White Papers: security
10 Best Practices: Controlling Smartphone Access to Corporate Networks
By SonicWALL | 11/2/2011
A universal, platform-agnostic approach to security best practices, which treats all
smartphones as uncontrolled endpoints.
Download this now
10 Essential Steps to Email Security
By Clearswift | 3/11/2011
Modern business is reliant on email. All organisations using email need to answer the following questions:
How do we control spam volumes without the risk of trapping a business email?
How do we prevent infections from email-borne viruses?
How do we stop leakage of confidential information?
Can we detect and stop exploitation from phishing attacks?
How do we control brand damage from occurring due to employee misuse?
How do we prevent inappropriate content from being circulated?
Download this now
10 Essential Steps to Web Security
By Clearswift | 3/11/2011
This short guide outlines 10 simple steps to best practice in web security. Follow them all to step up your organisation’s information security and stay ahead of your competitors.
But remember that the target never stands still. Focus on the principles behind the steps – policy, vigilance, simplification, automation and transparency – to keep your information security bang up to date.
Download this now
2012 Data Breach Investigations Report
By HP | 5/4/2012
A study conducted by Verizon RISK Team with cooperation from the Australian Federal Police, Dutch National High Tech Crime Unit, Irish Reporting & Information Security Service, Police Central e-Crime Unit and United States Secret Service. This year our DBIR includes more incidents, derived from more contributors, and represents a broader and more diverse geographical scope. The number of compromised records across these incidents skyrocketed back up to 174 million after reaching an all-time low (or high, depending on your point of view) in last year’s report of four million. In fact, 2011 boasts the second-highest data loss total since we started keeping track in 2004. Read this report.
Download this now
2013 Global Information Security Survey: Initial findings
By CSO | 7/11/2012
The results of PwC’s annual Global Information Security Survey indicate that companies are
confident in their efforts to secure systems, information, and privacy. Strategies and
personnel are in place, they say, and processes and technology are humming along. The
number of incidents reported seems manageable. Read more.
Download this now
3-2-1 Data Center Network Infrastructure
By Juniper Networks | 25/6/2011
Simplifying the Data Center Network to Reduce Complexity and
Improve Performance
Download this now
5 Steps to Advanced Malware Protection
By Sourcefire | 19/2/2013
Security professionals now face much more sophisticated adversaries and tactics. This new class of attackers is no longer interested in quick smash and grab operations, rather they prefer taking a slow and methodical approach to penetrate devices within an organisation’s network. Once on the inside, the attackers focus on maintaining a persistent foothold and exfiltrating critical customer data and intellectual property. Read more about the today’s security reality.
Download this now
A Brave New Security World
By Trend Micro | 3/8/2011
In the near future, it is anticipated that all aspects of information technology will be movable, dynamic, and interactive – the access, the data, the workload, and all computing. End users’ mobile devices will access and store hundreds of gigabytes of data. Virtual servers will mobilise computing power between network segments, data centers, and even outside of the corporate environment and into the public cloud, where computing power is offered as a utility.
Download this now
Addressing Data Security Challenges in the Cloud
By Trend Micro | 3/8/2011
Addressing Data Security Challenges in the Cloud Enterprises increasingly recognise cloud computing’s compelling economic and operational benefits. Virtualising and pooling IT resources in the cloud enables organisations to realise significant cost savings and accelerates deployment of new applications. However, those valuable business benefits cannot be unlocked without addressing new data security challenges posed by cloud computing.
Download this now
Addressing PCI DSS Requirements with Trend Micro Enterprise Security
By Trend Micro | 14/7/2011
Targeted threats, distributed environments, and evolving technology make it especially challenging to achieve and maintain compliance with the Payment Card Industry Data Security Standard (PCI DSS). Yet compliance alone is not enough to minimize the true risk to your enterprise. Trend Micro goes beyond addressing fundamental PCI requirements and offers practical solutions to truly safeguard your business infrastructure against the compromise of cardholder data.
Download this now
CSO Corporate Partners
Get exclusive access to CSO, invitation only events, reports & analysis. Most Read
- 1
Bank trojan targets users of Bitcoin exchange Mt Gox
- 2
Australian Information Security Association issues blunt warning as National Cyber Security Awareness Week begins
- 3
ACMA database keeps finger on Australia’s malware pulse
- 4
Review: Mobile Device Management
- 5
The week in security: Aussie banks targeted as mobiles drive privacy fears
CSO Directory
Media Releases
Latest Jobs
- FTFlash / ActionScript Developer - ContractNSW
- FTSenior Python DeveloperNSW
- FTTest Analyst (MS Environment) .netNSW
- FTTest EngineerVIC
- FTTest Analyst (MS Environment) .netNSW
- FTR&D EngineerSA
- FTSenior Python Web Applications DeveloperNSW
- FTQuality ManagerSA
- FTOS Web Applications DeveloperNSW
- FT.NET - Sitecore Developer - Melbourne - PermNSW
- FTLead Software EngineerSA
- FTJob Title: Mac Systems/ Enterprise Systems EngineerNZ
- FTSenior Python DeveloperNSW
Solution Centres
Security Awareness Tip
Incident handling is a vast topic, but here are a few tips for you to consider in your incident response. I hope you never have to use them, but the odds are at some point you will and I hope being ready saves you pain (or your job!).
- Have an incident response plan.
- Pre-define your incident response team
- Define your approach: watch and learn or contain and recover.
- Pre-distribute call cards.
- Forensic and incident response data capture.
- Get your users on-side.
- Know how to report crimes and engage law enforcement.
- Practice makes perfect.
Security ABC Guides
Warning: Tips for secure mobile holiday shopping
I’m dating myself, but I remember when holiday shopping involved pouring through ads in the Sunday paper, placing actual phone calls from tethered land lines to research product stock and availability, and actually driving places to pick things up. Now, holiday shoppers can do all of that from a smartphone or tablet in a few seconds, but there are some security pitfalls to be aware of.
