Hi [[ session.user.profile.firstName ]]
Sort by:
    • CA Briefings Part 6: Step 4: Governance and Tying it all Together CA Briefings Part 6: Step 4: Governance and Tying it all Together CA Technologies and (ISC)2 Upcoming: Feb 9 2017 6:00 pm UTC 75 mins
    • Controlling the access of all users, especially privileged ones, is essential not only for risk reduction but also for easier compliance. But, controlling access isn't enough. Organizations need to govern all user access to ensure that no user has more access than they need, and that segregation of duties policies are enforced. On February 9, 2017, CA Technologies and (ISC)2 will highlight the steps for strengthening the enterprise and increasing customer engagement as well as key aspects of effective identity governance, including for contractors and partners who might have access to your systems. Included in the discussion will be key capabilities and processes to help create leading-edge identity governance deployments that can improve the security of your critical data and simplify compliance audits.

      Read more >
    • A Survival Guide to Enterprise Security Policy Compliance A Survival Guide to Enterprise Security Policy Compliance Ofer Or, VP Products, Tufin Recorded: Jun 29 2016 3:00 pm UTC 32 mins
    • Every enterprise needs a survival guide for compliance. The risk associated with cyber security has a big spotlight on it today—and it’s become a Board-level topic for many enterprises. Compliance with cyber security requirements has transitioned from a "check the box" mentality to a stringent program whereby regulatory requirements and standards as well as enterprise policies and best practices are diligently met, continuously enforced and proven through regular audits. Yet, preparing for audits and maintaining audit readiness takes valuable time and resources– and has become quite a burden!
      Join this session to learn about the 6 steps for surviving in today’s compliance jungle.

      Read more >
    • Levelling the intermittency of renewables with coal - costs and risks Levelling the intermittency of renewables with coal - costs and risks Dr Lesley Sloss Recorded: Jun 8 2016 11:00 am UTC 42 mins
    • Countries are setting ever higher goals for producing power from clean, renewable energies and some are actively turning their backs on fossil fuels. However, many of these regions are discovering the real challenges of trying to produce baseload power for public consumption from renewable sources which are, at best, intermittent, and, at worse, unpredictable and unreliable. Until large scale energy storage is available and affordable, baseload power from coal, gas, and/or nuclear will remain necessary in many regions for several more years. Obviously this baseload power is required when renewable output is low (when the sun doesn't shine and the wind doesn't blow). However, it is also still required to make up the balance of power in a diverse energy mix. Under the new energy policy regimes in many regions, renewable sources have priority into the grid and sit in the guaranteed dispatch mix in the base region which coal used to occupy. Coal has now been nudged into the dispatchable area of the mix, being asked to ramp up or down or even to idle or run beyond normal capacity, sometimes at short notice, to produce the balance of power required to maintain grid output. And whilst coal plants can run relatively flexibly, this does not come without cost. Most older coal-fired units were designed to run at steady output. Asking these plants to cycle and ramp puts stresses on the plant which can result in added cost, less efficient production, increased wear and tear and, in some cases, damage causing enforced outages for repair and/or upgrade. This webinar, looks at the stresses placed on coal-fired plants as they are asked to help levelise and counterbalance the intermittency of renewable sources, concentrating on the risks and costs. Case studies and examples of issues being encountered in the USA, the UK and Germany are included.

      Read more >
    • Survival Guide for SharePoint: Part 4 – Automating SharePoint Services Survival Guide for SharePoint: Part 4 – Automating SharePoint Services Edmund White Recorded: Sep 9 2015 6:00 pm UTC 59 mins
    • Our SURVIVAL GUIDE webinar series has taught you how to FIX all of your problems and to make sure that your changes and policies are ENFORCED.

      Now it’s time to make your life easier AUTOMATING the repetitive and time-consuming processes involved with managing your SharePoint deployments.

      Sounds great, right? But what does that mean? How would you like to:
      * Get end users the resources they need quickly by providing clear direction about what services are available and how to use them?
      * Offer an out-of-the-box service catalog for your users to choose from?
      * Fulfill requests for provisioning, administration, security, content and lifecycle management changes without having to burden IT?
      * Automatically tag, classify, and apply retention policies from the creation of documents to full site collections?

      Register now to join AvePoint Field Product Manager Edmund White, as he shows you how our SURVIVE GUIDE can automate the steps involved in configuring, managing, and enforcing SharePoint governance and compliance policies.

      Don’t JUST SURVIVE, be a force for change and get back to focusing on more strategic, higher-value operations.

      Read more >
    • Adapting Your Risk Management Framework for New Regulations Adapting Your Risk Management Framework for New Regulations Lillibett Machado, MBA, CISA, CISM, CGEIT, CRISC, ITIL-BSM Recorded: Oct 22 2014 3:30 pm UTC 60 mins
    • Cadence Bank recently established the Technology & Operations Governance and Risk Management under the Enterprise Risk Management function reporting to the Board of Directors of the bank. On a recent regulatory audit, the ERM team was recognized for achieving a workable governance framework and integrating the Technology Governance and Risk Management, using Modulo’s GRC automation software as the technology to help execute all our risk and compliance assessments. GRC automation software facilitated Cadence Bank’s objective of achieving the implementation of the new regulatory requirement of the “Three Levels of Defense” being enforced by the regulatory agencies.

      Learn how in this case study, as Cadence Bank’s CISO Lillibett Machado discusses ways to develop a technology GRC framework and use automation to facilitate the new functions required for the CISO’s responsibilities within GRC.

      Read more >
    • The Power of Policy The Power of Policy Dave Ewart, Senior Director Product Marketing Recorded: Jun 25 2014 4:00 pm UTC 40 mins
    • Today’s business is made up of two opposing forces; closed policies enforced by IT and governance, and the open connectivity and mobility that users require.

      Join our webinar ‘The Power of Policy’ as we uncover key drivers for policy implementation and discuss new thinking and technologies for securing collaboration and file sharing.

      Attend to learn:

      • The legal requirements, user needs, and risk that drive policy enforcement
      • The required capabilities to facilitate compliance, risk mitigation, and data leakage prevention
      • Best practice and real world examples for harmonizing the need for policy with the need for mobility

      Read more >
    • Protecting Your Sensitive Data Does Not Have to Impact Business Operations Protecting Your Sensitive Data Does Not Have to Impact Business Operations Juan Asenjo, Senior Product Marketing Manager, Thales e-Security, Mark Bower, VP Product Management , Voltage Security Recorded: Sep 17 2014 3:30 pm UTC 61 mins
    • Highly publicized software attacks and data breaches, combined with strict regulatory requirements, reinforce the ongoing risks associated with cardholder data at all points in the payment stream. The risks to data are everywhere, and your organization is ultimately responsible for the security of customers’ personally identifiable information (PII). This means you must protected PII not only during transaction processing, but also through business processes such as charge-backs, loyalty or repeat payments, storage and analytics – including outsourced environments.
      Voltage SecureData™ enables you to ensure sensitive data is de-identified while maintaining logical and referential integrity so it can remain in a protected state while still usable for critical business processes. Integration of Voltage SecureData with Thales nShield® hardware security modules (HSMs) provides enhanced safekeeping and management of critical cryptographic keys that underpin the security of the process. Enforced protection of sensitive data using policy driven data security enables you to protect PII across your entire workflow without disrupting operations and ensuring you can adhere to privacy regulations.

      Read more >
    • Understanding the Need for XML and Structured Content Understanding the Need for XML and Structured Content Sarah O’Keefe, Scriptorium Publishing; George Bina, SyncRO Soft / oXygen XML Recorded: Oct 6 2014 5:00 pm UTC 60 mins
    • Structured authoring is a publishing workflow that lets you define and enforce consistent organization of information in documents, whether printed or online. In traditional publishing, content rules are captured in a style guide and enforced by (human) editors, who read the information and verify that it conforms to the approved style. In structured authoring, a file—either a document type definition (DTD) or a schema—captures these content rules. Authors work in software that validates their documents; the software verifies that the documents they create conform to the rules in the definition file.

      Structured authoring and XML represent a significant paradigm shift in content creation. Implementing structured authoring with XML allows organizations to enforce content organization requirements. The addition of hierarchy and metadata to content improves reuse and content management. These benefits, however, must be weighed against the effort required to implement a structured authoring approach.

      In this free, one-hour webinar, Scott Abel, The Content Wrangler, welcomes XML publishing expert, Sarah O’Keefe (Scriptorium Publishing), who will demystify structured XML authoring and explore the value of using XML to produce technical content. Sarah will be joined by George Bina of Oxygen XML who will be on hand to answer technical questions about the Oxygen XML Authoring tool.

      One lucky attendee will win a free pass to the Information Development World Conference, October 22-24 in San Jose, CA. And, ten registrants will be selected to receive a free copy of the book “The Language of Content Strategy” (2014, XML Press).

      Read more >
    • Energy & Sustainability - reducing operating costs & boosting profit margins Energy & Sustainability - reducing operating costs & boosting profit margins Mark Staples Recorded: Apr 2 2014 9:00 am UTC 61 mins
    • Energy and Sustainability Management in the Food and Beverage environment, reducing your Operating Costs, to Boost your Profit Margins.

      Compared to other industries, the Food and Beverage (F&B) industry leads the way in terms of the development and deployment of sustainability programmes. F&B manufacturers have improved the efficiency of their facilities, invested in renewable energy, and managed the sustainability of their supply chains in order to lower the impact on the environment. The F&B industry has met the requirements of global and local legislation, and leads all sectors in sustainability disclosure.

      However, with persistent global resource shortages and increasing energy and commodity prices, tougher governmental regulations will be enforced and customers will demand increased transparency of F&B operations. It is estimated that 10% of the world’s emissions come from manufacturing, and that a 26% improvement potential exists for manufacturing firms worldwide.

      This Webinar, recommends an integrated Sustainability and Energy Management programme resulting in reduced costs, increased profitability, lower carbon emissions, mitigated risk and improved corporate image for F&B organisations.

      Read more >
    • Contain Yourself - Analysis of BYOD Secure Containers Contain Yourself - Analysis of BYOD Secure Containers Ron Gutierrez, Security Consultant for Gotham Digital Science Recorded: May 13 2014 5:00 pm UTC 51 mins
    • In today's world, everyone wants access to information from his or her personal mobile device. As a business, this includes your customers and/or employees. What if the information they want access to is highly sensitive? While it's tempting to resist these pressures for security reasons, providing mobile access can be a significant competitive advantage and most importantly keep your customers and employees happy and productive. The reality is that in order to survive in a connected world, we must provide a way to meet these demands without sacrificing security.

      Organizations have begun moving from "managed devices" to a Bring Your Own Device (BYOD) model where company resources can be accessed and stored on unmanaged devices. As you can imagine, there are some inherent risks with this approach due to the organizations inability to enforce policies on personal devices. There is currently a huge market for solutions that allowing enterprises protect their data on unmanaged devices. Enter "Secure Containers” and “Application Wrapping". The basic premise of these solutions is that it allows organizations enforce policies at the application layer rather than the device layer. For example, authentication, remote wipes, lockouts and data encryption can now be enforced on a per application basis. Application Wrapping is a technique, which allows the ability inject their own code into existing iOS applications. Once injected, existing iOS method implementations can be overwritten to enforce these policies. In a nutshell, you can have an existing application and have it wrapped so that it enforces various defined policies and secure it without developers having to manually implement it.

      Read more >
    • Lessons Learned From the Target Data Breach Lessons Learned From the Target Data Breach Brandon Dunlap, Brightfly; Terence Spies, Voltage Security; Chris Merritt, Lumension; Matt Getzelman, Coalfire Recorded: Mar 18 2014 6:00 pm UTC 60 mins
    • *On this webcast we're giving away a non-transferable guest pass to the IQPC 2nd Annual Cyber Security for Oil and Gas Summit, being held in Houston, Texas between June 16 - 18, 2014.

      In December 2013, US retailer Target suffered a high profile data breach at the hands of a cybercriminal group, who infected its point-of-sale (PoS) terminals with malware to steal the details of around 110 million customers. Marcus Group's systems were also compromised recently and crooks made off with customer card details, while several other merchants are reported to be preparing to go public with their own breaches.

      Data breaches are nothing new and have been around for quite some time; however, we are seeing a significant increase in incidents and 2013 was the worst year in terms of data breaches recorded to date. According to the Online Trust Alliance over 740 million records were exposed in 2013, and they determined that 89% of all breach incidents were avoidable had basic security controls and best practices been enforced. Join us as we discuss some key lessons learned from the recent breaches and:

      - Discuss how malware aimed at retailers is evolving on a daily basis
      - Analyze the tools and methodology employed hackers to bypass security
      - Address steps retailers and banking institutions should take to secure their networks
      - Provide procedural and technical steps for securing third party code
      - Discuss how to develop an effective Data Incident (DIP) Plan, including a communication strategy

      Read more >
    • Emerging Risk: Heading off Regulatory Scrutiny on Residential Appraisals Emerging Risk: Heading off Regulatory Scrutiny on Residential Appraisals Jack Huntress, EDR, Liz Green, REL-E-VANT SOLUTIONS, Larry Schnapf, Schnapf LLC Recorded: Jul 17 2013 6:00 pm UTC 75 mins
    • For lenders operating in the shadow of the Dodd-Frank Act, CFPB and other regulatory enforcement agencies are focusing their efforts on consumer protection, disclosure and transparency and deem these critical to all areas of an institution’s compliance and operation. A dizzying array of new rules and regulations, often disruptive to existing operations, are raining down upon the mortgage lending industry. Now, however, it’s not enough to simply be aware of emerging rules and regulations. Little known requirements and regulations which have been on the books for years without being enforced are now getting renewed attention from those agencies, likely opening up an entirely new front in the uphill battle to stay compliant. One of the greatest potential risks to lenders arises from requirements for residential property appraisals and evaluations. It is likely we will see stricter environmental underwriting and more regulatory scrutiny on lenders’ risk management policies. Discover now where lenders are most at risk, and learn about cost-effective measures that can be taken to stay out of the regulatory crosshairs.

      The presenters will:

      • Identify existing rules and regulations, little-known and long unenforced, that are likely to be revitalized by regulatory enforcers;
      • Spell out the specific risks that residential property contamination, including vapor mitigation, will pose to a mortgage lender;
      • Explain how the gamut of new and existing requirements will impact traditional due diligence requirements; and
      • Predict the possible financial impact upon lenders, as well as offering potential solutions for risk mitigation.

      Read more >