines plays a crucial role in restoring customer confidence, one institution at a time. http://www.compliancehome.com/whitepapers/Basel-II/abstract11255.html Mon, 16 Mar 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11165.html Recent revisions to the Federal Rules of Civil Procedure (FRCP) and many state court rules establish new requirements for the rapid discovery and production of email messages. For many organizations, the cost of implementing archiving solutions capable of meeting these requirements have kept these solutions just out of reach. Dell MessagOne's EMS Rapid Archive is the first solution to provide the critical archiving functionality to rapidly meet FRCP legal discovery requirements in a low cost, maintenance-free, SaaS service. http://www.compliancehome.com/whitepapers/Basel-II/abstract11165.html Mon, 16 Mar 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11160.html This paper addresses how Quova's customers are using IP geolocation technology to minimize fraudulent online orders, limit manual reviews, and reduce false positives by: Recognizing mismatches between credit card billing locations and IP locations.Blocking orders from specific http://www.compliancehome.com/whitepapers/Basel-II/abstract11160.html Fri, 13 Mar 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11157.html The pressure to validate PCI DSS compliance is on! Why is this happening? In shortdata security breaches. There are many sources for these breaches, everything from external malicious security attacks to people or process failures. Forrester Research calculates a security breach can cost between $90 and $305 per record, arising from discovery, response and notification; lost productivity; lost opportunity; restitution costs; replacements; and potentially serious fines. One example is TJX, who as of November 2007 has raised the projected cost of its data breach from its August figure of $168 million to $216 million. http://www.compliancehome.com/whitepapers/Basel-II/abstract11157.html Fri, 13 Mar 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11156.html The challenge of complying with a growing number of frequently changing government, industry and internal regulations designed to protect data is becoming harder and more expensive to manage. This paper outlines the rules, looks at the main threats to security compliance and highlights how a well-defined strategy, backed up by powerful technology can provide the solution. http://www.compliancehome.com/whitepapers/Basel-II/abstract11156.html Thu, 12 Mar 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11151.html In this new whitepaper, learn how automating your consolidation process not only compresses closing times, but also reduces the risk of reporting errors and minimizes compliance costs. With increasingly accelerated filing requirements and more expansive corporate governance mandates anticipated in the coming years, accounting and financial reporting practices must become steadily faster, more visible, and more accurate.Consolidation provides the foundation for accurate, validated, and auditable financial information. Read this whitepaper to learn how to achieve greater transparency and improve business performance in your company. http://www.compliancehome.com/whitepapers/Basel-II/abstract11151.html Thu, 12 Mar 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11150.html Data compression is a very well established methodology for reducing the needs for storage. There are several flavors including Lossy (MPEG for example), Lossless (ZIP for example) and more recently Deduplication. Lossy is useful for movies where data size is critical if the entire movie is to be stored on a relatively small device; Lossless is vital where the data must be restored exactly as it was prior to compression. Deduplication is useful where more real time compression / decompression are required with the understanding that data may be lost in the process. People are looking to deduplication for the future of data storage in order to reduce the amount of drives spinning which in turn reduces data center footprint for storage and, of course, reduced power needs. The problem with deduplication is, however, the real potential for data loss. http://www.compliancehome.com/whitepapers/Basel-II/abstract11150.html Thu, 12 Mar 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11149.html Securing access to sensitive corporate and customer data is critical, especially in industries that require a regulatory-compliant environment. While two-factor authentication is an effective security solution, traditional two-factor systems have been difficult to implement and administer, leading to limited adoption. PhoneFactor uses any mobile phone (or landline) as the second authentication factor. PhoneFactor CTO Steve Dispensa explains PhoneFactor's proven approach to two-factor authentication using out-of-band authentication with real-time fraud alerts to dramatically increase security. Learn how this technology works, how to implement it, and compare it to other two-factor authentication solutions available on the market today. http://www.compliancehome.com/whitepapers/Basel-II/abstract11149.html Thu, 12 Mar 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11148.html Amid the ongoing impact of the sub-prime meltdown and the ensuing credit crunch, lenders are facing a much tougher market than has been seen for some time. In this environment, the control and co-ordination of information will form the basis of lenders' ability to react to changing market and regulatory conditions. As a result, lenders are once again looking at their processes and risk management capabilities, which is causing them to question whether they have the tools necessary to manage their risk profiles while delivering an efficient and flexible lending solution. http://www.compliancehome.com/whitepapers/Basel-II/abstract11148.html Thu, 12 Mar 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11147.html Does your organization want to increase revenues and decrease expenses? Every organization faces its own unique challenges in getting the job done. But at the end of the day, it all comes down to increasing revenue while decreasing expenses. When that happens, profitable organizations keep stakeholders and customers happy. To reach that state of http://www.compliancehome.com/whitepapers/Basel-II/abstract11147.html Thu, 12 Mar 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11146.html Is your organization prepared to tackle the massive challenge of protecting your data in a cost effective and timely manner? With a growing number of branch offices, an increasing number of servers, and a high priority on reducing cost, backup is getting even harder to manage. Download this paper and learn about a proven strategy for combining WAN-based backup with wide-area data services (WDS) solutions. http://www.compliancehome.com/whitepapers/Basel-II/abstract11146.html Thu, 12 Mar 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11145.html Enterprise IT groups have compelling reasons to migrate to the 4-Gbps IBM Fiber Connection (FICON) mainframe I/O protocol. Performance increases because 4-Gbps FICON supports faster control units such as direct access storage devices (DASDs) and virtual tape libraries (VTLs) and takes advantage of the 4-Gbps channel speeds of IBM System z. This white paper discusses the benefits of migrating to 4-Gbps FICON, the advantages of the Cisco MDS 9500 Series Multilayer Director switch and how this switch enables migration from 1/2-Gbps FICON to 4 Gbps without business disruption. http://www.compliancehome.com/whitepapers/Basel-II/abstract11145.html Tue, 10 Mar 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11138.html Government bail outs, pro-cyclical financial markets, and an overall economic meltdown have placed a significant focus on the discipline and practice of risk management. In light of these events, risk professionals and organizational leaders are taking an introspective view of their risk management practices. By considering these seven questions organizations and risk professionals will sharpen their daily risk management tools and be better equipped to make tactical improvements to risk management practices. http://www.compliancehome.com/whitepapers/Basel-II/abstract11138.html Tue, 10 Mar 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11136.html Building the case for investing in disaster recovery/business continuity begins with defining what functions are critical to your business and tying that to the key systems that support those functions. Once you've identified those systems, you need to analyze your hardware and software configurations to understand their interdependence and find possible failure points. Next, track your outages, identify their causes, and correlate them to possible points of failure that you've identified. Then determine the frequency and duration of these outages and identify which points of failure cost your business the most. You need to assign costs to these points of failure and manage these costs to maximize the ROI and minimize the losses felt by the entire organization. Finally, disaster preparedness and recovery planning are iterative processes -- not a discrete, one-time event. Enterprises should take care to continually revisit their disaster-recovery plans to ensure they remain aligned with http://www.compliancehome.com/whitepapers/Basel-II/abstract11136.html Tue, 10 Mar 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11135.html According to a study from Forrester Research, the average security breach costs about $200 per record, a cost that is expected to rise in the upcoming years. And, open standards requirements combined with the limitations of access control security make protecting systems a challenge. This white paper reviews the drivers behind data breaches, the technical hurdles facing both management and IT, and the necessary technologies to lock, monitor, and audit the use of sensitive information within the larger information system. http://www.compliancehome.com/whitepapers/Basel-II/abstract11135.html Tue, 10 Mar 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11134.html Web-based threats are increasing in number and severity. The consequences of becoming infected can be extensive and cause significant damage to an organizations revenue, employee productivity, reputation and long-term survival. Organizations should adopt a multi-layered Web defense strategy that can protect their users and networks from increasingly sophisticated threats. Key elements of this strategy include community-watch monitoring of Web traffic using a cloud-based service, protection of remote clients, and real-time inputs from Web gateways and clients for background analysis to detect malware, rate reputations and analyze Web content http://www.compliancehome.com/whitepapers/Basel-II/abstract11134.html Tue, 10 Mar 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11133.html This white paper discusses the detailed results of an Osterman Research survey on messaging security software and our conclusions about administrators attitudes regarding installing third-party software on the Exchange Server. It also provides information on Sunbelt Software's Ninja Email Security, a robust and comprehensive email security solution that can be installed directly on the Exchange Server with no adverse effects on system performance. http://www.compliancehome.com/whitepapers/Basel-II/abstract11133.html Tue, 10 Mar 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11132.html Learn how to implement VeriSign(R) Code Signing Digital Certificates which provide assurance to end users that the code really comes from the developer who signed it, and has not been altered or tampered with since it was signed. Read about this and more in the free white paper: How to Digitally Sign Downloadable Code for Secure Content Transfer. In this paper you will also learn how code signing can help protect your intellectual property, who code signing is best for and how it can help protect your applications from tampering. http://www.compliancehome.com/whitepapers/Basel-II/abstract11132.html Tue, 10 Mar 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11130.html Email threats such as spam are well known, but there's another major entry point into your network, the Web! As companies have become more adept at stopping email threats, cyber-criminals have discovered new ways to infiltrate corporate networks through the Internet. Uncover the newest Web-based threats targeting businesses and learn how to stop them before they can disrupt your business. This white paper discusses how cyber-criminals use converged threats (email and web combined attacks) to manipulate users and gain access to networks. In this whitepaper youll also learn about the newest security tactics for combating these Web-based attacks. http://www.compliancehome.com/whitepapers/Basel-II/abstract11130.html Thu, 05 Mar 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11117.html When users login to their computers with local administrator privileges they greatly increase the risk of security breaches by viruses, malware and malicious users.By removing administrative privileges and implementing the security best practice of Least Privilege these threats can be avoided and network security increased.However, when managing a least privilege computing environment systems must not only be locked down, but also still allow end users to perform all necessary tasks for their jobs. This paper presents several least privilege implementation options and discusses the benefits and issues associated with managing each solution. http://www.compliancehome.com/whitepapers/Basel-II/abstract11117.html Fri, 27 Feb 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11113.html Discover and block online fraudsters and identity thieves by letting their own PCs snitch on them. Even with identity (password or credit card) theft, the device stays the same! Learn 4 key strategies for combating fraud with device identification; how to flag Web visitors at high risk to commit fraud, even the first time they visit (and every time they try to return); and the pros and cons of 2 common device ID methods, along with a new, smarter technique that transcends the limits of both. Block fraudsters, not legitimate customers. http://www.compliancehome.com/whitepapers/Basel-II/abstract11113.html Tue, 17 Feb 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11111.html Gaining the trust of online customers is vital for the success of any company that requires sensitive data to be provided over the Web. In e-commerce, consumers are concerned about identity theft and are therefore justifiably leery of providing untrusted sources with their personal information, especially their credit card numbers to pay for transactions. Other types of online businesses require different but equally sensitive information. People are reluctant to provide their social security numbers, passwords, health and other confidential personal information, or sometimes even just name, address, and phone number. Perhaps the information will be intercepted in transit, they fear, or perhaps the destination itself is manned by imposters with ill intent. http://www.compliancehome.com/whitepapers/Basel-II/abstract11111.html Mon, 16 Feb 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11110.html The English philosopher, Francis Bacon, may have stated that knowledge is power but of course he never suffered the embarrassment of leaving a memory stick on a train. Barely a month passes without an organisation, frequently in the public sector, suffering damaging publicity as a result of unauthorised disclosure of sensitive data.In an era when the UK Government itself acknowledges that total security of data is impossible, and the Information Commissioner has described data as a potential toxic liability to an organisation, this White Paper explores the risks associated with the potential loss of confidential company data, customer or employee information, provides an overview of the relevant legislation in this area and reviews the best practice and guidance available to assist organisations in handling such data. http://www.compliancehome.com/whitepapers/Basel-II/abstract11110.html Thu, 12 Feb 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11108.html What data security threats will be most prevalent? Let me first start with some general predictions. Annually I have listed what I believe are top threats for several years now. This year the list is different. This is due to the environment in the US from an economical, legislative, and political perspective. The different perspectives are so volatile that the environment alone will spawn some new threats we have not dealt with. The type and volume of information that is now available on the Internet creates additional threats. The following list is my top 9 threats for 2009. The volume of attacks from international sources has and will continue to increase especially towards government and military networks. The fog is beginning to lift and as it does we will see the vast majority of these attacks coming from China and being tied to government sponsorship. Data security breaches tied to theft will significantly increase. It will not surprise anyone that mobile devices are stolen http://www.compliancehome.com/whitepapers/Basel-II/abstract11108.html Wed, 11 Feb 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11107.html IT Risk - encompassing Security, Availability, Performance, and Compliance elements - has become a critical issue for executives and boards of directors. In this second volume of the IT Risk Management Report, Symantec extends its analysis of IT professionals' insights into the nature of IT Risk and the most effective ways to manage it, with added focus on Availability and Performance Risk.. The Report addresses persistent myths about IT Risk, concluding that: IT professionals are adopting a more balanced, less Security-centric view of IT Risk - more of them now see Risk as critical or serious than any other element Compliance Risk is more than Security Risk formalized by law: data breaches, outages and disasters may cause irrecoverable losses of customer loyalty, revenue, and company value Reactive or annual project-oriented IT Risk Management is better than nothing. But IT professionals expectations of monthly incidents in a constantly-changing global and regional business and http://www.compliancehome.com/whitepapers/Basel-II/abstract11107.html Tue, 10 Feb 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11106.html Many threats are masquerading as legitimate application-layer traffic and getting past traditional firewall-based security appliances that focus on network layer access. Attacks are becoming more dynamic, which necessitates deeper packet inspection and preventative strategies across all network-layers. Combining expertise in security software, security appliances, and multi-core processors, three industry leaders are collaborating to develop a platform that applies leading-edge technologies to meet todays and tomorrows security challenges.new vulnerabilities. This means security solutions must quickly bring new patches and policies online to safeguard the network. http://www.compliancehome.com/whitepapers/Basel-II/abstract11106.html Mon, 02 Feb 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11102.html The regulatory environment means that monitoring what information leaves your organization is as vital as protecting it from external attacks. Email is one of the most likely routes by which data may leak, maliciously or more often accidentally. A successful Data leak Prevention system will address the issue of email by policy, in a way that integrates with the systems your business has in place to address governance, risk and compliance rather than through a series of standalone tools. http://www.compliancehome.com/whitepapers/Basel-II/abstract11102.html Fri, 30 Jan 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11101.html If you experience data or system loss, how quickly can you recover and get back to business? Not all your business data and systems are created equalsome mission-critical systems, such as mail or transaction servers, severely impact operations for every minute of downtime. Your data protection solution should allow you to deploy flexible strategies for recovering data with different business impacts. Today there are a variety of options that can help you rapidly recover from a data or system loss, and save you from spending days or weeksand potentially losing thousands of dollarstrying to restore business operations. This white paper reviews options for a multifaceted recovery strategy, ensuring that your key systems are protected with maximum efficiency at minimal cost. http://www.compliancehome.com/whitepapers/Basel-II/abstract11101.html Thu, 22 Jan 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11095.html For businesses today, managing IT security risk and meeting compliance requirements is paramount. The past decade has seen an unprecedented wave of security breaches that have compromised the integrity of company-owned information resulting in substantial financial and operational loss while devastating the confidence of customers, business partners and stakeholders. This tide of events has led to the establishment of technical standards, IT governance frameworks and laws designed to improve and enforce security creating further pressure for organizations to define, control and govern their IT infrastructure more effectively. This paper discusses the challenges faced by organizations of all sizesacross all industries and presents a security as a service (SaaS) approach to simplify and automate the convergence of security and compliance to: * Define policies to establish a secure IT infrastructure in accordance with good governance and best-practice frameworks. * Automate ongoing http://www.compliancehome.com/whitepapers/Basel-II/abstract11095.html Thu, 15 Jan 2009 00:00:00 CST http://www.compliancehome.com/whitepapers/Basel-II/abstract11091.html Enterprises making use of various IT systems (servers, devices, applications etc.) face numerous challenges due to the proliferation of administrative passwords (also called as privileged passwords). This white paper discusses the problems associated with administrative password proliferation with special reference to the issues related to shared administrative passwords and service accounts. The ways to tackle the challenge, the importance of effective password management, the need for enterprise password management applications to prevent unauthorized access to passwords and the vital requirements that one should consider before zeroing-in on a password management solution, have been dealt with. http://www.compliancehome.com/whitepapers/Basel-II/abstract11091.html