Security Insider - Podcast Edition

System Logging on the IBM i: Getting Started

Townsend Security — Fri, 13 Jan 2012 09:57:35 -0800

Like other IT projects, the implementation of up-to-date logging requires careful planning. For example: systems need to be monitored and the parameters related to security and archiving need to be defined.

This podcast discusses what system logging is, how logging can help you meet compliance requirements, and what to look for in a logging solution. Additionally, learn how Townsend Security can help you transmit the logs from your IBM to any SIEM console.

IBM i FIELDPROC Performance: Speed Matters

Townsend Security — Fri, 02 Dec 2011 09:48:33 -0800

FIELDPROC has made encryption on the IBM i much easier. It is now possible to encrypt your databases with NO APPLICATION CHANGES! The question is, what are the performance impacts?
Patrick Townsend explains why the speed of your encryption is important, what to look for when deciding on a solution, and simple tests that listeners can do to help decide which FIELDPROC encryption solution is right for them.

HIPAA, HITECH Act, & Encryption Key Management

Townsend Security — Tue, 04 Oct 2011 14:52:07 -0700

Today's topic is HPAA and the HITECH Act, and what they say about encryption and key management. Additionally, learn how to avoid breach notifications and what Townsend Security can do to help your organization meet these compliance requirements.

Encryption Key Management and Microsoft SQL Server 2008

Townsend Security — Fri, 01 Jul 2011 10:13:21 -0700

Learn about SQL Server 2008 EKM and what Microsoft customers should be thinking about when they consider using SQL Server EKM for encryption. Also, learn what role a Hardware Security Module or HSM plays and what to look for when selecting an encryption key management HSM.

Emerging Data Privacy Regulations

Townsend Security — Tue, 12 Apr 2011 11:41:08 -0700

Organizations need to comply with a growing number of data privacy regulations. Patrick discusses the various regulations - such as PCI, HIPAA/HITECH, and state privacy laws - as well as how to meet the regulations and what it is like to have an audit.

Benefits of Transparent Encryption on IBM i

Townsend Security — Wed, 06 Apr 2011 09:56:35 -0700

Transparent encryption is new to IBM i 7.1. Learn about the new FieldProc capabilities and the benefits of transparent encryption, as well as what FieldProc is and isn’t. Additionally, Patrick discusses the new security risks associated with the new FieldProc APIs and what Townsend Security is doing to help the people who have moved, or are thinking about moving to the latest IBM OS release.

Key Management for Microsoft Windows

Townsend Security — Fri, 25 Mar 2011 08:54:27 -0700

Compliance regulations require proper key management. Learn why encryption key management is a concern for Microsoft Windows users, some of the technical challenges in using good key management, and how Townsend Security can help Microsoft partners.

Data Privacy for the Non-Technical Person

Townsend Security — Tue, 22 Mar 2011 08:43:48 -0700

Learn what constitutes personally identifiable information (PII) and how to protect it with strong AES encryption and key management. Additionally, learn about compliance regulations and how your organization can begin to develop a security policy.

PCI DSS v2.0: Changes for Your Organization

Townsend Security — Thu, 24 Feb 2011 09:09:39 -0800

New PCI Data Security Standards have been announced. Patrick Townsend of Townsend Security, a PCI SSC participating organization, speaks on best practices for meeting PCI compliance regulations and provides insight and commentary on the changes in compliance and enforcement.

Key Management Best Practices: What New PCI Regulations Say

Townsend Security — Wed, 19 Jan 2011 09:11:17 -0800

The new PCI Data Security Standards (PCI DSS v2.0) are here and we’ve gotten a lot of questions about the changes related to encryption key management. Because we work with a lot of companies going through PCI compliance audits and reviews, the new standards just confirm the trends we’ve seen over the last few months on how QSA auditors and security professionals view encryption key management, and what they see as the minimum requirements for managing keys.

In this podcast, Patrick Townsend speaks on current best practices, as well as what PCI has to say about integrated key management (why it isn't a good thing), dual control, separation of duties, and split knowledge.

The Data Protection Trifecta: Tokenization, Encryption, and Key Management

Townsend Security — Mon, 16 Aug 2010 15:44:02 -0700

Tokenization, Encryption, and Key Management are discussed and why each technology is a necessary component for a comprehensive data protection plan. Additionally, Patrick discusses why NIST certification is important, as well as what VISA has to say regarding best practices with these technologies.

Achieving Exemption from the HITECH Law

Townsend Security — Thu, 06 May 2010 15:06:18 -0700

HIPAA and HITECH are mandating encryption of sensitive medical and personal information. But all encryption is not created equal. Find out what NIST certification is, and how it gives you safe harbor status even if you experience a major data loss.

The Many Flavors of Data Protection: Deciding What’s Right for Your IBM i Enterprise

Townsend Security — Mon, 29 Mar 2010 14:07:49 -0700

Patrick Townsend discusses data security and the technologies available to protect your IBM i – from tokenization to various types of encryption. You’ll discover the uses for each, and which best fit your data protection strategy. Includes tips on choosing the right technology.

The Business Case for Tokenization

Townsend Security — Tue, 29 Dec 2009 13:00:15 -0800

Tokenizing data eases compliance and saves money. In this podcast, Patrick Townsend explains how tokenization and encryption differ, and how making it part of your data security strategy decreases your chance of data loss, saves you time and hassles.

Data Tokenization: Separating Fact from Myth

Townsend Security — Tue, 27 Oct 2009 15:51:48 -0700

Tokenization is a hot topic in data security and the payment card industry today. But there is misinformation in the marketplace. Patrick Townsend talks about what tokenization is and is not, and offers advice on how it can help you comply with data security regulations.

PCI & the Audit: What Mid-Size Companies Need to Know

Townsend Security — Wed, 12 Aug 2009 13:33:00 -0700

Level 2 merchants are about to be put under the PCI audit microscope. Patrick Townsend gives a brief overview about what this means to your business, plus how and when to prepare for this and other pending regulatory changes.

Secure File Transfer Changes for the IBM i

Townsend Security — Tue, 14 Jul 2009 10:26:03 -0700

A discussion of existing and new regulations that are changing the way System i users handle secure file transfer. Also includes information about solutions available to help the Enterprise meet today’s compliance challenges.

The Government's Growing Role in Data Security

Townsend Security — Fri, 26 Jun 2009 09:02:57 -0700

More and more government agencies are getting involved in data security and encryption. NIST powers are on the rise, and more stringent state and federal legislation is driving businesses large and small to invest in data security. Find out why, and what this means to the future of data encryption.

XML in Tough Times

Townsend Security — Wed, 03 Jun 2009 15:28:31 -0700

Townsend CEO discusses XML and web services for the IBM i. Includes case studies of Pottery Barn and Bass Pro Shops. They increased revenue & decreased costs, your Enterprise can too.

Encryption Key Management

Townsend Security — Tue, 02 Jun 2009 09:03:32 -0700

Encryption Key ManagementEncryption key management is in the spotlight thanks to auditors and pending laws. Get key manager basics, and tips for evaluating a solution for your Enterprise.

RSA & COMMON Expo Recap

Townsend Security — Tue, 12 May 2009 14:59:33 -0700

This interview with Patrick Townsend of Patrick Townsend Security Solutions recaps his experiences at the recent RSA and Common 2009 Expos. The podcast serves as a wrap-up of the tradeshows and highlights significant developments in data security, encryption, and key management.

Massachusetts Privacy Law - 2010

Townsend Security — Thu, 30 Apr 2009 12:25:31 -0700

The Massachusetts Privacy law goes into effect January 1, 2010. Find out how it will affect your Enterprise and your IT infrastructure in this conversation with the President and CEO of Patrick Townsend Security Solutions.

Intro to Patrick Townsend and His Company

Townsend Security — Thu, 30 Apr 2009 12:20:59 -0700

An introduction to Patrick Townsend Security Solutions by the company’s President & CEO Patrick Townsend. This interview covers the company’s origins, its current focus, and what's on the horizon for the data security industry.