Tripwire Resources

Five Critical Steps of a Complete Security Risk and Compliance Lifecycle

White Paper
Security and compliance remain at the forefront of concerns facing security leaders today. Tackling the challenge of finding and addressing risks in the enterprise while demonstrating compliance with increasingly demanding regulations requires the…
Read More

Top Five NERC CIP Audit Fails

White Paper
Data breaches and the evolving threat landscape are in the global news nearly every day. In this white paper, you'll read insights from investigating these very public breaches that show that attackers were often at work long before the companies…
Read More

The Executive's Guide to the Top 20 Critical Security Controls: Key Takeaways and Improvement Opportunities

White Paper
This publication was designed to assist executives by providing guidance for implementing broad baseline technical controls that are required to ensure a robust network security posture. The author, a security and compliance architect, examined…
Read More

Getting the Most Value from Vulnerability Management and Compliance Programs

White Paper
Enterprise Vulnerability Management (VM) and compliance programs reach their full potential when they are built on well-established foundational goals and tie their output back to those goals. Today’s enterprise-class, state-of-the-art VM and…
Read More

Understanding Your Attack Surface: The First Step in Risk-based Security Intelligence

White Paper
As chief information security officer (CISO), it’s now a job requirement to effectively communicate with your non-technical C-suite and board of directors—preferably not just after there’s been a breach. This is the first in a…
Read More

MAS TRM Guidelines: The Ultimate Authority on Financial Services Security

White Paper
The Monetary Authority of Singapore (MAS), frequently considered the world’s banking and financial services authority, recently issued new legislation, the Technology Risk Management (TRM) guidelines, which will completely change security…
Read More

Calculating the Financial Impact of a Vulnerability Management Program: How Tripwire Solutions Improve Security, Compliance and Operations

White Paper
Typically, enterprises employ a variety of reactive security tools that that help identify and alert when there are issues but don't offer a proactive approach to helping enterprises measure, manage and reduce their network security risk, in an…
Read More

PCI DSS and the "Top 20" Critical Security Controls

White Paper
The majority of IT security guidance to industry can be placed into one of these categories: benchmarks, standards, frameworks and regulations. An ongoing challenge is how to navigate the myriad source materials, identify the most salient and…
Read More

Critical Security Controls: From Adoption to Implementation

White Paper
The Critical Security Controls (CSCs), a well-known roadmap for enterprise information assurance published and maintained by the Council on CyberSecurity, is being widely adopted across financial and government sectors, according to the second SANS…
Read More

Windows XP End of Service: Practical Options for Industrial Applications

White Paper
Windows XP systems may still be remarkably pervasive throughout your enterprise, leading to various strategies for addressing the risk that has resulted from its End of Service status.  Industrial firewalls combined with a security…
Read More

What's Good for Security is Good for Compliance

White Paper
Almost every organization, regardless of industry, faces compliance mandates, and without a doubt, compliance is here to stay. Why? Because at its roots, the real goal of any compliance mandate is to protect systems and data, and therefore an…
Read More

Achieving Trust After a Breach: "Which Systems Can I Trust?"

White Paper
When an organization has been compromised, some of the first questions to ask are critical:  “Which systems can I trust?”  “What was done to compromise my systems or data?”  “How quickly can I…
Read More