The X-Force Mid-Year Trend and Risk Report containing the latest information on computer security threats and trends from the first half of 2009. More than just a "report," the X-Force Trend and Risk Report provides important information about all aspects of threats that affect Internet security, including software vulnerabilities and public exploitation, malware, spam, phishing, Web-based threats, and general cyber criminal activity.

The IBM X-Force Trend and Risk Report is produced twice per year: once at mid-year and once at year-end. This report provides statistical information about all aspects of threats that affect Internet security, including software vulnerabilities and public exploitation, malware, spam, phishing, web-based threats, and general cyber criminal activity. They are intended to help customers, fellow researchers, and the public at large understand the changing nature of the threat landscape and what might be done to mitigate it.

The IBM X-Force Trend and Risk Report is produced twice per year: once at mid-year and once at year-end. This report provides statistical information about all aspects of threats that affect Internet security, including software vulnerabilities and public exploitation, malware, spam, phishing, web-based threats, and general cyber criminal activity. They are intended to help customers, fellow researchers, and the public at large understand the changing nature of the threat landscape and what might be done to mitigate it.

The IBM X-Force Trend and Risk Report is produced twice per year: once at mid-year and once at year-end. This report provides statistical information about all aspects of threats that affect Internet security, including software vulnerabilities and public exploitation, malware, spam, phishing, web-based threats, and general cyber criminal activity. They are intended to help customers, fellow researchers, and the public at large understand the changing nature of the threat landscape and what might be done to mitigate it

White paper. An IBM publication featuring analysis from Gartner. A look at cloud computing and its security issues. Organizations potentially can gain a competitive or cost advantage through selective adoption of cloud computing, but not without first taking a comprehensive look at the associated risks, ensuring that they are consistent with business goals, along with the expectations of regulators, auditors, shareholders and partners. Assessing the risks associated with cloud computing and how they can impact critical applications and services in the organization is a critical factor in this decision-making process. Organizations can also consider options to mitigate and manage these IT security risks.

The IBM X-Force® Threat Insight Quarterly is designed to highlight some of the most significant threats and challenges facing security professionals today. This report is a product of IBM Managed Security Services and the IBM X-Force research and development team. Each issue focuses on specific challenges and provides a recap of the most significant recent online threats.

This white paper explores the major access management scenarios that organizations face and shows how the IBM Tivoli access management portfolio can help organizations address these scenarios by applying industry-leading identity, data, and application security capabilities.

White paper. IBM delivers identity and access management governance with accountability, providing a holistic, policy-based approach to role management, entitlement management, privileged identity management, separation of duties and access certification.

"With all the attention given to the increasing sophistication of threats, and the security implications of technology trends such as Virtualization and Cloud Computing, is your enterprise ready for tomorrow’s security risks? Download this informative white paper from Enterprise Management Associates® (EMATM) to learn about the broad domains of controls enterprises must consider in order to build a solid foundation for IT security management, and how IBM offers solutions that combine breadth as well as depth in security expertise backed by primary research and development that only IBM can deliver."

With Tivoli Continuous Data Protection for Files, you can help optimize recovery times for file servers and user end points.

This white paper highlights the business value that organizations have realized by implementing IBM Tivoli Identity and Access Assurance. It provides examples of how IBM clients are addressing short-term requirements while positioning for long-term growth with this solution.

In this paper, ENTERPRISE MANAGEMENT ASSOCIATES® (EMA™) analysts examine today’s security challenges in light of the opportunity to build security directly into information systems, and the role of today’s finely grained technologies for identity and access management that make this more proactive approach possible.

Security managers may work for midsize or large organizations; they may operate from anywhere on the globe. But inevitably, they share a common goal: to better manage the risks associated with their business infrastructure. Increasingly, Web application security plays a significant role in achieving that goal.

The IBM X-Force® Threat Insight Quarterly is designed to highlight some of the most significant threats and challenges facing security professionals today. This report is a product of IBM Managed Security Services and the IBM X-Force research and development team. Each issue focuses on specific challenges and provides a recap of the most significant recent online threats.

(Whitepapers) IBM Tivoli® Security Information and Event Manager and its HIPAA module address these challenges with an automated solution that monitors and reports on user access and activity across the enterprise.

This white paper shows how organizations can reduce costs and improve ROI by implementing IBM Tivoli Security Management for z/OS on IBM System z mainframes. It also provides specific examples of how IBM customers have realized tangible business value from this solution.

At a time when the global business community struggles to enhance internal controls and maintain long-term viability, improvements in governance, risk, and compliance (GRC) programs can be well worth the investment. But as software vendors target the growing GRC market, it becomes increasingly difficult to distinguish what they offer. Forrester’s GRC TechnologyEcosystem provides a foundation for identifying how various GRC technologies fit into existing programs and the important roles they can play.

Help control costs with easy implementation and integrated service and administration.

Authors: University of Michigan, IBM (PDF 740 KB) Abstract: For many centuries military lines of battle and clearly identified national borders defined the frontiers of security. In WWI and WWII the battlefront in effect served to define the borderline of national sovereignty. But more recently in wars of insurrection, insurgency and global terrorism, potential threats to security are no longer clearly defined by borders. In today's world, border security, homeland security and national security are inherently intertwined. This white paper addresses a very pressing question for public officials, policy and budget planners and security professionals — how do we assess security in a globalised and interpenetrated world? How do we know if investment of scarce resources in security systems results in the mere appearance of security or the real thing? It is a difficult question. To answer this question, we start with the issue that motivates our concern in the first place - the deman

Although the benefits of cloud computing are clear, so is the need to develop proper security for cloud implementations. The following whitepaper provides an overview of key security issues related to cloud computing, concluding with the IBM Point of View on a secure cloud architecture and environment.