pdf Download (4.48 MB)

RSA Archer Maturity Models guide organizations through the journey from baseline risk management to optimized processes that balance opportunities and risks. View the Maturity Model Snapshot to discover the stages of maturing your audit management processes.

pdf Download (468 KB)

It’s plain and simple: A glut of regulations are forcing IT security professionals, vendor managers, and risk managers to work more directly with third parties to close the loop on security risks. At the same time, the methods for proving compliance are expensive, time consuming, and ineffective at remediating security issues. The irony speaks volumes about the gaps between the law, legal guidelines and standards, and reality of information security risk.

pdf Download (475 KB)

One of the greatest risks to your organization comes from your third-party vendors. Unfortunately, the operational drain an organization faces running a third-party risk management program is complicated, costly, and can be inconsistent across the organization. The inventory process alone is a daunting and overwhelming effort. Conducting time consuming risk assessments, executing remediation and then maintaining the process year after year requires the appropriate people, process and an integrated technology solution.

pdf Download (3.16 MB)

RSA Archer Maturity Models guide organizations through the journey from baseline risk management to optimized processes that balance opportunities and risks. View the Maturity Model Snapshot to discover the stages of maturing your operational risk management processes.

pdf Download (3.36 MB)

Organizations rely on third parties more than ever to conduct business, but is the confidence in their security practices misplaced? Businesses and regulators expect organizations to assess the security of their third parties, but how can we assess the security of so many and keep the cost under control? Third-party breaches leave an organization powerless, exposed to severe reputation damage and complicated clean-up to get back on track. Third-party relationships are vital to the success of an organization, but is the risk of doing business higher than the value?

pdf Download (4.61 MB)

RSA Archer® provides business risk management solutions that allow you to start your risk and compliance program where it hurts and chart the path that makes the most sense for your organization. View the infographic to understand how RSA Archer can give you the confidence to deliver strategic value to your organization with a proven path—and the right solutions—to take control of risk.

pdf Download (466 KB)

In 1624, John Donne penned the famous words “No man is an island” as the opening verse to his Meditation 17. Today, with the digital age firmly upon us, these words ring true for individuals as well as enterprises. No enterprise is truly self-contained and able to operate autonomously. Herein lies perhaps one of the great challenges for enterprise security in our era.

pdf Download (535 KB)

2016 was the year of massive data breaches, from LinkedIn and Dropbox’s resurfaced breaches to Yahoo’s massive breach and others, where over half a billion accounts, records, and passwords were leaked. This year, Soha Systems also found that 63% of data breaches were directly or indirectly linked to third-parties. As more and more sensitive data is released to hackers and other malicious actors, targeting a third-party to reach a larger organization becomes an easier task to fulfill. How can you be sure you’re taking into account the current security risk posture of your third-parties?

pdf Download (3.61 MB)

Clear guidance on best practices for managing tempdb to provide the optimum balance between performance, reliability, and manageability.

default Download

Protecting personal data has been an important issue in the European Union (EU) for more than 20 years, and the recently ratified General Data Protection Regulation (GDPR) takes data protection to an entirely new level. In addition to a new set of legal requirements that necessitate both organizational and technological responses, the GDPR is applicable to almost every organization around the world that collects or processes data on residents domiciled within the EU, including permanent residents, visitors and expatriates. Compliance is thus predicated on the geographical location of the individuals about whom an organization holds personal data, not the domicile of registration for the organization.

pdf Download (2.15 MB)

SQL Server provides robust capabilities to monitor itself and it can be easy to be overwhelmed with the choices presented through catalog/dynamic management views, extended events, server side traces (for older versions of SQL Server), or performance counters. This is true on the security side as well. In this whitepaper we’ll present the top five items you should be auditing on all of your SQL Servers, and how to do them. Keeping an eye on these items will help you verify database security and access in your environment.

default Download

Hadoop is a unique architecture designed to enable organizations to gain new analytic insights and operational efficiencies through the use of multiple standard, low-cost, high-speed, parallel processing nodes operating on very large sets of data. The resulting flexibility, performance, and scalability are unprecedented. But data security was not the primary design goal.

  pdf Download (144 KB)

Being in the computer industry is one of the most challenging things anyone can get into. When upgrading one’s knowledge to keep the data secure, there are a number of hurdles to cross. In this industry where we look for quick, fast responses from development to deployment to sales, everyone is expected to deliver without compromising any of the business parameters.