Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Risk

7/27/2010
08:42 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

AT&T Extends Security Consulting Service With New Certification Program

Program offers a single-service approach to assess the security posture of a business

DALLAS, July 27 /PRNewswire-FirstCall/ -- AT&T*, a leader in managed cloud based security, today announced the availability of the AT&T SureSeal(SM) Security Certified Program, designed to assess an enterprise's information security program or critical business components and certify that they meet industry standards.

Completion of the AT&T SureSeal(SM) Security Certified Program requires compliance with open and published standards taken directly from regulatory requirements and industry standards. These standards are generally accepted in the industry, and AT&T openly shares the standards and assessment techniques with customers.

"Successful business leaders know a critical step in growing strong and long-lasting customer relationships is building trust," said Todd Waskelis, Vice President, Security Consulting Services, AT&T Consulting Solutions. "With the AT&T SureSeal(SM) Security Certified Program, an enterprise can now communicate through a credible and impartial third party like AT&T the many important steps they've taken to protect their critical infrastructure and their customers' private data."

The AT&T SureSeal(SM) Security Certified Program process includes two key phases:

-- The assessment phase consists of a detailed analysis of a business' networks and data flow. Typically, this phase is performed through documentation reviews, interviews and technical analysis. -- Once a business or organization has successfully achieved compliance with the selected standards, it is certified for a period of one year, renewable annually. Once certified, businesses can generate reports for auditors, regulators and other parties and also secure access to the full Certification Assessment Report, which details all regulations and standards that are evaluated, along with all findings.

Failure to meet compliance requirements can result in increased audits, penalties, transaction costs and lower revenues for an enterprise. The AT&T SureSeal(SM) Security Certified Program offers a single-service approach to assess the security posture of a business. The certification program also provides impartial third-party credibility for organizations that want to communicate that their information security program follows best practices.

"We were pleased with the thorough review of our processes and procedures by the very knowledgeable consultants at AT&T," said Valerie Riley, spokesperson Info Tech, Inc., an AT&T customer. "The meticulous work of the AT&T Security Consulting and risk management team is the real value behind the certification."

AT&T delivers a suite of security, business continuity and Consulting services to help assess vulnerabilities, protect infrastructure, detect attacks and respond to suspicious activities and events on customer premises and in the network cloud. AT&T SureSeal(SM) Security Certified Program is part of an exciting and growing portfolio of security consulting and risk management services from AT&T. More information on AT&T's security consulting offerings can be found at http://www.corp.att.com/consulting/security/.

*AT&T products and services are provided or offered by subsidiaries and affiliates of AT&T Inc. under the AT&T brand and not by AT&T Inc.

About AT&T

AT&T Inc. (NYSE: T) is a premier communications holding company. Its subsidiaries and affiliates - AT&T operating companies - are the providers of AT&T services in the United States and around the world. With a powerful array of network resources that includes the nation's fastest 3G network, AT&T is a leading provider of wireless, Wi-Fi, high speed Internet and voice services. A leader in mobile broadband, AT&T also offers the best wireless coverage worldwide, offering the most wireless phones that work in the most countries. It also offers advanced TV services under the AT&T U-verse and AT&T | DIRECTV brands. The company's suite of IP-based business communications services is one of the most advanced in the world. In domestic markets, AT&T Advertising Solutions and AT&T Interactive are known for their leadership in local search and advertising. In 2010, AT&T again ranked among the 50 Most Admired Companies by FORTUNE magazine.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Manchester United Suffers Cyberattack
Dark Reading Staff 11/23/2020
As 'Anywhere Work' Evolves, Security Will Be Key Challenge
Robert Lemos, Contributing Writer,  11/23/2020
Cloud Security Startup Lightspin Emerges From Stealth
Kelly Sheridan, Staff Editor, Dark Reading,  11/24/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win an Amazon Gift Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-27218
PUBLISHED: 2020-11-28
In Eclipse Jetty version 9.4.0.RC0 to 9.4.34.v20201102, 10.0.0.alpha0 to 10.0.0.beta2, and 11.0.0.alpha0 to 11.0.0.beta2, if GZIP request body inflation is enabled and requests from different clients are multiplexed onto a single connection, and if an attacker can send a request with a body that is ...
CVE-2020-29367
PUBLISHED: 2020-11-27
blosc2.c in Blosc C-Blosc2 through 2.0.0.beta.5 has a heap-based buffer overflow when there is a lack of space to write compressed data.
CVE-2020-26245
PUBLISHED: 2020-11-27
npm package systeminformation before version 4.30.5 is vulnerable to Prototype Pollution leading to Command Injection. The issue was fixed with a rewrite of shell sanitations to avoid prototyper pollution problems. The issue is fixed in version 4.30.5. If you cannot upgrade, be sure to check or sani...
CVE-2017-15682
PUBLISHED: 2020-11-27
In Crafter CMS Crafter Studio 3.0.1 an unauthenticated attacker is able to inject malicious JavaScript code resulting in a stored/blind XSS in the admin panel.
CVE-2017-15683
PUBLISHED: 2020-11-27
In Crafter CMS Crafter Studio 3.0.1 an unauthenticated attacker is able to create a site with specially crafted XML that allows the retrieval of OS files out-of-band.