Regulatory Compliance, Governance and Security:

August, 2009

1

August 29, 2009  1:53 PM

Protecting the Privacy of Social Security Numbers Act | S. 141

Charles Denyer Charles Denyer Profile: Charles Denyer

Congress yet again is combating the fraud issues associated with private consumer information. The "Protecting the Privacy of Social Security Numbers Ac" (S. 141) is another good example of this. Essentially, this bill encompasses...

August 29, 2009  1:43 PM

Data Breach Notification Act (Introduced in Senate) | S. 139

Charles Denyer Charles Denyer Profile: Charles Denyer

Well, Regulatory Compliance, Governance, and Security is alive and well in Washington, D.C. again. Don't be fooled to thinking that the current laws will be the end. The ongoing push for these initiatives, along with an added emphasis on privacy and the protection of the consumer, will continue. As...


August 29, 2009  1:31 PM

PCI DSS Compliance | Watch out for the “Road Blocks”

Charles Denyer Charles Denyer Profile: Charles Denyer

PCI DSS Compliance, especially on-site reviews conducted by a Qualified Security Assessor (QSA), can take an immense amount of time in completing and receiving one's Report on Compliance (ROC). What most merchants and service providers fail to recognize is that there are numerous issues that could...


August 24, 2009  12:18 AM

MasterCard SDP Program | Attention Level 2 Merchants | PCI DSS

Charles Denyer Charles Denyer Profile: Charles Denyer

The MasterCard SDP Program has essentially made changes that now require Level 2 Merchants to have an annual on-site review of their security controls by a Qualified Security Assessor (QSA) for purposes of complying with PCI DSS. Let me state for the record, as a QSA, this is big news. There are...


August 23, 2009  8:47 PM

Will HIPAA compliance ever have any Teeth like SAS 70 and PCI DSS?

Charles Denyer Charles Denyer Profile: Charles Denyer

HIPAA, The Health Insurance Portability and Accountability Act, has been with us for years now. Upon reading through the vast and cumbersome documentation, one quickly realizes that HIPAA has many moving parts, enough to make you...


August 23, 2009  5:01 PM

PCI DSS Compliance | Why it is Working and Will Continue to be Enforced

Charles Denyer Charles Denyer Profile: Charles Denyer

PCI DSS compliance has taken a lot of shots lately, much of it unfair. Sure, there have been a number of high profile data and security breaches, such as the recent compromise of 130 million payment (credit and debit) cards. These stories create...


August 23, 2009  4:42 PM

PCI DSS Compliance for Merchants | A Self-Assessment could be a thing of the Past

Charles Denyer Charles Denyer Profile: Charles Denyer

PCI DSS Compliance for merchants is a hot topic indeed as witnessed by the large and ever growing number of businesses having to comply with PCI DSS. And to be fair, the vast majority can “self-assess” for compliance by answering a series of questions...


August 23, 2009  4:39 PM

GLBA, HIPAA, SAS 70, PCI DSS | what is next for Compliance?

Charles Denyer Charles Denyer Profile: Charles Denyer

The trend of late has been Payment Card Industry (PCI) Data Security Standards (DSS) compliance, along with a continued emphasis on the well known SAS 70 auditing standard. And occasionally, calls for GLBA and HIPAA compliance come calling also. As an...


August 3, 2009  7:25 PM

SAS 70 Audits and PCI DSS Assessments | What you NEED to Know

Charles Denyer Charles Denyer Profile: Charles Denyer

SAS 70 audits and PCI DSS Assessments are on everybody's radar screen today, or though it seems. Particularly, SAS 70 Type II Audits and Payment Card Industry Data Security Standards (PCI DSS) Level I assessments. And why? Because many service organizations, merchants, and service providers are...


1

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: