In this guide, we’ll explore why the updated standards are essential, the changes introduced in PCI DSS 4.0, and practical strategies to meet the compliance deadline.
Navigating PCI DSS 4.0.1 – Strategies for Compliance and Beyond Read More »
Given Black Friday and Cyber Monday, this time of year is by far the busiest for online payments. The extra volume can make it easier for cybercriminals to slip through the net undetected. Now there’s the pre-Christmas rush to deal with.
PCI has been around for years, yet I’ve seen very few papers on how to choose the right QSA for your business. At least not the ones that aren’t completely biased. You would think both the card brands and the SSC would want to help you achieve compliance in line with your business needs and
Selecting the Right QSA For Your Business Read More »
17 years, 3 months, and 7 days ago, Visa released the first version of the Payment Card Industry Data Security Standard (PCI DSS). 9 versions later, the PCI Security Standards Council (PCI SSC) is on the cusp of releasing the long-anticipated / debated version 4.0. Every organisation to whom this standard applies will be affected
PCI DSS v4.0, How Much Work is Involved? Read More »
In place of our regular classroom based training, we are offering our PCI DSS Training courses online, in a condensed one-day course. A limited number of complementary places are available to 2|SEC Consulting clients. Why train with us? Learn from real-life QSAs and Security Consultants Experienced trainers, having run hundreds of courses worldwide We allow
Online PCI DSS Training course – 1 Day Event Read More »
It has been estimated that becoming fully PCI compliant gets you no more than 47% of the way towards a recognised industry standard for information security. In this case, ISO 27001:2013. The chart below shows a comparison of how the PCI DSS requirements stack up to the ISO 27001 control objectives: While this is a
PCI DSS – A start, not the end, for the business Read More »
Cyber security is a topic on every organisation’s radar. The continued threat of ever evolving cyber-attacks, combined with the introduction of GDPR compliance means that there are serious businesses implications to successful attacks and the loss of data to any company. It is not the case of if you are going to be attacked, but
How do I make sure my business is cyber protected? Read More »
Join 2-sec at the PCI Community Meeting in Edinburgh – 18-20 October What is PCI SSC? The Payment Card Industry (PCI) Security Standards Council is a global forum that develops, maintains and manages the PCI Security Standards, which include the Data Security Standard (DSS), Payment Application Data Security Standard (PA-DSS), and PIN Transaction Security
2-sec Exhibiting at the PCI Europe Community Meeting Read More »
You can almost feel it happening, can’t you? Every time there is an introduction of, or a change to some regulation or another, the vultures of the legal, security consulting, and even security product vendors spin up their marketing machines to invent new promises on how they will ‘guide you through the pending minefield’. The
Privacy Shield (ex. Safe Harbor), Here Come the Vultures! Read More »
