Compliance

What is FFIEC-CAT?

Jul 22, 2020 By Joshua Moellman In Ignyte

There has been a significant rise in the number and complexity of Cybersecurity threats over the last several years in the financial services industry. Institutions have been in need of a tool that can aid in identifying all the different risk types and how to develop a plan to be prepared for this continuously growing number of threats. Finally a tool has been developed for these intuitions, especially for Credit Unions.

Read Post

Ignyte

Read more about What is FFIEC-CAT?

Understanding the Benefits of the Capability Maturity Model Integration (CMMI)

Jul 20, 2020 By Tripwire Guest Authors In Tripwire

Many organizations have Information Security Programs (ISPs), but many executives and boards do not know how to measure progress within these programs. They are therefore hesitant to believe any investment in technology will mitigate perceived or even unknown risks. Some organizations use regulated compliance standards such as PCI DSS or AICPA attestations as measures of their ISP.

Read Post

Tripwire

Read more about Understanding the Benefits of the Capability Maturity Model Integration (CMMI)

Ditch the Checklist: Why Automation is the Key to Content Compliance

Jul 17, 2020 By Jeff Sizemore In Egnyte

Compliance frameworks provide guidelines for effective and secure operations for content management across a company’s various repositories. They’re written as a set of controls, each one which corresponds to different settings and policies that an organization must follow in order to ensure the safety of their data.

Read Post

Egnyte

Read more about Ditch the Checklist: Why Automation is the Key to Content Compliance

Collect Evidence & Artifacts from people with Request Links

Jul 9, 2020 By Ignyte In Ignyte

Controls management and assessments are critical for properly managing a complete information security program. Similarly, evidence collection, management, and approval is vital for proper control based security governance programs in any organization.

Read Post

Ignyte

Read more about Collect Evidence & Artifacts from people with Request Links

Netwrix Auditor for Active Directory - Overview

Jul 7, 2020 By Netwrix In Netwrix

Netwrix Auditor for Active Directory enables complete visibility of Active Directory and Group Policy by providing actionable data about user activity and allowing to compare system configurations at present versus any moment in the past.

View Video

Netwrix

Read more about Netwrix Auditor for Active Directory - Overview

Netwrix Auditor for Windows File Servers - Overview

Jul 6, 2020 By Netwrix In Netwrix

Netwrix Auditor for Windows File Servers maximizes visibility into what's going on across Windows file servers by classifying sensitive data and providing actionable audit data about all changes made to files, folders, shares and permissions; and reporting on both successful and failed access attempts. Today, it’s hard to imagine an enterprise that doesn’t rely on file servers to store its data — including valuable and sensitive data. This makes file servers a key target for all sorts of attackers, including both anonymous hackers and disgruntled employees.

View Video

Netwrix

Read more about Netwrix Auditor for Windows File Servers - Overview

Understanding the Purpose of Security Controls and the Need for Compliance

Jul 1, 2020 By Chris Orr In Tripwire

What are the brakes on a car designed to do? I have asked this question many times when speaking to customers or organizations who were dipping their toes into the audit space. Invariably, their answer was, “To stop the car.” At this point, I would then ask, “Then how do you get where you want to go?”

Read Post

Tripwire

Read more about Understanding the Purpose of Security Controls and the Need for Compliance

ISO 27001 Requirements Checklist: Steps and Tips for Implementation

Jul 1, 2020 By Tricia Scherer In RiskOptics

ISO 27001 enables organizations of any size to manage the security of assets such as employee information, financial information, intellectual property, employee details, and third-party information. ISO 27001 is primarily known for providing requirements for an information security management system (ISMS) and is part of a much larger set of information security standards. An ISMS is a standards-based approach to managing sensitive information to make sure it stays secure.

Read Post

RiskOptics

Read more about ISO 27001 Requirements Checklist: Steps and Tips for Implementation

Compliance Demystified

Jul 1, 2020 By Netwrix

Compliance regulations are designed to provide a unified set of rules or guidelines to help IT organizations implement policies and measures that deliver the required levels of integrity, security, availability and accountability of data and operations. This white paper provides an overview of various types of IT compliance, explores their basic concepts and commonalities, and offers guidelines for implementation.

Get EBook

Netwrix

Read more about Compliance Demystified

GDPR Compliance with Netwrix solutions

Jun 16, 2020 By Netwrix In Netwrix

Netwrix helps organizations prepare for GDPR compliance audits and ensure the security of the personal data of EU citizens. Learn more at netwrix.com/gdpr How can you spare yourself tons of stress in audit preparation, avoid being the next GDPR breach headline and keep your customers in the EU? Netwrix can help you secure the data you store about EU citizens, uphold their rights and prove your compliance to auditors.

View Video