the State of Security

PCI

PCI Compliance — More Than Just a Tick Box Exercise?

PCI Compliance — More Than Just a Tick Box Exercise?

by Cindy Valladares

“Compliance” is sometimes considered a dirty word in the information security world, particularly when companies take a “tick box” or “check box” approach to achieving it before an audit instead of treating continuous compliance as a part of business as usual. Infosec expert and ‘cynic’ Javvad Malik interviews Neira Jones (@NeiraJones on Twitter), Head of [...]

Read More
Introducing Tripwire Log Center 6.5.1

Introducing Tripwire Log Center 6.5.1

by Cindy Valladares

Today we’re announcing an update to Tripwire Log Center. This release has some new capabilities to help you do your log management and incident detection functions easier and faster. Here are some of the highlights of this update: Find log events faster. We’re utilizing MITRE’s Common Event Expression to standardize log event messages. You benefit [...]

Read More
Making Compliance Part of Your Daily Routine, Not Just Once a Year

Making Compliance Part of Your Daily Routine, Not Just Once a Year

by David Spark

Monitor continuously so you don’t get stuck finding out about a breach 3-4 months after it happened.

Read More

Using PCI Compliance As a Business Driver

by Cindy Valladares

Here at Tripwire we get many great customer success stories, so I’ve decided to start a series of blog posts that bring those stories to you. This week’s post focuses on a The Logic Group, a large payment processor in the UK. Organization The Logic Group solutions process in excess of three billion credit and [...]

Read More

How to Achieve Better Security

by Cindy Valladares

A few weeks ago I had the pleasure of interviewing Mike Dahn, Director of Risk and Compliance at PwC, and Josh Corman, Research Director of Enterprise Security at The 451 Group. The focus of our conversation was on what practical advice they could give to organizations that wanted to move beyond proving compliance validation to [...]

Read More

PCI DSS Compliance: More Carrot and Less Stick?

by Cindy Valladares

Or a less sexy title: does compliance with mandates such as Payment Card Industry Data Security Standard (PCI DSS) help reduce risks for organizations (the carrot) even though it’s costly and the consequences of non-compliance even costlier (the stick)?

Read More