Page 12 - White Papers in Standards, Regulations & Compliance

Meeting the Challenges of Governance, Risk, & Compliance

Current economic conditions heighten the need for financial services firms to accurately gauge required levels of regulatory compliance and economic capital to support business strategy and risk appetite. More regulations are on the way, demanding transparency, accurate information about company operations, robust and...

Sponsored by Lumension Security

Demystifying IT Risk to Achieve Greater Security and Compliance

Managing IT risk is part of running any financial institution these days. Understanding IT risk can help you increase network security, reduce management costs and achieve greater compliance. Corporate leaders who fail to identify, assess and mitigate IT risk are setting themselves up for serious security breaches and...

Sponsored by Lumension Security

Achieving Compliance with Massachusetts Data Protection Act

As of March 1, 2010, all organizations with operations and/or customers in the state of Massachusetts will be required to follow comprehensive information security requirements regarding both paper and electronic records containing personal information. These requirements include enforcing password security,...

25 Best Practices for Managing User Access to Desktops, Networks, and Applications to Ensure Regulatory Compliance

Financial institutions must address a growing number of regulations designed to ensure the security, integrity and confidentiality of customer and corporate data . Regulations are often mandatory and compliance must be verifiable. In many cases, organizations and their company officers found to be non-compliant may be...

Regulatory Compliance: Global Privacy, Disclosure, & Encryption Issues

Information technology (IT) security is indispensable to an organization's ability to conduct business and achieve its objectives. With regulatory compliance and industry data security standards dominating many of these business objectives, confidential data protection comes to the forefront of IT security....

Automated, Continuous PCI Compliance

This white paper details how Tripwire IT security and compliance automation solutions help keep the IT infrastructure in a continuously PCI-compliant - and secure-state. Tripwire Enterprise does this with a compliance policy for PCI, file integrity monitoring, real-time analysis of change and easy access to...

Regulatory Scrutiny: Protecting Sensitive Data

So what exactly is regulated data? It depends on the industry. Many regulations focus on personally identifiable information on individuals, such as Social Security numbers, addresses, or credit card numbers. It also can be computer access protection data (such as passwords) or protected patient health information...

Sponsored by Lumension Security

Reducing the Cost of Achieving PCI Compliance

Of all the compliance regulations, mandates and guidelines, you're most likely to encounter PCI. Any vendor, organization, entity, group, business, etc., that accepts and processes credit cards falls under the PCI requirements standard and is subject to its audit cycles. PCI DSS covers a range of physical and...

Achieving Efficient Governance, Risk & Compliance Through Process & Automation

The procedures, tasks, and behaviors that bear upon compliance can be overwhelming. Yet organizations that can master these activities, operate more efficiently, compete more effectively, and build their brands. Learn how Governance, Risk, and Compliance technologies can help. This white paper presents a low risk,...

Sponsored by Tenable Network Security, Inc.

Real-Time Compliance Monitoring

Leveraging Asset-Based Configuration and Vulnerability Analysis with Real-Time Event Management It is crucial to monitor for compliance in a manner as close to real time as possible to ensure the organization does not drift out of compliance over time. The greater the gap between monitoring cycles, the more likely...

Satisfying GLBA Requirements: Log Management

The Gramm-Leach-Bliley Act (GLBA), also known as The Financial Modernization Act of 1999, was enacted to ensure protection over customer's records and information. Authorization to implement this act was given to The Federal Trade Commission (FTC) with an effective date for compliance set on May 23, 2003. GLBA...

Sponsored by Lumension Security

Five Ways to Reduce Your IT Audit Tax

Most organizations spend 30-50% more on compliance than they should 1. No matter the industry, with regulations such as GLBA, PCI, FISMA, SOX, and other regulations and mandates, it seems nobody is immune to scrutiny - but why spend so much more than what is necessary? In order to reduce the burden of an IT audit,...

Meet PCI DSS Compliance Requirements for Test Data with Data Masking

Whether you are working towards your first or next PCI DSS audit, you know that compliance isn't scored as a one or a zero - it's measured on a sliding scale. You've successfully argued for adoption of various security technologies to protect cardholder data, including encryption and firewalls, and have come to...

Six Ways to Reduce PCI DSS Audit Scope by Tokenizing Cardholder Data

Merchant banks, card processors and payment gateways are all seeking ways to simplify and reduce the scope of the Payment Card Industry's Data Security Standard (PCI DSS) compliance by shrinking the footprint where cardholder data is located throughout their organization. By reducing the scope, these organizations can...

Resiliency, Not Just Recovery

Today, customers demand uninterrupted access to ATMs and online banking. Employees and partners need immediate availability of core business applications, putting tremendous pressure on institutions to ensure the availability of data and business processes - 24x7, 365 days a year. Business continuity is more than...