This week there has been a lot of talk about security. IBM is concerned about data security, HP acquisition of ArcSight adds network security and McAfee is concerned about free content and security. For compliance, Vertify released its new PIM compliance software, while Protiviti releases portal for multilingual governance.

IBM Upgrades Data Security Monitoring

Data breaches and security are on the tip of everyone’s tongue this week. IBM’s (news, site) contribution in this respect is the announcement that it has just upgraded its InfoSphere Guardium software, which automatically monitors structured data and application usage across the enterprise and immediately alerts management to unusual activity.

The new release --  InfoSphere Guardium 8 -- allows organizations to simplify security and compliance regulations with a single set of automated and centralized controls for a broader range of enterprise databases and applications.

And while many similar kinds of software try to throw the widest blanket possible in order to catch as many different threats as they can, InfoSphere Guardium has very specific targets for very specific kinds of monitoring. These include:

  • Fraud Protection for SAP Systems: The new release of InfoSphere Guardium provides more detailed information about SAP users, making it easier for businesses to detect fraudulent activities without making any changes to their databases or applications.
  • Protection of SharePoint files: Provides constant monitoring of SharePoint repositories with continuous real-time monitoring controls making it easier to detect unauthorized access to repositories.
  • Support for the Mainframe: Offers enhanced database activity monitoring capabilities for IBM DB2 databases running on System z, allowing businesses to protect critical information from unauthorized access by administrators.

Additionally, businesses can now perform a series of automated tests to assess security vulnerabilities such as weak permissions that could leave the organization open to data loss or failed compliance audits.

There’s a lot more too. IBM says that current estimates put the cost of data breaches at between US$ 100 and US$ 200 per compromised record. That’s potentially a lot of money wasted for no reason at all. If you want to find out more have a look at IBM’s security website.

HP to Buy Network Security with ArcSight

Speaking of security, HP (news, site) has also been looking at that this week. With the 3Par deal only just inked, seems like HP-minus-Mark Hurd can’t keep its cheque book in its pants and is now waving it in the direction of network security provider ArcSight offering US$ 1.5 billion for the company.

Seems it was all a little bit too rich for ArcSight to say no and according to reports today, it’s all but a done deal.

Putting the collective energies of HP and ArcSight together will improve security, reduce risk and facilitate compliance at a lower cost for customers, and of course it will also add some extra va-va-voom to HP’s existing security portfolio.

While many are looking to the recent battle between HP and Dell for ownership of 3Par and waiting for another bidding war to kick off, it seems unlikely that will be the case as the boards of both companies have given it their approval and it seems HP has already seen off two other unnamed rivals in the wheeling-and-dealing around the negotiations.

Combined the two solutions will deliver:

  • Broader visibility: A comprehensive view of all events across IT operations.
  • Deeper context: The ability to detect threats and risks by correlating both activity and state changes.
  • Better continuity: A constant feedback loop between build, manage and monitor.

The deal gives HP a major presence in an industry in which some of its main tech rivals, including IBM  and EMC (news, site) have already planted themselves through acquisitions.

McAfee Warns About Watching Dirty Movies!

If the headline didn’t grab you, then the thought behind it might. Following the recent acquisition of McAfee by Intel, McAfee has announced the findings of its 2010 Digital Music & Movies Report: The True Cost of Free Entertainment.

While this might not be the realm of serious content management, it does include the use of video across the web and the risks companies are putting themselves in by using free content.

According to the report, McAfee researchers found that adding the word "free" to searches increases the risk of landing on a malicious site. McAfee also revealed that cybercriminals hide malicious content in music and movie-related sites, and even fan clubs sites.

In recent years, as consumers have increasingly watched video or downloaded music online, cybercriminals have shifted their attacks to include more dangerous websites, malicious ads and video viewing tools.

McAfee also discovered thousands of malicious and highly suspicious URLs associated with fan clubs or comments made on social media sites, such as YouTube and Twitter. Malicious advertising or "malvertising," where an ad is used to distribute malware or exploit the user's browser and is a common means of infection.

We won’t dwell on it too much but if you’re concerned and want to get a full copy of the report you can download it here

Virtify Releases PIM Compliance Software

For Product Information Management (PIM) compliance, Virtify (news, site) has announced the release of its new Virtify PIM Enterprise software, part of the Virtify Enterprise Content Compliance (ECC) Software Suite.

Virtify PIM is designed to help companies stay compliant with the new EU labeling standard, and is an off-the-shelf, Web-based product that enables the fast and efficient creation of PIM submissions in a collaborative, "best-practices" environment.

The PIM standard is being implemented to enable the efficient exchange and evaluation of product information for obtaining marketing authorization in Europe.

A key goal is to reduce the repetition of content across multiple countries and documents through a single, centralized XML submission. Moreover, electronic authoring and publishing for PIM XML must integrate with existing translation processes and software.

The PIM standard is currently in pilot. It is expected to move into production in 2011 for new approvals using the centralized procedure. A full migration of legacy product information will be required in the future.

Protiviti Releases Portal for Multilingual Governance

Finally, to governance now where Protiviti (news, site) has just announced the release of the latest version of its Governance Portal with enhanced multilingual capabilities for the implementation of GRC strategies across multinational companies.

The updated Governance Portal also offers advanced scheduling and simplified reporting. Protiviti says the new features allow customers to effectively allocate resources and improve their operational efficiency while providing meaningful, consolidated information for decision making.

While individual language translations have been available in previous versions of the Governance Portal for some time, this latest release immediately lets users access the same Governance Portal instance in their local language, ensuring uniform communication and consolidated reporting across an international user community.

Currently supported languages include Dutch, English, French, Japanese, Portuguese and Spanish, as well as a simplified translation capability that enables Protiviti to quickly add additional languages or business terms.