News

How to do PCI DSS Configuration Standards

How to do PCI DSS Configuration Standards

As a QSA, one of the most common struggles I see in assessments is around PCI DSS Requirement 2.2: configuration standards. Most organizations have a patchwork of hardening efforts, but few...

How to do PCI DSS Configuration Standards

As a QSA, one of the most common struggles I see in assessments is around PCI DSS Requirement 2.2: configuration standards. Most organizations have a patchwork of hardening efforts, but few...

PCI DSS 12.10.2 – Testing Your Incident Response Plan

PCI DSS 12.10.2 – Testing Your Incident Respons...

When it comes to PCI DSS, simply having an incident response plan (IRP) isn’t enough—you also need to prove it works. Requirement 12.10.2 requires that organizations test and review their incident...

PCI DSS 12.10.2 – Testing Your Incident Respons...

When it comes to PCI DSS, simply having an incident response plan (IRP) isn’t enough—you also need to prove it works. Requirement 12.10.2 requires that organizations test and review their incident...

Solving the Grind of Regular PCI Tasks

Solving the Grind of Regular PCI Tasks

Simplify PCI DSS ComplianceStay ahead of PCI DSS requirements with our user-friendly Excel tool, designed to organize daily, weekly, and annual compliance tasks effortlessly.  Available free for customers who have...

Solving the Grind of Regular PCI Tasks

Simplify PCI DSS ComplianceStay ahead of PCI DSS requirements with our user-friendly Excel tool, designed to organize daily, weekly, and annual compliance tasks effortlessly.  Available free for customers who have...

How to meet PCI DSS requirement 12.9.2

How to meet PCI DSS requirement 12.9.2

Navigating PCI DSS assessments can be challenging, especially when dealing with Third-Party Service Providers (TPSPs). PCI DSS Version 4 introduces Requirement 12.9.2, which shifts some compliance responsibilities back to TPSPs,...

How to meet PCI DSS requirement 12.9.2

Navigating PCI DSS assessments can be challenging, especially when dealing with Third-Party Service Providers (TPSPs). PCI DSS Version 4 introduces Requirement 12.9.2, which shifts some compliance responsibilities back to TPSPs,...

Key things to consider when planning segmentation testing for PCI DSS 11.4.5?

Key things to consider when planning segmentati...

Key considerations when planning 11.4.5 segmentation testing.

Key things to consider when planning segmentati...

Key considerations when planning 11.4.5 segmentation testing.

What Are the Key Changes in PCI DSS v4.0.1?

What Are the Key Changes in PCI DSS v4.0.1?

In response to valuable stakeholder feedback, the PCI Security Standards Council (PCI SSC) has released a crucial update: PCI DSS v4.0.1. This limited revision, which builds on PCI DSS v4.0,...

What Are the Key Changes in PCI DSS v4.0.1?

In response to valuable stakeholder feedback, the PCI Security Standards Council (PCI SSC) has released a crucial update: PCI DSS v4.0.1. This limited revision, which builds on PCI DSS v4.0,...