PCI DSS
Tag details
Welcome to the 'PCI DSS' tag page at Technorati. This page features content from the farthest reaches of the Blogosphere that authors have "tagged" with 'PCI DSS'.
Latest blogosphere posts tagged “PCI DSS”
-
SAS 70 Audits and PCI DSS Assessments | Expert Advice from an Auditor
Regulatory Compliance, Governance and Security —
Authority: 112
SAS 70 audits and PCI DSS assessments are truly starting to dominate the regulatory compliance landscape. For a large number of our firm’s clients, we actively assess them for yearly SAS 70 and PCI DSS compliance. The chatter of late is surrounding what efficiencies of scale, if any, can be had by conducting both ...14 hours ago -
Radiant Systems and VAR being sued for Data Compromises
Society of Payment Security Professionals - Payment Security Blog —
Authority: 93
A recent press release announced that Radiant Systems and a reseller of their products called Computer World are being sued in a class action suit for “millions of dollars” for issues that resulted in hundreds of instances of identity theft. This is a very interesting wrinkle in the PCI DSS space. Those of us ...17 hours ago -
“After Data Loss ID Theft Soars”….really?
Society of Payment Security Professionals - Payment Security Blog —
Authority: 93
I have worked in payment card security since 2000 when I was involved with Visa in writing/re-writing/updating the CISP. Since that time I have had opportunity to work with Visa and MasterCard, work as a QSA, and QSA Trainer. During that time I have had many opportunities to work with compromised companies and ...5 days ago -
PCI DSS and Service Providers | Common Examples of these Entities
Regulatory Compliance, Governance and Security —
Authority: 112
The Payment Card Industry Data Security Standards (PCI DSS) provisions call for both merchants and service providers to become PCI DSS compliant. Though the term “merchant” is easily understood, the term “service provider” has created some confusion as to who these entities really are. With that said, here ...1 week ago -
PCI DSS Compliance and the Major Payment Brands | What you may NOT Know
Regulatory Compliance, Governance and Security —
Authority: 112
Merchants and service providers seeking to become Payment Card Industry Data Security Standards (PCI DSS) compliant may not actually know that the five (5) major payment brand also have their own security risk management and compliance programs. However, rest assured that, by and large, these security risk ...1 week ago -
PCI DSS Readiness Assessments | Hire a Qualified Security Assessor (QSA)
Regulatory Compliance, Governance and Security —
Authority: 112
PCI DSS compliance can be an arduous undertaking for many service providers and merchants in today’s business arena. Add to the fact the many organizations are unsure of the roadmap for PCI DSS compliance, it makes sense to hire a Qualified Security Assessor (QSA) in helping you conduct a PCI DSS Readiness ...1 week ago -
DLP is Short for Disturbing Lack of Process?
Information Security Resources —
Authority: 534
By Danny Lieberman , Security Expert and Founder of Software Associates Ted Ritter has suggested that we rename DLP a Disturbing Lack of Process … Indeed DLP is not a well-defined term – since so many vendors (Kaspersky anti-virus, McAfee anti-virus, Symantec anti-virus, Trend Micro Provilla, CA ...1 week ago -
End-to-end encryption is the key to protecting data and reputations
PopHomeTech —
Authority: 150
In order to avoid the financial and brand damage associated with data breaches, businesses need to consider deploying end-to-end encryption as a tamper proof way of securing data. Commentary - Media outlets around the globe highlight new data breaches at an alarmingly regular rate. Forrester estimates that the cost...2 weeks ago -
PCI DSS Roadmap to Compliance | Phase I
Regulatory Compliance, Governance and Security —
Authority: 112
Merchants and service providers seeking to become Payment Card Industry Data Security Standards (PCI DSS) compliant, will need to embark on a structured “PCI DSS Roadmap to Compliance” for ensuring a seamless and transparent process. So what does this really mean and entail? It essentially requires all ...2 weeks ago -
A 12 STEP PROGRAM TO SECURING YOUR SMALL-TO-MEDIUM SIZE BUSINESS: STEP 4
Wael Isa —
Authority: 149
This is the fourth in a series of twelve articles for the non-technical managers at small to medium sized companies who operate smaller networks and may lack a sophisticated in-house information technology department. Cost: Moderate – Software is free but effective tuning takes time Technology skill level: ...2 weeks ago -
Common Areas for PCI Violation
Memmis.com News Agency —
Authority: 169
With so many threats coming from around the world targeting a companys data, which includes their customers data, the business industry created PCI compliance standards to protect sensitive information. PCI Compliance is a global mandated set of standards that businesses must implement and follow in order to protect ...2 weeks ago -
Amazon Cloud Attacked – Lessons Learned
Payment Card Security & IT Controls Explained —
Authority: 100
As mentioned in prior posts, Cloud security and addressing the risks that exist (the new risks and the new tools to address these risks) is fundamental to ensuring a successful and beneficial use of the Cloud provider environments. The RSA London conference held several strong documents highly to help approach the ...2 weeks ago -
PCI Compliance Does Not Equal Security
Information Security Resources —
Authority: 534
By Danny Lieberman , Security Expert and Founder of Software Associates I recently saw a post from a blog on a corporate web site from a company called Cloud compliance, entitled Compliance is the New Security Standard . Cloud Compliance provides a SaaS-based identity and Access Assessment (IdAA) solution ...4 weeks ago -
Only 3 Seats Left for Dallas CPISM/A!
Society of Payment Security Professionals - Payment Security Blog —
Authority: 93
The Dallas CPISM/A training and certification course has filled up quickly and we only have 3 seats left. If you are interested in attending the November 10-13th event, sign up soon. After reviewing the registrants, this should be a very interactive course with some great comments and input from the participants and ...4 weeks ago -
Another End to End / Tokenization Entrant
Society of Payment Security Professionals - Payment Security Blog —
Authority: 93
Everyone who has read my blogs over the past few years or spoken to me about PCI DSS knows my feelings on end-to-end encryption and data replacement technologies. I have a huge proponent and feel that these technologies will help secure our industry and provide significant benefits in reduction of PCI DSS ...4 weeks ago -
Abstract About PCI Regulation Discussion
Computer Training Blog —
Authority: 131
PCI DSS is Payment Card Industry Data Security Standard, a collaborative effort to achieve a common set of security standards for use by entities that process, store, or transport payment card data. This is adequate for: all merchants like “store, process, or transmit cardholder data” and all payment channels ...4 weeks ago
