ComplianceHome: ALL Events

SANS Special Webcast: Security Is Not Virtual: Auditing and Logging Considerations to Ensure Compliance and Protect Virtual Server Environments

Thu, 24 Jul 2008 00:00:00 CST

2008-07-31 None
Companies of all sizes and in all industries are looking for ways to leverage the benefits of server virtualization. The cost savings in both server and networking hardware, as well as the power and cooling required for multiple servers make virtualization compelling in many cases. Many of these companies must comply with information security legislation or industry guidelines and those that don't still have internal security policies to uphold. When performing a security audit, a virtual server environment has special considerations and unique risks which must be taken into account. This webcast will discuss the issues inherent with virtual servers and the fundamentals of auditing a virtual server environment.

Ask The Expert Webcast: Use it or Lose it! How Event Monitoring and Correlation Tools can help prevent sensitive data loss

Thu, 24 Jul 2008 00:00:00 CST

2008-08-26 None
The major focus of many information security teams today is preventing sensitive data leakage or loss, and for good reason. With a dramatic increase in high-profile incidents involving the loss of sensitive data, security teams are tasked with choosing technologies and developing policies and procedures that will protect their organizations' sensitive data.

The market has been flooded with tools that claim to solve the problem, but are more expensive point solutions really the cure? In this webcast, you will learn about a number of controls that can be implemented with event monitoring and correlation tools that can form the foundation of a successful data protection strategy.

Symantec Hosted Mail Security Stop Spam, Viruses and Unwanted Content Without Requiring In-House Hardware or Software

Thu, 24 Jul 2008 00:00:00 CST

2008-07-25 None
Today, eight out of ten emails are spam and email remains the most common vector for virus attack. Worker productivity and network security are both at risk. IT staff, networks and systems are often overburdened under the heavy loads. Learn how you can achieve comprehensive email security without the costs associated with purchasing and maintaining hardware and software. Using Hosted Mail Security from Symantec, spam, virus and other unwanted email content can be stopped before reaching your network and without the expense of managing and maintaining in-house hardware or software. With Hosted Mail Security, your IT resources can be freed to focus on critical business issues with the confidence that unwanted emails can be blocked while critical emails are not.

Symantec Hosted Mail Security Stop Spam, Viruses and Unwanted Content Without Requiring In-House Hardware or Software

Thu, 24 Jul 2008 00:00:00 CST

Symantec Hosted Mail Security Stop Spam, Viruses and Unwanted Content Without Requiring In-House Hardware or Software

Thu, 24 Jul 2008 00:00:00 CST

Symantec Hosted Mail Security Stop Spam, Viruses and Unwanted Content Without Requiring In-House Hardware or Software

Thu, 24 Jul 2008 00:00:00 CST

Symantec Hosted Mail Security Stop Spam, Viruses and Unwanted Content Without Requiring In-House Hardware or Software

Thu, 24 Jul 2008 00:00:00 CST

Symantec Hosted Mail Security Stop Spam, Viruses and Unwanted Content Without Requiring In-House Hardware or Software

Thu, 24 Jul 2008 00:00:00 CST

Best Practices for Government Database Security & Compliance

Thu, 24 Jul 2008 00:00:00 CST

2008-07-29 None
Register for this 45-minute Webcast to learn about best practices for securing Personally Identifiable Information (PII) data in sensitive databases and easily complying with OMB M-06-16.

According to the OMB directive, government departments and agencies must log all extracts from sensitive databases and verify that private information has been erased within 90 days.

Find out how key government agencies such as the FTC have improved their security and access control environments by deploying a non-intrusive, appliance-based solution for monitoring and tracking all access to sensitive data and database changesacross all their DBMS platforms and applicationswithout impacting database performance or requiring changes to applications.

During this educational Webcast sponsored by BMC and Guardium, youll learn how to:

* Simplify compliance with government regulations by automatically generating reports for OMB, SAS70

Best Practices for Government Database Security & Compliance

Thu, 24 Jul 2008 00:00:00 CST

Best Practices for Government Database Security & Compliance

Thu, 24 Jul 2008 00:00:00 CST

Ounce 6: The Next Generation of Enterprise Security Source Code Analysis

Thu, 24 Jul 2008 00:00:00 CST

2008-08-06 None
Please join for an overview of Ounce 6, the latest version of enterprise security source code analysis solution. The release features major advancements in workflow automation, bridging the gap between security and development; a 300% performance improvement to power the analysis of large and complex applications, and scalability. Ounce 6 provides the only security source code analysis solution that meets the demands of enterprises committed to eliminating business-critical vulnerabilities in their software.

Information Security Risk Assessments: Understanding the Process - 2008 Update

Thu, 24 Jul 2008 00:00:00 CST

2008-08-05 None
Learn how in this exclusive new webinar, inspired by 2008's federal regulations and guidance. You will receive timely, hands-on advice and new risk assessment tools from banking executive Steven Jones of Synovus Financial Corp. regarding:

How to build process and strategies to identify and manage risks;
How to tie risk assessment to your institution's daily business decisions;
Risk assessment techniques that work - and those that don't;
The importance of risk communication to senior leaders.

GLBA Privacy Requirements: How to Build an Effective Program That Meets GLBA Compliance and Ensures Customer Privacy

Thu, 24 Jul 2008 00:00:00 CST

2008-07-30 None
Register for this webinar for a how-to overview of elements necessary in an effective Privacy program, including:

* Overview of GLBA and other regulatory requirements for privacy and security;
* Privacy program components;
* How to establish policies, procedures and technical controls to support and maintain privacy;
* How to align vendor contracts to include Privacy-related requirements and outlining vendors' responsibilities;
* Industry

Get Compliant, Stay Compliant - Automatically

Thu, 24 Jul 2008 00:00:00 CST

2008-08-05 None
Join Tripwire for our summer webcast series and hear Ananda Arasu, Product Marketing Manager and Tho Yeong Chien, Technical Manager at Tripwire discuss how configuration control solutions from Tripwire can help your IT organization achieve, maintain and automate continuous compliance.

Attend this webcast and you will learn:

How configuration assessment can automate the compliance process
How to know what steps to take when a configuration has failed a policy test
What a golden baseline means for configuring systems
How to customize critical configuration tests as critical or non-critical
Using Policy Waivers with selected tests for better work flow management

36th Annual Scaffold Industry Association Convention & Exposition

Thu, 24 Jul 2008 00:00:00 CST

2008-07-20 - 2008-07-26 Denver
SIA will hold its 35th annual convention in Denver, Colarodo this year.

New York Customer Summit

Thu, 24 Jul 2008 00:00:00 CST

2008-10-30 New York
The New York Customer Summit is designed to maximise opportunity for delegates and speakers to interact with one another. Sessions are designed to be informative, practical with scope for questions or debate during or after each session. Delegates can explore and participate in thought-provoking presentations. This focused event offers compliance professionals specific knowledge and skills to use when serving clients

CDRH's NumberOne Priority Are You Prepared?

Mon, 21 Jul 2008 00:00:00 CST

2008-07-31 None
Sign up your entire team to listen in and discover:

* The nuts and bolts of the FDAs postmarket surveillance authority under the FDAAA
* How postmarket surveillance compares with postapproval studies
* When and how postmarket surveillance can be imposed
* Three pitfalls to avoid when preparing for postmarket surveillance
* Strategies for meeting regulatory expectations for complying with postmarket surveillance requirements
* 10 critical details to include in a postmarket surveillance plan
* The role of postmarket surveillance in the bigger picture of the FDAs Postmarket Transformation Initiative
* Potential consequences of noncompliance
* Four ways postmarket surveillance impacts other key FDA compliance requirements

A Network Security Seminar That May Not Be For Everyone

Mon, 21 Jul 2008 00:00:00 CST

2008-07-30 Lombard, IL
the focus of this session is on enabling your business to safely leverage a new generation of Internet applications. All of these applications, regardless of the business value they provide, carry some risk. Therefore, it's essential to understand their unique behavior and context so that you can effectively manage risk on your network, without undue restrictions on your users, or your business.

This proactive strategy is being widely adopted by forward-looking IT organizations that embrace the Internet-based applications as an extension of their own application portfolio. During this event, you'll discover what specific applications these organizations are running, the risks they present, and the IT management strategy being employed to control them.

5 Keys to a Successful Business Continuity Plan

Mon, 21 Jul 2008 00:00:00 CST

2008-08-12 None
FISolv has announced the schedule for its Summer Education Series on Business Continuity Planning. The webinars will focus on how to develop a successful Business Continuity Plan and updated guidance from the FFIEC.

Foundation of BCP: Business Impact Analysis and Risk Assessment

Mon, 21 Jul 2008 00:00:00 CST

2008-07-30 None
The webinar will focus on how to develop a successful Business Continuity Plan and updated guidance from the FFIEC.

Evolving Security Architectures and SOA for Better Business Collaboration

Thu, 17 Jul 2008 00:00:00 CST

2008-08-06 None
Traditional security models have been aimed at securing corporate boundaries, and then the network, reinforcing a 'perimeterized' approach. This conflicts with today's business demands for more connectivity among customers, suppliers and business partners outside the corporate boundary. Business today wants to exploit the benefits of pervasive, fast, reliable, and inexpensive Internet connectivity. For many organizations, this means using a Service Oriented Architecture (SOA) for new applications. What do these trends mean for security architectures?

This webinar will focus on the increasingly distributed nature of corporate IT networks, including the rapid emergence of SOAs. The impact of these changes upon security architectures will be examined, as will several new approaches for ensuring greater business collaboration. Participants will walk away with a better understanding of security architectures, and the unique impacts of SOA upon enterprise

Using Data Leakage Prevention and Database Activity Monitoring for Data Protection

Thu, 17 Jul 2008 00:00:00 CST

2008-07-29 None
At this webinar, Rich Mogull will clear up the confusion about DLP and DAM and also discuss about:

*The business problems created by a lack of data centric security
*How these problems relate to today's threats and technologies
*What DLP and DAM do and how they fit into the enterprise security environment
*Best practices for creating a data centric security model for your organization

Compliance Boot Camp 2008 : Validation, Quality and Compliance Training

Fri, 11 Jul 2008 00:00:00 CST

2008-09-22 - 2008-09-26 None
You'll learn:

* Which validation deliverables the FDA expects and what they should contain
* How to identify, document and report computerized system validation deviations
* How the FDA defines a systems risk and mitigation strategy that you can deploy
* Proactive steps you can take to avoid CSV and Part 11 Form 483s and warning letters
* The five supporting pillars required for effective CSV, including: system management and monitoring, system change management, risk management, vendor management and CSV methodology management
* Update on the new draft Part 11 regulation

IT Security World 2008

Fri, 11 Jul 2008 00:00:00 CST

2008-09-15 - 2008-09-17 San Fransico
Featuring 7 focused tracks, 10 in-depth workshops, one Summit on Virtualization and a technology-rich expo jam-packed with 70+ technology and service providers, IT Security World 2008 is heralded as the west coast's most comprehensive information security event! In addition to its industry-neutral tracks delivering hard-hitting, technical training, IT Security World offers three specific security summits in the following industries: finance, healthcare and the government sector.

SQL Injection 2.0: Bigger, Badder, Fasterand More Dangerous Than Ever

Thu, 10 Jul 2008 00:00:00 CST

2008-07-30 None
SQL Injection has existed as a very real and documented threat to enterprise security for years. While the concept is far from novel, the techniques, tools, and scope of SQL Injection attacks are growing exponentially and at a rate that far outpaces traditional, time-consuming defense mechanisms such as code review. Need proof? A quick scan of the industry headlines inevitably produces a lengthy list of international SQL Injection victims.

Join Amichai Shulman, CTO of Imperva and Director of the Application Defense Center (ADC), as he pulls back the covers on the next generation of SQL Injection attacks and provides directions on how you can protect your organization against these increasingly sophisticated and dangerous threats. Mr. Shulman will highlight how hackers are launching non-customized attack code via botnets and Google searches to distribute malware with lightning-fast speed and precision efficiency. This educational webinar will al

SQL Injection 2.0: Bigger, Badder, Fasterand More Dangerous Than Ever

Thu, 10 Jul 2008 00:00:00 CST

SQL Injection 2.0: Bigger, Badder, Fasterand More Dangerous Than Ever

Thu, 10 Jul 2008 00:00:00 CST

SQL Injection 2.0: Bigger, Badder, Fasterand More Dangerous Than Ever

Thu, 10 Jul 2008 00:00:00 CST

SQL Injection 2.0: Bigger, Badder, Fasterand More Dangerous Than Ever

Thu, 10 Jul 2008 00:00:00 CST

SANS Audit and Compliance 2008

Thu, 10 Jul 2008 00:00:00 CST

2008-09-03 - 2008-09-10 Chicago
SANS Audit & Compliance 2008 - Chicago will offer an outstanding selection of hands-on, up-to-date training presented by the world's best instructors. You will return home with knowledge and skills that you can use your first day back in the office. It is these core elements that make SANS the most trusted source for information security training in the world.

Symantec Hosted Mail Security Stop Spam, Viruses and Unwanted Content Without Requiring In-House Hardware or Software

Wed, 09 Jul 2008 00:00:00 CST

Symantec Hosted Mail Security Stop Spam, Viruses and Unwanted Content Without Requiring In-House Hardware or Software

Wed, 09 Jul 2008 00:00:00 CST

Symantec Hosted Mail Security Stop Spam, Viruses and Unwanted Content Without Requiring In-House Hardware or Software

Wed, 09 Jul 2008 00:00:00 CST

Symantec Hosted Mail Security Stop Spam, Viruses and Unwanted Content Without Requiring In-House Hardware or Software

Wed, 09 Jul 2008 00:00:00 CST

Symantec Hosted Mail Security Stop Spam, Viruses and Unwanted Content Without Requiring In-House Hardware or Software

Wed, 09 Jul 2008 00:00:00 CST

Symantec Critical System Protection Host-based Protection for Multi-OS Environments

Wed, 09 Jul 2008 00:00:00 CST

2008-08-24 None
Join this webcast and see how the threats to your critical systems and the information residing on them have dramatically changed and how compliance to regulations and standards such as PCI are impacted by not protecting systems effectively. Learn ways to proactively protect systems across your enterprise using the proven technology in Symantec Critical System Protection.

Whether youre a system administrator, IT compliance auditor, information security consultant, or system architect, this webcast will help you better understand how to protect against both external and internal risks.

Navigating the FDA's New Requirements for eCTD Submissions

Mon, 07 Jul 2008 00:00:00 CST

2008-07-28 - 2008-07-29 Philadelphia, PA
n Navigating the FDA's New Requirements for eCTD Submissions, you will:

* Discover the top 10 reasons sponsors receive a refuse-to-file from the FDA on their eCTD submissions
* Gain clarity on the acronyms and jargon of eCTD and electronic submissions
* Effectively budget and develop project plans for eCTD submissions
* Understand why and how to start producing eCTD submissions at the IND phase
* Master the documentation requirements for electronic datasets for stability, nonclinical and clinical, and better communicate these requirements to colleagues early in the drug development cycle
* Assure the output of your in-house system is valid for FDA review
* Learn about the eCTD pilot what it does, why you need it, how it works and how to make it work for you
* Learn about the FDA's Electronic Submissions Gateway and how to prepare to submit your eCTDs electroni

Privacy: How to Build An Effective Program That Satisfies Regulators and Customers

Thu, 26 Jun 2008 00:00:00 CST

2008-07-30 None
Register for this webinar for a how-to overview of elements necessary in an effective privacy program, including:
Legal and regulatory requirements for privacy and security;
Privacy program components;
How to establish policies, procedures and technical controls to support and maintain privacy;
Aligning vendor contracts to include Privacy related requirement and outlining vendors' responsibilities
Industry

SCCE's 7th Annual Compliance & Ethics Institute

Mon, 23 Jun 2008 00:00:00 CST

2008-09-14 - 2008-09-17 Chicago, IL
The Institute provides a broad array of development and networking opportunities that will help you address the challenges you face in the trenches every day. The Institute will include more than 80 speakers, offering more than 50 sessions to provide you with practical advice and important insights from many of the most well known ethics and compliance professionals in the country.

Navigating the FDA's New Requirements for eCTD Submissions

Tue, 17 Jun 2008 00:00:00 CST

2008-07-28 - 2008-07-29 Philadelphia, PA
Sign up and learn about:
# Discover the top 10 reasons sponsors receive a refuse-to-file from the FDA on their eCTD submissions
# Gain clarity on the acronyms and jargon of eCTD and electronic submissions
# Effectively budget and develop project plans for eCTD submissions
# Understand why and how to start producing eCTD submissions at the IND phase
# Master the documentation requirements for electronic datasets for stability, nonclinical and clinical, and better communicate these requirements to colleagues early in the drug development cycle
# Assure the output of your in-house system is valid for FDA review

Ohio Government Seminar: Effective Enterprise Risk Management Seminar

Sat, 01 Dec 2007 00:00:00 CST

2012-04-07 Columbus, OH
Join us at this exclusive event as we discuss best practices, processes and a customer case study surrounding the Ohio state compliance regulations and how Symantecs Control Compliance Suite can help your organization.

Security Testing: The Easiest Part of PCI Certification

Wed, 29 Aug 2007 00:00:00 CST

2008-09-06 None
With PCI deadlines looming, youve likely been flooded with info about what you need to do to comply. While its hard not to get mired in the details, a common theme runs throughout the PCI Standard: You must regularly test your data security defenses and policies. In fact, over 20 PCI mandates either explicitly call for testing or require you to ensure that security measures are effective.
Join Core Security for a free webcast to learn about one of the easiest things you can do to comply with and validate multiple PCI requirements:

Seminars To Offer Insight and Guidance into Sarbanes-Oxley Compliance

Wed, 29 Aug 2007 00:00:00 CST

2008-09-17 Forsgate Country Club, Monroe, NJ
The seminars will offer CEOs, Board and Audit Committee members, CFOs and Controllers, Directors of Internal Audit, CIOs and IT managers advice on how to prepare a tailored plan of action to achieve SOX 404 compliance using a top-down risk-based strategy. Issues to be covered during the presentations include:

Understanding the new developments of the SEC and PCAOBs new auditing standard, known as AS5.

Auditor expectations and how to gain their confidence.

IT Controls and technology aids to compliance.

Best practices in corporate governance.

Financial reporting and achieving cost-effective compliance.

The firms Chairman & Chief Executive Officer Thomas A. Basilo along with Executive Vice Presidents Ray Broek and Sumit Pal will be featured presenters. The event will also feature Roland Mosimann, President & Co-Founder of BI International.

SOX Essentials for Small Public Companies

Wed, 29 Aug 2007 00:00:00 CST

2008-08-28 None
Sarbanes Oxley Compliance is wreaking havoc on small business budgets. The overwhelming costs of SOX make it difficult for small companies to compete in a global marketplace. The SEC estimates that public companies are spending as much as $1.2 billion collectively per year to comply. As a result of those costs, smaller companies are seeing their profits shrink, which damages their stock price and puts them at risk.

In this presentation, Bob Benoit, President and Director of SOX Research, Lord & Benoit, LLC will look at the challenges and best practices of SOX compliance.

What will be covered?

Current regulatory environment ,Components of Sarbanes-Oxley Section 404, IT on Sarbanes-Oxley Section 404 compliance, Components of a SOX IT assessment, Effective remediation plans and follow through
The webinar will also cover the features and benefits of the cost effective MetricStream solution for SOX implementation.