Industry analyst Mark Diodati describes the leaders of the identity management market; IBM’s Joe Anthony explains Big Blue’s strategy and Novell’s Dale Olds on user-centric identity.

 

 Standard Podcast [26:43m]: Play Now | Play in Popup | Download

Chris Farrow talks about the changes ahead for the current PCI standard and how compensating controls should be used, why they are confusing and how to address compensating controls with your assessor. He is co-founder and vice president of the PCI Security Vendor Alliance. Farrow serves as the founder and director of the Center for Policy & Compliance, a research and advisory group created by Configuresoft.

Diana Kelley discusses some of the headaches companies are encountering during the compliance process and how to choose an assessor. Kelley is vice president and service director at the Burton Group, where she focuses her research on security issues, including compliance.

Dan Jones, director of IT at the University of Colorado, explains his school’s ongoing PCI compliance initiatives. Jones says compliance is an ongoing process.

 

 Security360 [19:43m]: Play Now | Play in Popup | Download

Andy Jones, a researcher with the UK-based Information Security Forum, explains how to develop an effective security strategy to deal with large projects and defend the budget. Paul Adamonis, director of security solutions at Forsythe Security talks about how to navigate industry consolidation by developing a buying strategy; and Sandra Kay Miller gives her observations of the industry and explains why some companies may not fare well in this era of consolidation. (Runtime: 25:01).

 

 Security360: Play Now | Play in Popup | Download

Burton Group senior analyst Trent Henry explains the most effective approach to endpoint security and the pros and cons of full disk encryption, Roger Herbst, a senior IT specialist with the Timken Company talks about how he led his company’s deployment of full disk encryption on about 5,000 employee laptops, and Charles King, principal analyst of Pund-IT Research discusses Seagate’s new encrypted hard drive. (Runtime: 20:43)

 

 Security360: Play Now | Play in Popup | Download

SearchSecurity.com’s Security360 podcast offers fresh perspectives — from vendors, experts and infosec pros — on a variety of complex information security issues. In our debut episode, we examine the state of security for service-oriented architectures and Web services. ZapThink analyst Jason Bloomberg offers an overview of the security issues unique to SOA environments, while executives from SAP and Oracle discuss how they address SOA security in their software. (Runtime: 29:45)

 

 Security360: Play Now | Play in Popup | Download