Using PCI Scope to Lower Risks and Cost

Using PCI Scope to Lower Risks and Cost

This article discusses leveraging technology identified in PCI Self-Assessment Questionnaires Aand P2PE to reduce the risks and costs to an organization when processing credit cards, which alsosubjects the organization to fewer and less onerous compliance...
GDPR

GDPR

The European Union General Data Protection Regulation known as GDPR brought significant changes to data privacy around the globe. These changes originated in Europe; however, their introduction and implementation had an impact that is still sending ripples of change...
Security vs Convenience

Security vs Convenience

Security vs Convenience Security vs. Convenience: The more secure you are, the less convenient things will be, and vice versa. One thing we like to ask clients is “on a scale of 1-10, how secure do you want to be?” We follow up by saying that 1 is wide open and 10 is...
Enigma

Enigma

What was Enigma? The Allies victory over the Axis powers in World War II is often remembered in terms of famous battles and tremendous acts of valor. But the strategic victories that liberated Europe and defeated the Empire of Japan were never guaranteed. Success in...
PCI Gap Assessments

PCI Gap Assessments

PCI Gap Assessments are a vital resource that allows businesses to assess whether their procedures are aligned with the best industry cybersecurity practices and regulatory requirements such as the Payment Card Industry Data Security Standard (PCI-DSS). A PCI Gap...
Auditing is a two-way process

Auditing is a two-way process

Auditing is a two-way process I know the idea of being audited is not a fun one. I always joke with clients that they should not feel too bad as we, as auditors, get audited ourselves (on workpapers, reports, etc.).  When it comes to the auditing process, however,...