Financial institutions should be prepared to deal with security incidents involving physical facilities, network infrastructures, systems, applications, and most importantly, data, says Inno Eroraha, president of NetSecurity Corporation.

Organizations handling credit cards feel pressure building as the deadline for PCI Requirement 6.6 compliance, June 30, 2008, approaches.

In what is considered a victory for online library users, the FBI withdrew a national security letter (NSL) that had been issued to the Internet Archive, a nonprofit internet library.

User access is the number one IT security concern among healthcare workers, according to a study conducted by Courion.

The PCI Security Standards Council has clarified two key provisions of the Payment Card Industry Data Security Standard (PCI DSS).

Before embarking on a role management project, take time to consider your business objectives and project scope, says Jackie Gilbert, founder and VP of marketing, SailPoint.

E-discovery investigations can look into the alleged wrong-doings of a terminated employee and/or provide electronic records for use in corporate litigation, a lead forensics investigator told RSA Conference attendees on Wednesday.

ESG's recent security management survey provides compelling evidence that success strategies require the use of multiple best practice controls and processes in addition to state-of-the-art tools.

A student loan company has settled with the Federal Trade Commission over charges it did not offer reliable security for its customers' personal information.

Federal agencies are not doing enough to protect citizens from identity theft, according to a report by the U.S. Government Accountability Office (GAO), the investigative arm of Congress.