News

How to do PCI DSS Configuration Standards

How to do PCI DSS Configuration Standards

As a QSA, one of the most common struggles I see in assessments is around PCI DSS Requirement 2.2: configuration standards. Most organizations have a patchwork of hardening efforts, but few...

How to do PCI DSS Configuration Standards

As a QSA, one of the most common struggles I see in assessments is around PCI DSS Requirement 2.2: configuration standards. Most organizations have a patchwork of hardening efforts, but few...

PCI DSS 12.10.2 – Testing Your Incident Response Plan

PCI DSS 12.10.2 – Testing Your Incident Respons...

When it comes to PCI DSS, simply having an incident response plan (IRP) isn’t enough—you also need to prove it works. Requirement 12.10.2 requires that organizations test and review their incident...

PCI DSS 12.10.2 – Testing Your Incident Respons...

When it comes to PCI DSS, simply having an incident response plan (IRP) isn’t enough—you also need to prove it works. Requirement 12.10.2 requires that organizations test and review their incident...

Solving the Grind of Regular PCI Tasks

Solving the Grind of Regular PCI Tasks

Simplify PCI DSS ComplianceStay ahead of PCI DSS requirements with our user-friendly Excel tool, designed to organize daily, weekly, and annual compliance tasks effortlessly.  Available free for customers who have...

Solving the Grind of Regular PCI Tasks

Simplify PCI DSS ComplianceStay ahead of PCI DSS requirements with our user-friendly Excel tool, designed to organize daily, weekly, and annual compliance tasks effortlessly.  Available free for customers who have...

How to meet 12.3.1 recently added into SAQ A

How to meet 12.3.1 recently added into SAQ A

The PCI Council recently released it's updated SAQs aligning to V4.0.1. One change that is going to affect a lot of merchants is the inclusion of 12.3.1s Targeted Risk Analysis...

How to meet 12.3.1 recently added into SAQ A

The PCI Council recently released it's updated SAQs aligning to V4.0.1. One change that is going to affect a lot of merchants is the inclusion of 12.3.1s Targeted Risk Analysis...

How to meet PCI DSS requirement 12.9.2

How to meet PCI DSS requirement 12.9.2

Navigating PCI DSS assessments can be challenging, especially when dealing with Third-Party Service Providers (TPSPs). PCI DSS Version 4 introduces Requirement 12.9.2, which shifts some compliance responsibilities back to TPSPs,...

How to meet PCI DSS requirement 12.9.2

Navigating PCI DSS assessments can be challenging, especially when dealing with Third-Party Service Providers (TPSPs). PCI DSS Version 4 introduces Requirement 12.9.2, which shifts some compliance responsibilities back to TPSPs,...

Key things to consider when planning segmentation testing for PCI DSS 11.4.5?

Key things to consider when planning segmentati...

Key considerations when planning 11.4.5 segmentation testing.

Key things to consider when planning segmentati...

Key considerations when planning 11.4.5 segmentation testing.