Clik here to view.
PCI Security Standards Council Internal Security Assessor (ISA) training now...
The new self-paced eLearning course is an online version of the Council’s existing instructor-led ISA training. ISA training provides businesses the opportunity to educate qualifying employees...
View ArticleClik here to view.
PCI Security Standards Council’s Qualified Integrators and Resellers program...
The PCI SSC’s the Qualified Integrators and Resellers (QIR)™ Program will train and qualify integrators and resellers that sell, install and/or service payment applications on the secure installation...
View ArticleClik here to view.
65% of businesses do not protect their customers’ private data
According to a survey by GreenSQL more than 65% of businesses do not protect their customers’ private data from unauthorised employees and consultants. The results are interesting because every day we...
View ArticleClik here to view.
PCI Security Standard Council releases summary of feedback on PCI standards
The Payment Card Industry Security Standards Council releases a summary of feedback from the PCI community on the PCI Security Standards. The document highlights key themes coming out of the Council’s...
View ArticleClik here to view.
The average cost of a breach event is $7.2 million or $214 per compromised...
In promoting their Internal Security Assessor Training in Dublin the Payment Card Industry Security Standards Council (PCI SSC) sent an email quoting the Verizon Data Breach Investigation Report 2011...
View ArticleClik here to view.
PCI Security Standards Council releases best practices for mobile software...
During this week’s PCI SSC US Community meeting a demonstration of a Mobile attack highlighted the need for more secure development practices in the mobile payments space. The demonstration coincided...
View ArticleClik here to view.
PCI SSC’s insights on mobile, encryption and payment security following the...
After the sixth annual North American Community Meeting in Orlando, Florida which was attended by over 1,000 stakeholders representing 460 organizations from 17 countries to discuss the PCI SSC...
View ArticleClik here to view.
Want to be PCI DSS compliant? Here are 5 mistakes to avoid.
Charles Denyer a QSA with NDB has produced a list of 5 Mistakes all people striving for PCI DSS compliance must avoid. Not conducting a formal Readiness Assessment. It’s important with PCI DSS...
View ArticleClik here to view.
PCI SSC releases its PCI DSS E-commerce Security Guidelines
Hot on the heels of the ATM Guidelines the PCI SSC has released the PCI DSS E-commerce Guidelines Information Supplement. The guidelines are designed to help e-commerce merchants to decide on which...
View ArticleClik here to view.
PCI SSC releases PCI DSS Cloud Computing Guidelines
The PCI Security Standards Council has published the PCI DSS Cloud Computing Guidelines Information Supplement, a product of the Cloud Special Interest Group (SIG). The guide is an excellent...
View ArticleClik here to view.
Merchant sues VISA. Biting the hand that feeds you?
I know that if there were no merchants there would be no credit card companies and I know that the “alternative” payments market is growing, such as PayPal and V.me, but at this time it is fair to say...
View ArticleClik here to view.
Sometimes it is a good idea to have in-house skills
After many discussions with people responsible for achieving and maintaining PCI DSS compliance within their organisation and hearing about their problems and pains, I often think about the skills they...
View ArticleClik here to view.
PCI Security Standards Council publishes card production security requirements
The PCI Security Standards Council (PCI SSC), has announced the publication of a standard for secure payment card production. The standard consists of two sets of requirements: PCI Card Production...
View ArticleClik here to view.
PCI Security Standards Council announces new board of advisors
The PCI Security Standards Council (PCI SSC), announced election results for the 2013-2015 PCI SSC Board of Advisors. The Board will represent the PCI community by providing counsel to SSC leadership....
View ArticleClik here to view.
PCI SSC revises date for migrating off vulnerable SSL and early TLS encryption
Following significant feedback from the global PCI community and security experts, the Payment Card Industry Security Standards Council (PCI SSC) has announced a change to the date that organizations...
View ArticleClik here to view.
100 Percent of Retailers Disclose Cyber Risks
According to BDO’s analysis of risk factors listed in the most recent 10-K filings of the 100 largest U.S. retailers, risk associated with a possible security breach was cited unanimously by retailers,...
View ArticleClik here to view.
ADVICE FROM AN ASSESSOR: DevOps, Automation, Security and Compliance
By Andrew Barratt, QSA, PCIP. Managing Director, International/Managing Principal, Payments, Application Validation Coalfire; Manchester, UK, http://www.coalfire.com Phew, the title of this post alone...
View Article
