PCI Security Standards Council Internal Security Assessor (ISA) training now...
The new self-paced eLearning course is an online version of the Council’s existing instructor-led ISA training. ISA training provides businesses the opportunity to educate qualifying employees...
View ArticlePCI Security Standards Council’s Qualified Integrators and Resellers program...
The PCI SSC’s the Qualified Integrators and Resellers (QIR)™ Program will train and qualify integrators and resellers that sell, install and/or service payment applications on the secure installation...
View Article65% of businesses do not protect their customers’ private data
According to a survey by GreenSQL more than 65% of businesses do not protect their customers’ private data from unauthorised employees and consultants. The results are interesting because every day we...
View ArticlePCI Security Standard Council releases summary of feedback on PCI standards
The Payment Card Industry Security Standards Council releases a summary of feedback from the PCI community on the PCI Security Standards. The document highlights key themes coming out of the Council’s...
View ArticleThe average cost of a breach event is $7.2 million or $214 per compromised...
In promoting their Internal Security Assessor Training in Dublin the Payment Card Industry Security Standards Council (PCI SSC) sent an email quoting the Verizon Data Breach Investigation Report 2011...
View ArticlePCI Security Standards Council releases best practices for mobile software...
During this week’s PCI SSC US Community meeting a demonstration of a Mobile attack highlighted the need for more secure development practices in the mobile payments space. The demonstration coincided...
View ArticlePCI SSC’s insights on mobile, encryption and payment security following the...
After the sixth annual North American Community Meeting in Orlando, Florida which was attended by over 1,000 stakeholders representing 460 organizations from 17 countries to discuss the PCI SSC...
View ArticleWant to be PCI DSS compliant? Here are 5 mistakes to avoid.
Charles Denyer a QSA with NDB has produced a list of 5 Mistakes all people striving for PCI DSS compliance must avoid. Not conducting a formal Readiness Assessment. It’s important with PCI DSS...
View ArticlePCI SSC releases its PCI DSS E-commerce Security Guidelines
Hot on the heels of the ATM Guidelines the PCI SSC has released the PCI DSS E-commerce Guidelines Information Supplement. The guidelines are designed to help e-commerce merchants to decide on which...
View ArticlePCI SSC releases PCI DSS Cloud Computing Guidelines
The PCI Security Standards Council has published the PCI DSS Cloud Computing Guidelines Information Supplement, a product of the Cloud Special Interest Group (SIG). The guide is an excellent...
View ArticleMerchant sues VISA. Biting the hand that feeds you?
I know that if there were no merchants there would be no credit card companies and I know that the “alternative” payments market is growing, such as PayPal and V.me, but at this time it is fair to say...
View ArticleSometimes it is a good idea to have in-house skills
After many discussions with people responsible for achieving and maintaining PCI DSS compliance within their organisation and hearing about their problems and pains, I often think about the skills they...
View ArticlePCI Security Standards Council publishes card production security requirements
The PCI Security Standards Council (PCI SSC), has announced the publication of a standard for secure payment card production. The standard consists of two sets of requirements: PCI Card Production...
View ArticlePCI Security Standards Council announces new board of advisors
The PCI Security Standards Council (PCI SSC), announced election results for the 2013-2015 PCI SSC Board of Advisors. The Board will represent the PCI community by providing counsel to SSC leadership....
View ArticlePCI SSC revises date for migrating off vulnerable SSL and early TLS encryption
Following significant feedback from the global PCI community and security experts, the Payment Card Industry Security Standards Council (PCI SSC) has announced a change to the date that organizations...
View Article100 Percent of Retailers Disclose Cyber Risks
According to BDO’s analysis of risk factors listed in the most recent 10-K filings of the 100 largest U.S. retailers, risk associated with a possible security breach was cited unanimously by retailers,...
View ArticleADVICE FROM AN ASSESSOR: DevOps, Automation, Security and Compliance
By Andrew Barratt, QSA, PCIP. Managing Director, International/Managing Principal, Payments, Application Validation Coalfire; Manchester, UK, http://www.coalfire.com Phew, the title of this post alone...
View Article
More Pages to Explore .....