CSOonline

Slow EDR Rollout Requires a NG-IDS Compensating Control

When Anton Chuvakin, then a Gartner Analyst, first coined the term endpoint detection and response (EDR) in 2013, most enterprises raced to replace antivirus (AV) with EDR. And that makes sense, as ...
Healthcare IT News

Healthcare needs security architectures that provide control resiliency

Cyber resilience is a concept that most organizations are familiar with. It's defined as the ability to withstand and recover from adverse events that have the potential to impact an organization’s ...
Computerworld

Sarbanes-Oxley: Technical enforcement of IT controls

Nov. 15 looms large for corporate executives who will soon have to certify compliance with Section 404 of the Sarbanes-Oxley Act. Their assertions on the effectiveness of internal controls over ...
TechRepublic

Compensating Security Controls for Windows Server 2003 Security

It is common knowledge by now that Microsoft will end-of-life Windows Server 2003 as of July 14, 2015 and no longer provide software maintenance or support. Trend Micro’s Deep Security product can be ...
Forbes

The Critical Role Of Vulnerability Management In Compliance

Many organizations prioritize compliance, assuming it ensures security—but does it, actually? Vulnerability management should come first, as security is about proactively identifying and mitigating ...
CU Boulder News & Events

Internal Policies

The following is a list of internal control techniques departments must employ when handling cash. Continuously assess internal controls over cash and take appropriate action to remediate any concerns ...