Redspin
Redspin Research
Redspin Presentations
Redspin Videos
Redspin Data Sheets
Redspin White Papers
Technical Resources
Regulatory Resources
Security Management
Advisory
Contact Us Toll Free - 800-721-9177
Request A Quote
Security Blog
Assessment Services Assessment Tools Security Research About Us Contact Us

Redspin Research White Papers

Best Practices in Healthcare Information Security and Compliance
Successful healthcare information security starts with strong organizational leadership. Internal risk management is the key for ensuring information confidentiality, business process availability, and data integrity. The ability to adapt to continuously-evolving security threats can lead to enduring competitive advantage.
 Read White Paper


Trends in Healthcare IT:
Understanding HITECH, the HIPAA Security Rule, and How to Safeguard Your Electronic Protected Health Information (EPHI)
There are increasingly strong private and public incentives to implement electronic exchange of health information. Recent federal legislation mandates greater enforcement of laws for safeguarding electronic protected health information. Security risks should be mitigated to avoid costly penalties, protect company reputation, and gain competitive advantage.
 Read White Paper


Top Information Security Issues and Threats
Knowing your enemy is just as important in security as it is in traditional warfare. Understanding the specific incidents and process breakdowns from the past and being prepared for the future is helpful in moving your security program forward. Our hope is that you find this report equally valuable in coming to terms with planning and implementing your security program.
 Read White Paper


What Executives Need to Know About Web Application Development Security
It is common knowledge that security is not one task at a given point in time but an ongoing process, yet currently, the most common approach to securing a web application involves doing a single security test, usually a Web Application Security Assessment, when a development project is completed. While this is still a requirement for secure software development, this paper discusses why security needs to be incorporated earlier and throughout the software development life cycle (SDLC).
 Read White Paper


Mapping Application Security To Business Value: Considerations And Recommendations For IT And Business Decision Makers
This white paper outlines considerations and recommendations for reducing business risk by ensuring that your web applications are secure. Our goal is to present information that will be helpful not only to IT and information security professionals but business unit general managers as well. We will examine the process of managing applications throughout their lifecycle.
 Read White Paper


Information Security Considerations and Recommendations for IT and Business Decision Makers
This white paper outlines considerations and recommendations for reducing business risk through the use of an effective enterprise information security program. Our goal is to present information that will be helpful not only to IT and information security professionals but business unit general managers as well. Throughout, we take the perspective of presenting and considering choices based on optimizing a security program for effectiveness, efficiency and business impact.
 Read White Paper


Can Healthcare Leaders Learn Information Security Lessons from the Financial Services Industry?
This paper provides forward looking guidance to health IT managers and healthcare executives who could significantly reduce business risks associated with the confidentiality requirements of electronic health information (EHI). We compare the healthcare regulatory environment to that of financial services regarding the handling of customer confidential information. Because each industry segment has followed very similar paths, and because critical milestones of the financial services legislation were passed years before, the healthcare industry has the opportunity to learn from financial service provider mistakes. We discuss some of the lessons that can be learned from the financial services industry, how to avoid the pitfalls they have uncovered, as well as how to create an effective and efficient information security program.
 Read White Paper


The Greatest Risk to Your Website: 30% of Database-Driven Sites Vulnerable to SQL-Injection
SQL-injection refers to a set of methods and techniques designed to exploit an SQL database server that sits behind web applications. While most firewalls block all inbound traffic to the internal network, they typically allow traffic from the public internet to web applications through HTTP/HTTPS. There are a range of SQL-injection attack scenarios, all based around the insertion of simple characters into web-application input forms.
 Read White Paper





Home  |  Assessment Services  |  Assessment Tools  |  Security Research  |  About Us  |  Contact Us  |  Site Map
©2009 Redspin, Inc. | Privacy Policy
Site Design and Development by Petro Design Co.

Casino IT Assessments

External Network Security Assessments

Financial Services

Healthcare Security Assessments

Internal Network Security Assessments

NERC Cyber Security Assessments

PCI Services

Social Engineering

Special Security Assessment Services

Testing and Certification Program

Website Security Assessments

NMap XML2SQL

fTrace

Crackulator

Redspin Research

Redspin Presentations

Redspin Videos

Redspin Data Sheets

Redspin White Papers

Technical Resources

Regulatory Resources

Security Management Advisory

Corporate Ethos

Environmental Ethos

Redspin In The News

Press Releases

Upcoming Events

Careers

Contact Us

Request Pricing