the State of Security

PCI DSS

PCI Compliance alert: Time to switch to version 2.0 of PCI DSS

by David Spark

PCI compliant? Want to stay that way? Then you’re going to have to upgrade this year to version 2.0 of the PCI DSS, said Bob Russo, General Manager of the PCI Security Standards Council. What’s different in version 2.0? Mostly clarifications, said Russo. It isn’t that much different than 1.0 beyond clarifications. Lot more focus [...]

Read More

The True Cost of Compliance

by Cindy Valladares

We often hear from customers and prospects that compliance is expensive and cumbersome, yet it allows them to rally for a piece of the IT security budget. Up to this point, however, there was no data on what the cost of compliance was.

Read More

New PCI Data Security Standard version 2.0

by Cindy Valladares

Last week the Payment Card Industry Security Standard Council released version 2.0 of the PCI Data Security Standard. I’ve covered my initial impressions of the changes on a previous blogpost. To get a deeper understanding on how the changes may affect your organization, I’ll be holding a webcast to discuss: Timelines for PCI DSS v2.0 [...]

Read More

Interesting Facts about Verizon’s PCI Report

by Cindy Valladares

A couple of weeks ago, Verizon Business issued their first PCI Compliance Report. The report analyses organizations, mainly in the US, who have gone through the PCI DSS validation process and have engaged the services of Verizon’s QSAs. There are a lot of interesting tidbits in this report that I thought would be good to [...]

Read More

PCI Resources

by ~Previous Contributers

Of course you know that Tripwire offers industry leading solutions to help companies achieve and maintain PCI compliance. But did you know we also offer a large knowledge base, a resource library and superior technical support? And that our experts will guide you every step of the way toward PCI compliance? Well you do now! [...]

Read More

Upset about the subjectivity and ambiguity in the PCI DSS compliance standards? My #BSides submission on the answer…

by ~Previous Contributers

(First a disclaimer: Although I am part of the leadership team of the PCI Scoping Special Interest Group, everything in this article are only my opinions, not anyone else’s, or an official position of the PCI Security Standards Council.) Don’t get me wrong.  I think the mission behind the Payment Card Industry Data Security Standard [...]

Read More

← Previous Entries

Next Entries →