Countdown to PCI DSS 3.0 : Lessons Learned from Early Adopters
As most of us know, the PCI DSS assessment effectively moved from version 2.0 to 3.0 at the beginning of 2014. The new 3.0 version raises security standards to help organizations focus more on the...
View ArticleRelevant Audit Selection for Cloud Providers
Just as in physical storage, cloud service providers are used to store sensitive data. This can be anything from credit card information to personal information such as social security numbers....
View ArticleThe New Standard: PCI DSS 3.1
On April 15, 2015, The PCI Security Standards Council published the PCI DSS Version 3.1. Within the update, there were 3 types of changes that were noted. They included: Clarifications: Clarifies the...
View ArticlePreparing for PCI DSS 3.2 in 2016
Author: Dustin Rich, CISSP, (ISC)2, CISA, ISACA, PCI QSA, PA QSA, MCSE, CCNA, CCA, and Managing Consultant at A-LIGN. This update, which will likely take place of the previously anticipated Q4 2016...
View ArticlePCI DSS Scoping for Colocation Providers: To Include or Not to Include?
Author: Dustin Rich, CISSP, (ISC)2, CISA, ISACA, PCI QSA, PA QSA, MCSE, CCNA, CCA, and Managing Consultant at A-LIGN. A-LIGN is heavily involved in the colocation industry, performing PCI DSS...
View ArticleWhat to Expect from PCI DSS 3.2
Earlier this year, we wrote about how to prepare for PCI DSS 3.2. Now, organizations should begin to implement changes with the PCI DSS 3.2 official release. These standards should be adopted as soon...
View ArticleRevision in MasterCard’s Cardholder Obligations: Does It Affect You?
MasterCard has revised its Standards to allow for collection agents to accept signature debit cards in the US. This revision is effective immediately and will be reflected in upcoming versions of...
View ArticleVisa Global Registry of Service Providers: Are you on the list?
Visa has released new tools and changes, which add value to service providers who store, process, or transmit cardholder data on behalf of merchants or other entities. For years, Visa has offered...
View Article3 Security Trends that will Continue in 2017
With the ushering in of another new year, I find myself acting nostalgic, wondering where the previous year went and of course pondering the year ahead. Here are three security and commerce trends...
View ArticlePCI DSS: Updated Penetration Testing Requirements – Frequently Asked Questions
Is your organization prepared for the upcoming PCI DSS requirement going into effect? To prepare your organization for this change, our team has assembled an FAQ to address any of your potential...
View ArticlePCI DSS v3.2 and the Penetration Testing Requirements for Service Providers
In April 2016, the Payment Card Industry Security Standards Council (PCI SSC) released PCI Data Security Standard (PCI DSS) version 3.2. With the updates came clarification to requirements, additional...
View ArticlePCI DSS v3.2 and the Penetration Testing Requirements for Service Providers
In April 2016, the Payment Card Industry Security Standards Council (PCI SSC) released PCI Data Security Standard (PCI DSS) version 3.2. With the updates came clarification to requirements, additional...
View ArticlePCI DSS v3.2 and the Penetration Testing Requirements for Service Providers
In April 2016, the Payment Card Industry Security Standards Council (PCI SSC) released PCI Data Security Standard (PCI DSS) version 3.2. With the updates came clarification to requirements, additional...
View ArticlePCI DSS v3.2 and the Penetration Testing Requirements for Service Providers
In April 2016, the Payment Card Industry Security Standards Council (PCI SSC) released PCI Data Security Standard (PCI DSS) version 3.2. With the updates came clarification to requirements, additional...
View ArticlePCI DSS v3.2 and the Penetration Testing Requirements for Service Providers
In April 2016, the Payment Card Industry Security Standards Council (PCI SSC) released PCI Data Security Standard (PCI DSS) version 3.2. With the updates came clarification to requirements, additional...
View ArticlePCI DSS v3.2 and the Penetration Testing Requirements for Service Providers
In April 2016, the Payment Card Industry Security Standards Council (PCI SSC) released PCI Data Security Standard (PCI DSS) version 3.2. With the updates came clarification to requirements, additional...
View ArticlePCI DSS v3.2 and the Penetration Testing Requirements for Service Providers
In April 2016, the Payment Card Industry Security Standards Council (PCI SSC) released PCI Data Security Standard (PCI DSS) version 3.2. With the updates came clarification to requirements, additional...
View ArticlePCI DSS v3.2 and the Penetration Testing Requirements for Service Providers
In April 2016, the Payment Card Industry Security Standards Council (PCI SSC) released PCI Data Security Standard (PCI DSS) version 3.2. With the updates came clarification to requirements, additional...
View ArticlePCI DSS v3.2 and the Penetration Testing Requirements for Service Providers
In April 2016, the Payment Card Industry Security Standards Council (PCI SSC) released PCI Data Security Standard (PCI DSS) version 3.2. With the updates came clarification to requirements, additional...
View ArticlePCI DSS v3.2 and the Penetration Testing Requirements for Service Providers
In April 2016, the Payment Card Industry Security Standards Council (PCI SSC) released PCI Data Security Standard (PCI DSS) version 3.2. With the updates came clarification to requirements, additional...
View Article