|Training & Education Services - Education Services|
Do You Know your a.s.s from your acronym?
Word of the Day
Meaning: Tweeting news with absolutely zero substance
Wanna take a little quiz journey?
Question: When someone says "SAML, SSO, XACML", do you say
b) Today’s heavy weight IdM and point federated SSO solutions do not address the full spectrum of enterprise class security capabilities required to deploy critical applications in the cloud.
c) Oh yes, we had a dog named SAML. She was good girl.
d) What's idm?
Answer: b) but since you said d)...
Question: If you need an idM you might be...
a) Looking for a world renowned rapper to record your sick illmatic
b) Planning a solution that requires role based authentication and identity management
c) Struggling to come up with your unique statement and style
d) Wanting a better solution than post its to keep track of your passwords
Answer b) but since you said d)
Question: If your board of directors published a goal to protect all automated content as delivered via cloud services you would
a) Say that you will handle this like a mainframe process
b) Rely on existing perimeter security implementation
c) Admit you have a problem
How to fix the problem:
and you would read the standards and guidelines that most matter:
Special Publication 800-126 Revision 2, The Technical Specification for the Security Content Automation Protocol (SCAP): SCAP Version 1.2
To view the announcement of release on CSRC News page: http://csrc.nist.gov/news_events/index.html#sept30
PDF link to document: http://csrc.nist.gov/publications/nistpubs/800-126-rev2/SP800-126r2.pdf
Location of document on the Special Publications page: http://csrc.nist.gov/publications/PubsSPs.html#800-126-rev2
Special Publication 800-137, Information Security Continuous Monitoring (ISCM) for Federal Information Systems and Organizations, PDF link to document: http://csrc.nist.gov/publications/nistpubs/800-137/SP800-137-Final.pdf
Location of document on the Special Publications page: http://csrc.nist.gov/publications/PubsSPs.html#800-137
|Last Updated on Thursday, 03 May 2012 18:16|
Written by Robin Basham
Friday, 27 January 2012 15:59
The GRC Buzz
Holistic Information Security Practitioner Institute (HISPI) welcomes EnterpriseGRC Solutions as member of their HISP Certification Board/Committee Read More
ITpreneurs is proud to name EnterpriseGRC Solutions as its newest certified partner. ITpreneurs and EnterpriseGRC Solutions will collaborate to increase Cloud and Virtualization concepts and controls, ISO 27001, COBIT and ITIL courses offered through EnterpriseGRC Solutions. “Every member of my organization has achieved at least one certification through ITpreneurs, and this is the second company that I’ve founded with that same promise. [...] It is a proud day, that we can be a part of ITpreneurs’ landmark efforts to bring forward CompTIA Cloud Essentials training and certification. - Robin Basham, Managing Partner.
Spontaneous Kudos - We've really been digging our digest from The Compliance Exchange
Partners and Client Information
Ryma Technology Solutions names EnterpriseGRC Solutions as an Affiliate Partner. More. Recent Wins: EnterpriseGRC Provides IS0 27001 Policy and SOA readiness for NetSuite Inc. EnterpriseGRC Solutions Sponsor to ISACA ITGI. Recent Partner Alignments include ITpreneurs, Control Solutions International
Request For Information? Please fill out our Wufoo form.