Page 9 - White Papers in Standards, Regulations & Compliance

4 Unique Challenges of Social Media Compliance

Everywhere you look, corporate investments in social media are on the rise. However, increased investment in social also comes with increased compliance risk. Regulators recognize social media as a public communication channel subject to existing earnings disclosure, truth in advertising, and data privacy regulations....

Counter Financial Crimes Management

Fraud, money laundering and other financial crimes are a thorn in the side of every financial institution. These activities can cut into profits, damage public trust and expose banks to massive regulatory penalties if found to be out of compliance with governmental regulations. Many organizations simply accept...

2015 Insider Threat Report: Trends and Future Directions in Data Security

The increasing use of cloud services and Big Data projects is causing major security concerns. This version of the Insider Threat Report focuses on the increasing use of all forms of cloud technology, and provides information about the security and data protection issues that need to be addressed. Increased risk,...

Advanced Case Management Leadership Guide

The dynamics of the world economy and the demands on governments at all levels put increasing pressure on organizations to reduce costs while seeking new opportunities to grow and differentiate their products and services. The pervasiveness of the Internet and mobile devices is fostering multi-channel customer...

Disposing of Digital Debris: Information Governance Strategy and Practice in Action

No one intentionally creates digital debris. We document as we collaborate; we create files, backups, databases, and applications; and we store photos, music, digital training programs, logs, and reports. We create that content at that moment imbue it with value and purpose. However, as circumstances evolve,...

Advanced Threat Protection for Patient Health Information

Within health systems such as Navicent Health, the already serious risk of targeted threats is compounded. Besides laptops, notebook computers, and smartphones, the hospital's network hosts numerous biomedical devices that are not under the control of the in-house technology team, and do not run standard antivirus...

Tokenization Broker for PCI DSS Compliance

This case study focuses on a large Canadian airline that covers all destinations in North America. It discusses the preparations the airline took towards Payment Card Industry Data Security Standard (PCI DSS) assessment and compliance. It explains how the airline built a system using Intel Expressway Tokenization...

PCI DSS Tokenization Buyer's Guide

In this paper, Payment Card Industry Data Security Standard (PCI DSS) expert and QSA Walter Conway takes you on a deep dive tour of tokenization techniques and their merits. He also demystifies tokenization by discussing use cases, comparing it to encryption and providing various alternatives for implementing...

Using PCI DSS Criteria for PII Protection

Payment Card Industry Data Security Standard (PCI DSS) is a widely accepted standard that applies internationally to any organization that accepts, captures, stores, transmits or processes credit and debit card data. Many organizations, however, have mandates to protect Personally Identifiable Information (PII). In...

Scanning Databases for Credit Card Information

Today's enterprise consists of numerous applications and a large number of them handle credit card data. As a result of standard processing, it is often the case that credit card data gets stored within file systems and databases in clear text - which poses a huge security risk. It is vital that all occurrences of...

Business-Driven Identity and Access Management: A Buyer's Guide

Identity and Access Management projects are among the most visible IT initiatives that enterprises undertake, since they involve so much interaction with line of business users. Despite their high-profile nature, many organizations unfortunately continue to struggle with their IAM programs, which can add to...

Governing User Access: Why Provisioning-Centric Approaches Fall Short

Organizations of all sizes continue to face ever-stricter regulatory and security requirements to protect their IT assets from unauthorized use. In response, many enterprises have embarked upon Identity and Access Management (IAM) initiatives, only to be disappointed with the cost, speed and effectiveness of their...

Reaping the "Trust Dividend" - Federal Agencies Can Move Services Online Now with an Identity Button (Like Facebook) - and Save Billions

The move of paper-based transactional services online doesn't create just cost savings and efficiencies. E-Gov creates a "Trust Dividend," thanks to the use of trustable online identities - issued by private enterprise, and relied upon by government. Making this switch now will help your agency achieve the benefits of...

Realizing the Promise of Health Information Exchange

Health information exchange (HIE) - the electronic movement of health-related information among organizations according to nationally recognized standards - has the potential to transform nearly every aspect of healthcare delivery in this country. Recent policies have helped fund major growth in the world of...

Protect Personally Identifiable Information (PII) as if Your Business Depends on It

Virtually every business acquires, uses and stores personally identifiable information (PII) about its customers, employees and partners. These organizations are expected to manage this private data appropriately and take every precaution to protect it from loss, unauthorized access or theft. Misusing, losing or...