Harmonizing Security and Compliance
BrightTALK is delighted to be powering this online event hosted by ISACA. Join us to hear the live presentations and submit real-time questions to the speakers. All presentations are being recorded so you can download the on-demand archive as well (check out the recorded events tab). This conference series will now be run using Flash. Please make sure you have the latest version of Flash installed. Make sure you click the 'confirm attendance' button once you have registered or logged in on the ISACA e-Symposium site.
Visit sponsor booth
The session will examine how state regulators, Massachusetts being the prime example, are shifting their approach of protecting personal information from reactive to proactive. We will examine how these regulations require "data holders" to adopt specific preventative measures, rather than merely notifying victims of a breach after the event has occurred.
Many companies and organizations are beginning to investigate leveraging Rich Internet Application technologies Federation based Architectures and Web 2.0 Strategies. This session will help identify the key challenges and risks that need to be addressed as part of any Web 2.0 adoption and implementation. Topics covered will include: Identity Federation, Data Federation and Syndication, SOA, and Mashups. The session will cover issues being raised by implementers, auditors and security practitioners as well as some of tactics being used to meet the challenges. The session will provide details and some demonstrations for the current and emerging threats and attacks in the Web 2.0 arena.
A wide range of enterprises can use EV SSL best practices and technologies to remain compliant across a host of regulations that are not limited to PCI. Today's presentation will focus on PCI requirements, business recommendations, how EV SSL works and what benefits are derived from EV SSL.
Cryptography can be frustratingly complex and abstract, but promises important benefits for enterprises looking to comply with the increasing number of regulations that mandate protection of personal data. In this talk, we'll look at the unique compliance benefits offered by cryptography, and examine three potential problem areas that need to be addressed by any practical encryption system. Key rotation, authentication integration, and data recovery strategies are critical to the implementation of cryptographic data protection systems that will work with, as opposed to against, business practices and policies.
This e-Symposium qualifies for 3 CPE points. To obtain CPE credit, members must download and listen to all event presentations and successfully complete a CPE quiz. To access the quiz, click the CPE button at the top of this page or click the Play button below.
