Get up-to-the-minute news and opinions, plus access to a wide assortment of IT security resources that will keep you current and informed.

Keep me logged in Forgot your password?

Please wait...

Please wait...

 Compliance

Global Payments working to again validate its PCI compliance

May 02, 2012

For the first time, breached processor Global Payments disclosed on Tuesday that a number of card brands have removed the company from their approved list of service providers.
 

Can't we just ignore PCI DSS?

Mark Kedgley, chief technical officer, New Net Technologies May 01, 2012

Adopting PCI DSS is a sensible thing to do from a security perspective, says New Net Technologies' Mark Kedgley.
 

A room of her own: Philips Electronics North America and Wisegate

April 05, 2012

A privacy officer at a global company found a way to collaborate efficiently at a top level, while ensuring the protection of company assets, reports Greg Masters.
 

Will Bill C-11 make backups illegal in Canada?

Steven Rodin, CEO of Storagepipe Solutions April 02, 2012

Canada's Bill C-11 leaves us with a few concerns and unanswered questions when it comes to rules and restrictions on the process of data backup.
 

Manage your risk, not somebody else's

Ben Tomhave, principal consultant, LockPath April 02, 2012

The primary driver for security should be to cut risk rather than attempting to churn through an unending string of audit and compliance exercises.
 

Sponsored Video: Greg Fitzgerald of Fortinet on data management

Eric Green, program director, SC Magazine March 05, 2012

Fortinet's Greg Fitzgerald discusses major vulnerabilities, data management, and privacy and compliance issues in the industry at this year's RSA Conference 2012 in San Francisco.
 

RSA Conference 2012: Risk management in the enterprise faces challenges

March 02, 2012

A panel discussion on risk management hovered around issues of balancing the scientific element of data gathering with the art of interpreting the information.
 

Defining a DLP strategy

Jeffrey Brown, global information security program manager, GE Capital • March 01, 2012

DLP solutions remain fairly immature, but the need to protect and monitor sensitive information is greater than ever.
 

Why big business is dealing with big security concerns

Jeremiah Grossman, chief technology officer, WhiteHat Security • February 23, 2012

Businesses are forced to implement specific security mandates even if they don't support their actual security goals.
 

An educated decision: Network smarts at WVU

February 03, 2012

West Virginia University was looking to protect student and staff data. It found a software solution to assist in the process, reports Greg Masters.
 

Campus relief: Kilgore College and Viewfinity

January 20, 2012

A community college in Texas found a tool that enabled it to fend off viruses while coming into compliance, reports Greg Masters.
 

Getting serious about health care security

Peter Spier, manager of professional services, Fortrex Technologies December 06, 2011

Health care providers and their patients both have parts to play in the high-stakes game of protecting sensitive medical information, especially as technology becomes easier to implement and enforcement of regulations intensifies.
 

Security spending to increase in 2012, survey shows

November 22, 2011

While the nation's economy remains in the tank, the information security market appears to be avoiding a major slowdown.
 

Best Enterprise Security Solution & Best Regulatory Compliance

November 08, 2011

Throughout the day, SC Magazine will be announcing the finalists from each of its 32 award categories. Now, let's turn to our Excellence section.
 

Check Point adds Dyanasec for governance, risk, compliance

October 31, 2011

Check Point Software Technologies bolstered its portfolio Monday with the acquisition of privately held Dynasec, a 7-year-old, Israel-based provider of governance, risk management and compliance solutions.
 

Overcoming America's lost decade of IT security

Anup Ghosh, founder and chief scientist, Invincea October 10, 2011

An overreliance on compliance and limited information sharing between the federal government and the private sector have resulted in attackers holding a firm edge over security professionals. How do we take back a decade of losing?
 

FISMA compliance to require monthly reports

September 19, 2011

Beginning in October, federal agencies will be required to report on their information security posture on a monthly basis, instead of annually.
 

Keys to the city: Richmond, Va. and PacketSentry

August 18, 2011

The city of Richmond, Va. found a solution to help prevent trojans from entering the gates, reports Greg Masters.
 

Something borrowed: Benefits of PCI

Stephen Lawton July 01, 2011

The prescriptive nature of the Payment Card Industry Data Security Standard, often referred to as PCI, can benefit even those companies not processing credit card transactions.
 

In search of a global network security standard

Shaul Efraim, vice president of marketing and business development, Tufin Technologies June 27, 2011

A government-adopted and enforced global benchmark for network security may lend value, and borrowing from the PCI DSS playbook could help in its creation.
 

Internet security an early focal point for new government

May 31, 2011

Internet security vaulted into the spotlight as an early focal point for Prime Minister Stephen Harper's new government, on both the domestic and international fronts
 

Thoma Bravo buys Tripwire after it drops IPO plans

May 11, 2011

Private equity investment firm Thoma Bravo has bought Tripwire, a year after the compliance maker had planned an IPO.
 

Diversity breeds system resilience

Ed Amoroso, SVP and CSO for AT&T Services May 02, 2011

IT managers should consider the benefits of non-interoperable platforms, says AT&T's Ed Amoroso.
 

Education Dept. proposes new privacy, data sharing rules

April 08, 2011

As part of a broad effort to better safeguard student privacy, the U.S. Department of Education hired its first ever chief privacy officer.
 

Scaled down, armored up: Small and midsized business protection

April 01, 2011

For many small and midsize businesses, neglecting IT security is a thing of the past, reports Angela Moscaritolo.
 

SC Magazine's CSO of the Year

March 01, 2011

SC Magazine has recognized Scott Sysol of CUNA Mutual Group as CSO of the Year for his work around data privacy, risk reduction, enterprise-wide IT controls and tapeless backup.
 

2011: A security manager's wish list

A. N. Ananth, CEO, Prism Microsystems January 18, 2011

This year, thanks to a renewed focus on the insider threat, the longings of the security professional may come to fruition.
 

Cybersecurity update fails with "don't ask, don't tell" vote

December 10, 2010

Senate Republicans on Thursday shot down an attempt to repeal the military's "don't ask, don't tell" policy that bars gays from serving openly, likely the death knell to a bill that also would have brought major changes to the way the federal government handles information security. A U.S. Senate procedural vote on Thursday to continue debating the National Defense Authorization Act of 2011 failed to garner the 60 votes necessarily to move forward. The bill, passed by the House of Representatives in May, contains provisions to update to the Federal Information Security Management Act (FISMA) and establish a cybersecurity office within the Executive Office of the President. — AM
 

Senate votes to exempt lawyers, doctors from Red Flags

December 02, 2010

Lawyers, doctors and accountants may avoid having to comply with the Federal Trade Commission's new identity theft rule.
 

Eight questions CIOs should ask on cloud security

Lucius Lobo, director of security consulting, Tech Mahindra November 12, 2010

As more organizations continue migrating to the cloud, what should information leaders at organizations be asking of their provider?
 
Popular Topics
4G-war Advanced Persistent Threat Adware AMTSO Anonymous Botnets Cyber Attacks Cyber Crime Data Breach Data Breaches Encryption Hackers Hacktivism Health Care IT Security Java Malware Mobile Devices Phishing Risk Management Social Security Numbers Stolen Information Survey Trojans Vulnerabilities & Flaws