Becoming PCI Compliant for the First Time

Becoming PCI Compliant for the First Time

Becoming PCI Compliant for the First Time Becoming PCI compliant for the first time? Becoming PCI compliant can be an overwhelming undertaking if you are unsure of where to start. With approximately 394 controls, this comprehensive data security standard can be a large undertaking that is best tackled with expert assistance. The first step toward … Read more

IT Regulatory Standards Are an Alphabet Soup

IT Regulatory Standards

IT Regulatory Standards Are an Alphabet Soup IT regulatory standards got you down? If you work in IT or IT compliance, you’ve probably heard of the “Alphabet Soup” of regulatory standards. Think SSAE 16, SOC 2, HIPAA, PCI DSS, FISMA, ISO 27001, and others, of course. However, what do they all really mean?  Which one is right for me? … Read more

PCI DSS: 15 Common PCI Compliance Gaps

15 Common PCI Compliance Gaps

Common PCI compliance gaps?  You bet!  We can identify 15 of them. The need for enhanced security is becoming more and more obvious every day. As the security landscape changes, the threats to our sensitive data become more serious, and as a result, the controls that we put in place have become stronger. We see a … Read more

Mastering a Risk Assessment

Mastering a Risk Assessment

In light of the recent news of the data breach at Anthem Blue Cross/Blue Shield, risk assessment is our theme today. We welcome this guest post from our partner, KirkpatrickPrice….   Performing a Risk Assessment is a critical component of any Information Security Program. It’s mandated by several frameworks (SSAE 16, SOC 2, PCI DSS, … Read more

Framework Updates for HIPAA, ISO27001, FISMA, PCI

Framework updates for HIPAA, ISO 27001, FISMA and PCI DSS have been the hot topic of discussion over the last year. As the world continues to be pressured with information security challenges, over the last 12 months, major compliance frameworks have recently been updated or are currently updating. In today’s current climate, incidents and breaches are … Read more

What Are the New PCI 3.0 Requirements?

GUEST BLOG By Sarah Morris, KirkpatrickPrice Are you aware of the changes to PCI 3.0? The Payment Card Industry (PCI) Council has developed new changes to the PCI DSS requirements by asking one question: What will improve payment security? While the core 12 security areas will remain the same, several new sub-requirements have been implemented … Read more