The most recent content from our members.
Compliance policies similar to NCM would be great. Something that supports STIGs, PCI, etc. etc.
Here we are in the third week of NCSAM and its time for some Security education!! The whole logic of educating someone is to dispel the myths. Talking to a lot of customers, we discovered that there are some invariably common myths and confusions around the SOX regulations, despite the varied spectrum of industries they…
Like traditional kung fu, in Security Kung Fu, there are two schools of thought. On one side, there are those guided by the industry’s best practices for IT security. On the other side, there are those who use regulatory frameworks like PCI DSS, HIPAA, SOX, and more as the guiding principles for their IT security strategy.…
When it comes to the technical aspects of PCI DSS, HIPAA, SOX, and other regulatory frameworks, the goals are often the same: to protect the privacy and security of sensitive data. But the motivators for businesses to comply with these regulatory schemes varies greatly. Penalties for Noncompliance Regulatory Compliance…
Compliance, as it applies to IT departments, involves following rules and regulations that are meant to protect sensitive data of all types. It can govern everything from IT decision-making and purchasing, to configurations, and the policies and procedures a company must create and enforce to uphold this important task.…
Hi I need to compile a SOX compliance report for Cisco ASA firewalls. Does anybody have a list of technical controls to be implemented to meet the requirement? I am happy to do the regex, but not sure which commands to be implemented to meet SOX compliance. Kind Regards, tyronkemp
Working closely with IT security admins, I sense that almost everyone wants to ensure confidentiality, integrity and security. But why? More and more organizations are realizing that they are vulnerable to disruption in security operations and confidential information breaches. Of course, not to miss out on the…
Understanding Compliance If data in your network relates to employee or customer medical records, or to your company’s finances—either in terms of revenue or reporting—then most likely you must comply with federal law (HIPAA, Sarbanes-Oxley). Similarly, for all federal agencies and organizations, the National Standards and…
It looks like you're new here. Sign in or register to get started.