PCI DSS is a set of standards that any company accepting payment cards must follow. It’s a set of 12 rules that ensure you’re staying secure and keeping the data you collect safe. PCI non compliance can be a big problem for businesses worldwide who don’t follow the framework.

What may come as a surprise is that PCI DSS is actually not a very onerous regulation; in fact, most of the requirem… Read More

PCI DSS, which stands for Payment Card Industry Data Security Standards, is a regulatory framework for companies that collect payment card information. That sounds incredibly exciting, does it not? While PCI DSS requirements do concern physical security to a certain extent, the framework mainly pertains to the world of eCommerce, where payment card information is a major target for criminals.

In f… Read More

One of the most important requirements for the Payment Card Industry Data Security Standards (PCI DSS) is internal and external site scanning. The PCI DSS scan is the portion of compliance that many companies struggle with owing to the opacity of the requirement. Specifically, how does one perform a PCI DSS compliance scan?

This article is going to explain the easiest, most cost-effective way to perf… Read More

PCI DSS compliance is a requirement for any organization that accepts payment cards. There are numerous PCI DSS requirements, all aimed at ensuring your customers’ payment care information is kept safe and secure. One of those requirements, 11.2.2, requires external vulnerability scanning.

• 11.2.2 Perform quarterly external vulnerability scans, via an Approved Scanning Vendor (ASV) approved by the

PCI DSS, more formally known as the Payment Card Industry Data Security Standards, serves as the compliance framework that regulates companies accepting payment cards. It’s a common-sense regulation that basically mandates businesses follow certain security best practices in order to safeguard the sensitive information they collect. It’s what governs all organizations that take payment cards… Read More

PCI DSS affects any organization that accepts payment cards. Turns out that’s most businesses. And it also just so happens that payment cards are a lucrative and enticing target for enterprising cybercriminals. That makes PCI DSS compliance doubly important. Not only are you in line for fines and penalties for non-compliance, but the very relationships that form the foundation of your business – y… Read More

Calculating how much it will cost to become compliant with PCI-DSS requirements

Many organizations view compliance as a binary, you’re either compliant or you’re not. But that’s not necessarily how all compliance frameworks work. Many, like HIPAA and PCI DSS, view compliance in terms of degrees – focusing on how compliant (or not compliant) an organization is rather than looking at it like a yes/no… Read More