Compliance

A jumble of acronyms that stand for an overwhelming number of federal mandates have marched compliance right to the front of most leading security professionals' minds. With SOX, GLBA, HIPAA, FISMA keeping CSOs up at night, SC Magazine offers its Compliance sector, your guide to meeting federal requirements.

Latest Compliance News

EMC buys Archer Technologies for GRC tools

Dan Kaplan January 04, 2010

EMC on Monday acquired arguably the most successful pure-play GRC provider, Archer Technologies.
 

Breached restaurateurs suing point-of-sale provider

Angela Moscaritolo December 02, 2009

The restaurants, located in Louisiana and Mississippi, are seeking millions of dollars in damages from Georgia-based point-of-sale vendor Radiant Systems and its distributor Computer World.
 

FTC allows eight more months for Red Flags compliance

Dan Kaplan November 02, 2009

Enforcement of the Red Flags Rules has been put off again -- this time until next summer, at the request of Congress.
 

New ID theft rules may not pertain to small businesses

Angela Moscaritolo October 22, 2009

A new bill, passed unanimously by the U.S. House of Representatives this week, would exclude health care, accounting and legal firms with 20 or fewer employees from complying with the Red Flags Rules.
 

Visa creates guidance for merchants wanting to encrypt

Dan Kaplan October 05, 2009

Visa has taken a leading role in establishing best practices for end-to-end encryption implementation.
 

Compliance Opinions

The death of security assessments?

Steve Dauber, vice president of marketing, RedSeal Systems January 08, 2010

After breaches such as at Heartland Payment Systems, the time may have come for organizations to stop relying on security assessments in favor of potentially more effective risk management tactics.
 

Recognizing the payment industry achievements of 2009 and looking ahead

Lib de Veyra, chairman, PCI Security Standards Council December 02, 2009

The chairman of the PCI Security Standards Council shares his thoughts on the payment industry's 2009 successes and looks forward to what is on the horizon to ensure the protection of credit card information.
 

Compliance 2010: Turning regulatory lemons into compliance lemonade

John Capobianco, president and CEO, Lumigent Technologies November 24, 2009

Looking into my crystal ball for 2010, it looks like more companies will be making the most of a difficult regulatory situation.
 

Compliance Vendors

Aveksa

The Aveksa Access Governance Platform is the industry’s first comprehensive solution for access governance, risk and compliance management. It is comprised of the Aveksa Compliance Manager, which automates the monitoring, reporting, certification and remediation of user entitlements; the Aveksa Role Manager, which enables role discovery, modeling and maintenance; and the ...

NitroSecurity

NitroSecurity supplies information security products that protect business information and infrastructure with solutions that reduce business risk exposure and increase network and information availability by monitoring, protecting and alerting organizations about suspicious or harmful network activities.

Shavlik Technologies LLC

Over 10,000+ organizations worldwide trust Shavlik Technologies to simplify their complex enterprise network security. Designed to reduce risk and improve the use of IT resources, Shavlik products automate: • Patch and Configuration Management • Application Control • Audit Reporting • Compliance Management

Tenable Network Security

Tenable Network Security® is a leader in Unified Security Monitoring and creator of the award winning Nessus® vulnerability scanner. Tenable's products have been designed to monitor systems and networks against a number of the established compliance standards. It is important to note that a secure infrastructure is achieved through a ...

Somansa

Somansa Mail-i is a total electronic communication management solution designed to meet e-Discovery and regulatory compliance while protecting valuable company data from leakage. Somansa Mail-i monitors, blocks, archives, and retrieves all electronic communication including, email, web-based email, instant messenger, FTP content including attached files.
Popular Topics
Analyst Reports & Industry Surveys Breaches & Exposures Browser Flaws Browsers And Security Cybersecurity Cyberwarfare Data Breaches Database Security Email Security Government Hackers Hacking Iphone Lawbreakers & Cybercrime Malware Mobile Endpoint Security Nation State Network Security Non-Microsoft Patches Patch Management Patch Tuesday SC Awards 2010 Vulnerabilities & Flaws Vulnerability Management Website Compromises