PCI DSS 3.2: Is this really the end? TAGS: PCI DSS Has the era of major revisions to the Payment Card Industry Data Security Standard (PCI DSS) come to an end? …Continue reading →
April 27, 2024
Information Security Leader, Author, Instructor and Speaker
2015: The InfoSec Year in Review TAGS: car hacking | data breach | EMV | OPM | PCI DSS | plane hacking | safe harbor We’re wrapping up quite a year in the world of cybersecurity! As we entered 2015, the world was just winding …Continue reading →
Compliance in the Cloud TAGS: compliance | HIPAA | PCI DSS As enterprises around the world adopt cloud computing strategies, personally identifiable information, health records, credit card numbers and other regulated …Continue reading →
Get Ready for PCI DSS 3.1! TAGS: encryption | PCI DSS | SSL | TLS Get ready, everyone – the next version of PCI DSS is on the books! If it seems like you’re hearing …Continue reading →
Optional No More: Five PCI DSS Requirements Become Mandatory June 30th TAGS: PCI DSS | penetration testing | physical security If you reviewed the impact of the PCI DSS 3.0 changes on your organization two years ago, you might recall …Continue reading →
Exploring PCI DSS Requirement 2 Compliance Issues TAGS: configuration management | PCI DSS | security standards Readers of the 2014 Verizon PCI DSS compliance report may be surprised to learn that 48.9% of companies failed to …Continue reading →
Could Apple Pay fundamentally change PCI DSS compliance? TAGS: Apple Pay | NFC | PCI DSS Apple Pay, the recently released mobile payment system on Apple’s iPhone 6, is making waves in the security community and …Continue reading →
Can legal departments complement IT security? TAGS: compliance | GLBA | HIPAA | PCI DSS Legal teams have long played an important role in information security and compliance programs. The expertise that attorneys bring to …Continue reading →
PCI DSS Compliance Health Check TAGS: patching | PCI DSS | penetration testing | vulnerability testing How are you doing with PCI DSS compliance? Have you taken a close look at your controls recently to ensure …Continue reading →
Getting Started with Automated Penetration Testing TAGS: metasploit | nessus | PCI DSS | penetration testing | vulnerability management The automated penetration test plays an important role in the security professional’s toolkit. As part of a comprehensive security program, …Continue reading →
Tag Cloud
antivirus application security CISSP cloud computing cloud security compliance content filtering cybersecurity cybersecurity skills database security data breach data loss prevention DDoS DLP encryption endpoint security firewall firewalls HIPAA IDS incident handling incident response IPS malware mobile devices mobile security multifactor authentication NAC Networking network security PCI DSS penetration testing privacy product review risk assessment security certification security certifications security management security policy SSL VPN vulnerability management vulnerability scanning web security wireless security