Addressing Compliance Initiatives with Tripwire and the Center for Internet Security (CIS)

Learn the basics about security benchmarks, and specifically how the security benchmarks developed by the Center for Internet Security (CIS) can help you with your compliance initiatives.

Automating FISMA Compliance with Tripwire

Learn how Tripwire can help you deploy a comprehensive configuration assessment and control solution that: a) reduces the time and resources required to verify compliance and prepare for audits; and b) maintains continuous compliance by allowing IT to immediately identify any exceptions and trigger remediation of configurations that do not conform to policy.

Banking on Confidence: When the Going Gets Tough, Good Institutions Get Even Tougher on Ensuring Regulatory Compliance

Learn the 5 core competencies of compliance and how to institute an automated compliance solution.

Basel II Compliance with Tripwire

Understand the issues addressed by the new international banking standard known as the Basel Committee on Banking Supervision (BCBS or Basel II), and find out how Tripwire can help meet all requirements of Basel II compliance even before it becomes a worldwide banking regulation.

Beyond Disaster Recovery: Using Configuration Audit and Control to Develop an Effective BCP

Find out how configuration audit and control solutions can provide the detailed change audit trail that helps organizations maintain the known states so vital to recovering system data after a sudden outage.

Beyond PCI Checklists: Securing Cardholder Data with Enhanced File Integrity Monitoring

How do organizations pass their PCI DSS audits yet still suffer security breaches? Paying attention to PCI DSS checklists only partially secures the cardholder environment. Learn the next steps for fully securing your data.

Bill 198 and Internal Controls for Technology

Find out about the requirements and issues addressed in corporate governance Bill 198, Canada's version of Sarbanes-Oxley, for internal controls for technology and how IT configuration auditing brings compliance.

Butler Group: Tripwire Enterprise 7.1 Technology Audit

Read on to hear what Butler Group has to say about Tripwire Enterprise and Tripwire's role in the configuration management and audit market.

Configuration Assessment: Choosing the Right Solution

Configuration assessment lets businesses proactively secure their IT infrastructure and achieve compliance with important industry standards and regulations. Learn why configuration assessment is so important, why organizations find it difficult to control system configurations, and what types of configuration assessment solutions are available.

Configuration Audit and Control: 10 Critical Factors to CCM Success

Find out how Configuration Audit and Control solutions can provide a single, valuable, independent source for enforcing and reporting on change policy across an IT organization.

Effective Security with a Continuous Approach to ISO 27001 Compliance

The Tripwire Enterprise solution provides organizations with powerful configuration control through its configuration assessment and change auditing capabilities. In this white paper, learn how with Tripwire Enterprise, organizations can quickly achieve IT configuration integrity by proactively assessing how their current configurations measure up to specifications as given in ISO 27001. This provides immediate visibility into the state of their systems, and through automating the process, saves time and effort over a manual efforts.

Effektive Sicherheit durch Anstreben und Aufrechterhaltung der ISO 27001-Compliance

Die Tripwire Enterprise-Lösung bietet Organisationen mit Funktionen für Konfigurationsassessments und Change-Auditierung eine leistungsfähige Konfigurationskontrolle. In diesem Whitepaper erfahren Sie, wie Organisationen mit Tripwire Enterprise den Status ihrer Konfigurationen proaktiv anhand der in der ISO 27001 festgelegten Spezifikationen einschätzen und in kurzer Zeit IT-Konfigurationsintegrität erzielen können. Somit wird der Zustand der Systeme sofort offen gelegt, und durch die Automatisierung des Prozesses sparen Organisationen im Vergleich zu manuellen Verfahren Zeit und Aufwand.

Enforcing IT Change Management Policy

Discover how high-performing IT organizations are able to create a culture that supports and uses change management to their advantage, facilitating enterprise business goals.

File Integrity Monitoring: Secure Your Virtual and Physical IT Environments

Discover the capabilities your file integrity monitoring solution should have to effectively secure & control your virtual and physical IT infrastructures.

FISMA Prescriptive Guide

Discover how to achieve and maintain FISMA compliance to ensure security of systems and data.

Gene Kim's Practical Steps to Achieve and Maintain NERC Compliance

Gene Kim, CTO of Tripwire, describes seven practical steps owners and operators of the bulk power system can take to meet the mandatory NERC-CIP standards, helping them avoid huge fines for non-compliance and protect North America’s bulk power system.

Gene Kim's Practical Steps to Mitigate Virtualization Security Risks

Tripwire founder/CTO Gene Kim provides seven practical steps that IT organizations can take to mitigate the unique security challenges of virtualization. While some are directed specifically at virtualized environments, many of these steps are solid best practices that apply to both physical and virtualized environments.

Gene Kims praktische Maßnahmen zur Verringerung virtualisierungsbedingter Sicherheitsrisiken

Der Gründer/CTO von Tripwire, Gene Kim, hat sieben praktische Maßnahmen entwickelt, die IT-Organisationen in die Lage versetzen, sich den einzigartigen Herausforderungen an die Sicherheit zu stellen, die im Zusammenhang mit der Virtualisierung auftreten. Einige dieser Maßnahmen beziehen sich speziell auf virtualisierte Umgebungen, bei den meisten handelt es sich jedoch um bewährte Best Practices, die sowohl für physische als auch virtualisierte Umgebungen gelten.

HIPAA and the American Recovery and Reinvestment Act of 2009

HIPAA requires businesses that handle personal health information (PHI) to set up strong controls to ensure the security and integrity of that information. Learn how Tripwire Enterprise helps meet the detailed technical requirements of HIPAA and delivers continuous compliance.

HIPAA Security Provisions: Is Your Network Ready for a Physical?

Find out whether your health company's network systems are well enough to pass an internal security checkup, or are running the risk of a much more invasive examination by federal regulators and plaintiff's lawyers.

HP OpenView and Tripwire: Closed-Loop Change Management

Learn how organizations that follow change control best practices and implement integrity assurance frameworks can protect the stability, security and compliance of their IT infrastructure and critical network processes.

IDC White Paper: CCM for IT Compliance and Risk Management

Learn from industry analysts how IT organizations are using configuration management to meet compliance requirements and instill best practices. Find out how these organizations are applying the resulting processes to enhance security and improve operational efficiency in order to increase their level of service delivery.

IDC White Paper: Optimizing Infrastructure Control

This paper outlines the nature of infrastructure integrity, change auditing, and compliance solutions.

It describes how an investment in configuration assessment and change auditing solutions can stabilize IT operations, lowering the operational costs associated with the IT infrastructure; be a force multiplier; and provide a solid foundation that increases the effectiveness of the investment in information security.

Information Assurance Brief

Tripwire helps defense agencies meet information assurance requirements for Army Regulation 25-2 (AR 25-2), DoD Instruction 8500.2 and DCID 6/3.

IT Service Management: Metrics That Matter

Learn how your IT organization measures up against the best performing IT organizations and what you can do to improve efficiency, sustain compliance and security, increase system availability, and reduce the frequency of outages.

ITCi White Paper: Challenges and Opportunities of PCI

Learn how to align PCI compliance with business processes for a more streamlined and reliable IT infrastructure with this whitepaper from the IT Compliance Institute.

Keep it Clean: Maintaining the Integrity of your CMDB through Change Detection

Learn how configuration drift can challenge configuration management database (CMDB) integrity and how a configuration audit tool and an effective change management process can help you keep your CMDB on course.

MiFID Compliance With Tripwire

Understand the compliance requirements of the European Union's Markets in Financial Instruments Directive (MiFiD), and how controlling IT change addresses many of those requirements.

PCI-DSS-Compliance und Sicherheit durch verbesserte Überwachung der Dateiintegrität

Wie ist es möglich, dass Organisationen PCI-DSS-Prüfungen bestehen und dennoch Sicherheitsverletzungen zum Opfer fallen? Durch Befolgen von PCI-DSS-Checklisten können Umgebungen mit Karteninhaberdaten nur begrenzt gesichert werden. Informieren Sie sich hier über die nächsten Maßnahmen, die zu einer umfassenden Sicherung Ihrer Umgebung beitragen.

Proactively Reduce Risk and Improve IT Security in Physical and Virtual Environments

Learn more about the security risks and vulnerabilities faced by organizations, and the elements of a proactive security approach. Then find out how Tripwire helps organizations attain and maintain a good security posture using industry-leading configuration assessment and change auditing to harden systems against security breaches, automate compliance with security standards and policies, identify configuration changes, and resolve vulnerabilities.

Proving Control of the Infrastructure

Find out how implementing a configuration audit and control solution is not only effective for improving IT processes, it is also good for business and fundamental to meeting regulatory compliance requirements. Experience proves that controlling change across the IT infrastructure is the best way to increase the overall reliability, availability, and security of information systems.

Removing Barriers To Better Server Virtualization Efficiency

Based on research conducted by Tripwire, this whitepaper explorers the common barriers to virtualization, and best practices around furthering virtualization in a secure and compliant environment.

Secure Virtualization: Achieve and Maintain IT Security in Virtual Environments

Find out how to maintain the same level of stability and security across both virtual and physical environments, using the same software and approach.

Security and Controls for Virtual Servers in Production Environments

Tripwire surveyed IT professionals to learn how virtualization is expanding and if security, change controls and compliance requirements are keeping pace. Read this white paper to learn more about the state of virtualization today and why most of the respondents agree that a dedicated configuration tool is needed and are in the process of evaluating or planning to acquire such a tool.

Server Virtualization Security: 90% Process, 10% Technology

Perhaps the biggest concern with securing x86-based virtual server environments is updating existing management and security processes to cope with relatively new technology. There are no known exploits that can critically compromise a virtual server based on Citrix/Xen, Microsoft, or VMware technologies — although the vendor community is in the process of improving control and visibility of the underlying virtualization layer. In the interim, Forrester believes that updated security practices will adequately protect most organizations’ systems.

Seven Practical Steps for Federal Cyber Security and FISMA Compliance

Increasing numbers of security breaches of federal information systems has led President Obama to mandate an immediate review of all these systems. Learn how federal agencies can secure their information systems in seven practical steps.

Starting a Visible Ops-Based Change Management Program

Discover proven shortcuts to IT best practices that allow your organization to identify crucial change-related risks and implement a configuration management database (CMDB). This "stake in the ground" will quickly add value and put your organization on the path to better performance using ITIL's VisibleOps method.

Sustaining SOX Compliance: Best Practices to Mitigate Risk, Automate Compliance, and Reduce Costs

Since the adoption of SOX, much has been learned about IT compliance. Discover how to make SOX efforts more effective in "Sustaining Sox Compliance."

Tripwire and 21 CFR11: Ensuring Integrity and Trustworthiness of Electronic Clinical Data

Find out how a robust configuration audit and control system can enable electronic submissions and signatures, and validate electronic data, in compliance with the FDA's mandatory submission of clinical trials records.

Tripwire and Visible Ops

Discover the proven, four-phase approach to implementing ITIL best practices for service management with this step-by-step guide from one of the VisOps authors, George Spafford.

Tripwire Helps Meet FFIEC Requirements

Tripwire Takes a Controlling Interest in MiFID: B.I.S.S. MiFID

Tripwire has a proven value for financial services firms. Learn more by reading the MiFID benchmarking report from B.I.S.S. Research.

Überwachung der Dateiintegrität: Sichern der virtuellen und physischen IT-Umgebungen

Finden Sie heraus, welche Funktionen Ihre Lösung zur Überwachung der Dateiintegrität aufweisen sollte, um effektive Sicherheit und Kontrolle über Ihre virtuellen und physischen IT-Infrastrukturen zu gewähren.

Unplanned Work: The Silent Killer

Find out how unplanned work-those activities not mapped to any project, procedure or change request-is undermining the effectiveness and financial stability of IT organizations, and learn how to get it under control.

Unraveling GLBA: Compliance Basics for Managers, Officers and Directors of Financial Institutions

Learn about the financial institution safeguards included in the Gramm-Leach-Bliley Act (GLBA) and how your organization can institute an orderly set of compliance steps using an automated configuration audit and control solution.

Visibility and Control: Key to Accelerating Your Business

Discover how you can turn enterprise change from enemy to ally by incorporating a configuration auditing strategy that gives you visibility, accountability and control.

Was für die Sicherheit gut ist, ist auch gut für den operativen Bereich

Im Folgenden erfahren Sie, warum Konfigurationsassessment und Änderungsüberwachung für Stabilität im operativen Bereich sorgen und die Transparenz aller in IT-Systemen durchgeführten Änderungen die Grundlage für die Implementierung von Best Practices in der gesamten Organisation darstellt.

Why Configuration Assessment And Change Auditing Is Key to Operational Stability

Discover why configuration assessment followed by change auditing is key for operational stability, and that gaining visibility into all change to IT systems is the first step toward employing best practices across the organization.