default Download

With information in the Cloud, suddenly a new team of people has access to your data. At every turn, they are working hard to protect, tackle, and block access to sensitive data in ‘your’ infrastructure. In fact, to protect your data in the Cloud, several of the fundamental building blocks of a secure enterprise IT infrastructure have to be re-envisioned.

pdf Download (1.69 MB)

The Definitive Cybersecurity Guide for Directors and Officers. Companies increasingly use consumer data, including personal information, to stay competitive; this includes the capability to analyze their customers’ demographics and buying habits, predict future behaviors and business trends, and collect and sell data to third-parties.

pdf Download (727 KB)

To assist ISF Members, the annual ISF Threat Horizon report takes a two-year perspective of major threats, describing potential implications and providing recommendations to organisations.

pdf Download (932 KB)

HPE SecureData includes next generation technologies, Hyper Format-Preserving Encryption (FPE), Hyper Secure Stateless Tokenization (SST), HPE Stateless Key Management, and data masking. HPE SecureData “de-identifies” data, rendering it useless to attackers, while maintaining its usability, usefulness, and referential integrity for data processes, applications and services. HPE SecureData neutralizes data breaches by making your protected data absolutely worthless to an attacker, whether it is in production, analytic systems, or test/development systems, such as training and quality assurance.

pdf Download (1.23 MB)

Conventional approaches to deploying security controls seldom provide appropriate or sufficient protection for mission-critical information assets. The ISF Protection Process is astructured and systematic five-phase process for determining the approaches required to deliver comprehensive, balanced and end-to-end protection.

default Download

Cloud computing is one of the largest, most dramatic forces changing the IT landscape today. Driven by key economic advantages, as well as factors that re-shape how fast enterprises can address global markets, and develop new services, there are substantial business benefits to the cloud. The savings can be substantial.

default Download

HPE Enterprise Secure Key Manager (ESKM) and HPE SecureData along with HPE Helion enable enterprises to extend data to the cloud computing solutions with a high level of security assurance.

pdf Download (3.87 MB)

Designed to be as straightforward to implement as possible, ISF tools and research offer organisations an ‘out of the box’ approach for addressing a wide range of challenges – whether they be strategic, compliance-driven or process approaches. ISF tools can be used individually, or together as a suite, to complement an organisation’s existing approaches.

default Download

Key management for encryption applications creates manageability risks when security controls and operational concerns are not fully realized. Various approaches to managing keys are discussed with the impact toward supporting enterprise policy.

default Download

Discover how enforcing endpoint protection with key management solutions can help you continuously protect information generated by an increasingly mobile workforce.

  pdf Download (757 KB)

Cybersecurity is of paramount concern for senior management and security professionals alike. The growing scope, complexity, frequency and cost of cyberattacks are forcing companies to focus significant time and attention to address these risks.

In this whitepaper, Michael Rasmussen - The GRC Pundit - explains why many organizations should strongly consider a best-in-breed approach to managing data privacy management over alternatives including spreadsheets or existing enterprise GRC solutions.

Governance, risk, and compliance (GRC) as a means to reduce process redundancy, deliver risk intelligence, and improve business performance has captured the attention of leadership teams across the enterprise. GRC is also now embracing IT and security teams, often catching them unprepared to champion their unique requirements.