SearchSecurity.com's Ask the Experts is the place for information security professionals to get answers to technical questions about their organization's security. Mike is one of the resident Ask The Security experts at SearchSecurity.com, answering questions about application and platform security. Below are webcasts Mike has presented for SearchSecurity.com. They are free and available on-demand so you can learn at your convenience. In this webcast, discover the many procedures, tools and policies available to Windows security administrators to secure an enterprise's electronic communications.  This 15-minute podcast helps assess the evolving threats to enterprise communications. Mike investigates the severity of phishing and IM virus threats, and spends time assessing the effectiveness and requirements of unified messaging security products.  This Podcast examines some of the most common database attacks, including SQL injection, cross-site scripting and weak/default passwords. Learn how you can protect your database from these threats and listen to this Podcast now.  Learn how to harden a Web server and apply countermeasures to prevent hackers from breaking into a network. Study at your own pace and learn how to implement security policies and test a Web site's security, as well as how to handle a breach should the unspeakable happen. Michael Cobb will also arm you with tactics for creating a human firewall to combat problems such as phishing and spyware. This course consists of an entrance exam, three lessons -- each consisting of a webcast, technical paper and quiz -- and a final exam. You'll also find handy checklists that you can download and use on the job. All of these resources are available on-demand so you can learn at your convenience.  This on-demand webcast reviews five of the most common attacks against applications: active content, cross-site scripting, denial of service and SYN attacks, SQL injection attacks and malicious bots. For each, Michael Cobb explains how they work, the damage they're capable of doing and how pervasive they are. He also arms you with:

• Specific countermeasures for each of these attacks
• The security policies and security defense technologies worth considering for safeguarding applications against each attack
• How to improve incident response in the event of an attack
• A quick overview of other, less common (but potentially damaging) application attacks that you need to be aware of

All of these resources are available on-demand so you can learn at your convenience.