-
Essar’s WAN encryption strategy to secure data in motion: In focus
Indian conglomerate Essar puts WAN encryption in place using Cisco’s GET VPN to protect data flows between remote locations. A closer look. Case study
-
Exploit development tutorial - Part Deux
In our exploit development tutorial’s second part, we examine how you can write exploits in PERL. Then we see how to port exploits by scripting in Ruby. Tutorial
-
Vodafone India’s PCI DSS compliance journey: A dissection
With Vodafone India’s PCI DSS compliance journey in its third iteration, we share practical PCI DSS tips and ground realities from the telecom major. Feature
-
India Inc guns for SIEM tools as maturity, viability drive growth
SIEM tool adoption in India is rising, spurred by growth in maturity of both SIEMs and organizations. We take a broad status check of the Indian SIEM space. Feature
-
Arup Chatterjee
SearchSecurity.in CISO Power List 2012 Profile: Arup Chatterjee, CISO, WNS Global Services. Feature
-
Burgess Cooper
SearchSecurity.in CISO Power List 2012 Profile: Burgess Cooper, CISO, Vodafone India. Feature
-
Shobitha Hariharan
SearchSecurity.in CISO Power List 2012 Profile: Shobitha Hariharan, CISO, Shoppers Stop. Feature
-
Faraz Ahmed
SearchSecurity.in CISO Power List 2012 Profile: Faraz Ahmed, CISO, Reliance Life. Feature
-
Agnelo D'Souza
SearchSecurity.in CISO Power List 2012 Profile: Agnelo D‘Souza, CISO, Kotak Mahindra Bank. Feature
-
Sunil Varkey
SearchSeacurity.in CISO Power List 2012 Profile: Sunil Varkey, CISO, Idea Cellular. Feature
- See More: Essential Knowledge on Enterprise risk management strategies
-
PCI virtualization compliance still a challenge
No black and white when it comes to PCI compliance in virtualized environments, experts say. News | 09 May 2012
-
BYOD security policy, not MDM, at heart of smartphone security
Effective security policies, not a mobile device management platform, will solve corporate mobile device security issues, according to a security expert. News | 13 Apr 2012
-
Industry is doomed by automation, misguided IT security strategy, experts warn
Blunt experts at InfoSec World said enterprise IT security strategy often misses the mark, but some attendees suggested the experts are out of touch. News | 04 Apr 2012
-
Bank of India’s BS 25999 certification journey nears completion
This is the story of how Bank of India turned around its business continuity strategy from a state of chaos as it geared up for BS 25999 certification. Case Study | 29 Mar 2012
-
Verizon data breach report shows weak passwords at root of 2011 data breaches
Weak and default passwords are at the root of many data security breaches investigated by Verizon in 2011. News | 07 Mar 2012
-
NIST releases SP 800-153 WLAN security guidelines
The recently released NIST SP 800-153 addresses security of WLANS. Join us, as we take a closer look at the document’s recommendations. News | 07 Mar 2012
-
FBI Director Mueller: For U.S., cybersecurity threats will surpass terrorism
At RSA Conference 2012, FBI Director Robert Mueller said the bureau is ramping up to fight cybersecurity threats and boost information-sharing efforts. News | 01 Mar 2012
-
RSA Conference 2012 keynote prescribes intelligence-driven security
RSA’s Arthur Coviello urged security pros to break down silos and intelligence-driven security programs, or face a tough year. News | 28 Feb 2012
-
RSA 2012 talk to offer help understanding IPv6 security issues
Understanding IPv6 security issues can be a challenge, but the protocol's co-inventor says enterprises can no longer afford to ignore IPv6 security concerns. News | 22 Feb 2012
-
Mobile security, BYOD policy issues to trend at RSA 2012, analysts say
BYOD policy issues are a big concern for enterprises grappling to secure employee smartphones and tablets, say analysts previewing RSA 2012. News | 21 Feb 2012
- See More: News on Enterprise risk management strategies
-
Information security budgets: Five steps to obtain management buy-in
Getting management to approve security budgets is difficult. Here are guidelines to help you prepare and present information security budgets effectively. Tip
-
POS terminal security: Best practices for point of sale environments
Securing point of sale (POS) environments can be tricky. Shobitha Hariharan and Nitin Bhatnagar share comprehensive POS terminal security best practices. Tip
-
6 point SIEM solution evaluation checklist
With SIEM solutions gaining steam in India, Satish Jagu of Genpact shares concise tips based on the lessons from his SIEM implementation experiences. Tip
-
5 data loss prevention tool implementation mantras
Even as data loss prevention tools gain momentum, successful implementations call for a few prerequisites. Manish Dave, group CISO, Essar shares tips. Tip
-
HDFC Bank’s enterprise security framework up close
Indian BFSI major HDFC Bank’s enterprise security framework is based on its ‘4 pillars of information security’. Join us as we gain insights from HDFC Bank. Tip
-
UTM sizing tips for your network security needs
UTM appliances greatly ease the management of network security. But correct UTM sizing is of prime importance. Follow these UTM sizing tips to get it right. Tip
-
How to find a VPN firewall solution for your enterprise
Choosing a VPN firewall solution is no easy task as the market is saturated with options. Use these tips to learn how to find a VPN firewall solution for your enterprise. Tip
-
Information systems audits must evolve to become information audits
We have some way to go before information systems audits evolve to borderless information audits, covering the entire lifecycle of all types of information. Tip
-
10 Linux security tools for system administrators
Linux-based tools for security are a boon to system admins for monitoring network security. Here are 10 popular and useful Linux-based security tools. Tip
-
Business case for PCI compliance using a risk-driven approach
PCI compliance that exceeds the minimum requirement helps establish a robust, optimized security posture, which can be achieved via a risk-driven approach. Tip
- See More: Tips on Enterprise risk management strategies
-
How penetration testing helps ensure a secure data store
A third-party penetration test is the best way to determine whether an online data store can be compromised. Answer
-
How to choose a general security risk assessment
Looking to do a general security risk assessment, but aren't sure how to choose one? In this security management expert response, David Mortman explains how to assess risk and get the funding you need to mitigate it. Ask the Expert
-
Mahindra Special Services Group (MSSG)
Mahindra Special Services Group (MSSG) is a corporate security consultancy firm. Definition
-
Cyberoam
Cyberoam is a vendor for information security products and services. Definition
-
information security management system (ISMS)
An information security management system (ISMS) is a set of policies and procedures for systematically managing an organization's sensitive data. Definition
-
vulnerability and patch management
Vulnerability management is a pro-active approach to managing network security. Definition
-
11 security audit essentials
IT security audit tools automate the IT security audit process, making it more efficient and effective. Here are 11 must-have IT security audit tools. Photo Story
-
The CISO Power List, 2012
Our CISO Power List for 2012 brings you the who’s who in the Indian information security scene. Join us, as we pay tribute to India’s top 15 CISOs. Photo Story
-
Security researcher calls for greater focus on supply chain assurance
Hart Rossman, vice president and CTO for cyber programs at SAIC says more needs to be done to secure hardware and software moving in the global supply chain. Rossman explains the threat posed by poorly manufactured, bogus parts and software. Unfortun... Video
-
Cyber espionage prevention strategies for your business
Cyber espionage has become a common threat. Join cyber security expert Jeffrey Carr, as he discusses ways to protect your organization from cyber espionage. Podcast
-
GRC tools high on HDFC Bank’s infosec priorities for 2011
HDFC Bank lists governance, risk and compliance as its top information security priority for 2011. Investments in GRC tools on the charts for next year. Video
-
Forrester's advice for data governance maturity model success
Forrester Research Senior Analyst Andrew Jaquith gives advice for data governance maturity model success and why enterprises should do more than just follow a standardized set of guidelines to protect data. Video
-
PODCAST: McAfee's endpoint chief on mobile internet security
Candace Worley, Senior Vice President and General Manager for Endpoint Security at McAfee explains how new endpoints like tablets and mobile phones are changing the requirements for internet security. Podcast
-
Face-off: Information security awareness and when not to reveal information
Can the security industry learn from the Transportation Security Administration? It may seem like an odd pairing, but both struggle with the challenges of protecting those in their care while maintaining usability and personal privacy. Video
-
Risk management in information technology
Get advice on creating a strategy for mitigating information security risk from expert Nick Frost of the Information Security Forum. Video
-
The future of PCI DSS
Bob Russo, General Manager of the PCI Security Standards Council, discusses upcoming changes to the PCI DSS, including what new changes might be mandated, and when they might go into effect. Video
- See More: Multimedia on Enterprise risk management strategies
-
Information security budgets: Five steps to obtain management buy-in
Getting management to approve security budgets is difficult. Here are guidelines to help you prepare and present information security budgets effectively. Tip
-
POS terminal security: Best practices for point of sale environments
Securing point of sale (POS) environments can be tricky. Shobitha Hariharan and Nitin Bhatnagar share comprehensive POS terminal security best practices. Tip
-
PCI virtualization compliance still a challenge
No black and white when it comes to PCI compliance in virtualized environments, experts say. News
-
11 security audit essentials
IT security audit tools automate the IT security audit process, making it more efficient and effective. Here are 11 must-have IT security audit tools. Photo Story
-
Essar’s WAN encryption strategy to secure data in motion: In focus
Indian conglomerate Essar puts WAN encryption in place using Cisco’s GET VPN to protect data flows between remote locations. A closer look. Case study
-
6 point SIEM solution evaluation checklist
With SIEM solutions gaining steam in India, Satish Jagu of Genpact shares concise tips based on the lessons from his SIEM implementation experiences. Tip
-
5 data loss prevention tool implementation mantras
Even as data loss prevention tools gain momentum, successful implementations call for a few prerequisites. Manish Dave, group CISO, Essar shares tips. Tip
-
Exploit development tutorial - Part Deux
In our exploit development tutorial’s second part, we examine how you can write exploits in PERL. Then we see how to port exploits by scripting in Ruby. Tutorial
-
BYOD security policy, not MDM, at heart of smartphone security
Effective security policies, not a mobile device management platform, will solve corporate mobile device security issues, according to a security expert. News
-
HDFC Bank’s enterprise security framework up close
Indian BFSI major HDFC Bank’s enterprise security framework is based on its ‘4 pillars of information security’. Join us as we gain insights from HDFC Bank. Tip
- See More: All on Enterprise risk management strategies
About Enterprise risk management strategies
Minimize operational risk due to information security breaches with these resources. Reduce enterprise risk with security best practices, and learn how to conduct efficient information security audits. Discover enterprise risk management and mitigation strategies using information security management.