Blog

PCI Version 3.0: Service Providers’ Responsibilities

In this article, we’re going to take a look at two rules that impact the responsibilities of merchants and their service providers with version 3.0 of the PCI Data Security Standards (DSS).

Blog

PCI Version 3.0: Protecting the Point of Sale

In Version 3.0 of the PCI Data Security Standards (DSS), organizations with POS devices are required to “periodically inspect devices for signs of tampering or substitution.” This is PCI control 9.9.2.

Blog

PCI Compliance Audit: Streamlining the Report on Compliance

How can businesses streamline the Report on Compliance process? As a Qualified Security Assessor, we’ve identified a handful of steps that make a PCI compliance audit run as smoothly as possible for merchants.

Blog

PCI Compliance Guidelines: 3 Steps for Readiness Assessment

What does a typical readiness assessment entail? This article covers the three steps needed to complete a readiness assessment to ensure you are PCI compliant.

Blog

PCI Compliance Guidelines: Demonstrating Compliance

it doesn’t really matter which level of Data Security Standards compliance you fall under, at least on a practical level: all that matters is the reporting style your acquiring bank requires.

Blog

PCI Compliance Requirements: An Action Plan to Close the Gaps

A readiness assessment can help you self-evaluate more confidently in the future and help you learn more about how and why your security measures work.

Blog

Ruminations on Risk Assessment

Have a formal process for identifying and evaluating risks to your organization. As initiatives arise and the IT environment changes, assess the risks and seek ways to publicize those to your company executives.