Regulatory Compliance, Governance and Security:

September, 2009

1

September 28, 2009  10:09 PM

PCI DSS Compliance for Service Providers | A Growing Trend



Posted by: Charles Denyer
charles denyer, data centers, managed services, merchants, payment card industry data security standards, payment gatteways, PCI DSS, service providers

PCI DSS compliance for service providers is growing at quite an astonishing rate, to say the least. One of the biggest contributors is that of data centers, co-location facilities, and other types of organizations providing managed services. In short, they...

September 28, 2009  12:44 AM

PCI DSS | SAS 70 | Finding Resources to Learn about Compliance



Posted by: Charles Denyer
audits, charles denyer, PCI DSS, SAS 70, type i, type II

PCI DSS and SAS 70 Type I and Type II audits are a mainstay in today's regulatory arena. As such, i'm often asked what are some of the best resources available to learn about the Payment Card Industry Data Security...


September 28, 2009  12:35 AM

PCI DSS and Data Centers | Tips for Compliance



Posted by: Charles Denyer
data centers, PCI DSS, pci dss readiness assessment, pciassessment.org, penetration testing, qsa, quarterly scanning, two factor authentication

Payment Card Industry Data Security Standards (PCI DSS) compliance for data centers is here to stay, thus your facility should be prepared to undergo the PCI DSS assessment in a cost-effective and efficient manner. Here are some tips for PCI DSS compliance...


September 28, 2009  12:27 AM

SAS 70 Audits for Data Centers | Why the Trend will Continue



Posted by: Charles Denyer
charles denyer, co-location, data centers, managed services, PCI DSS, SAS 70, type i, type ii audits

SAS 70 audits have quickly become a high priority for data centers, co-location entities and managed service providers as of late. And there are plenty of reasons why this trend will continue go grow. The number of organizations that have...


September 26, 2009  10:19 PM

GLBA and Data Centers | Tips for Compliance



Posted by: Charles Denyer
and debt collectors, charles denyer, consumers, customers, data centers, GLBA, loan brokers, non-bank mortgage lenders, privacy rules, providers of real estate settlement services, SAS 70, some financial or investment advisers, tax preparers

GLBA Privacy Rule Protecting the privacy of consumer information held by "financial institutions" and other third party vendors and service providers that provide “support services” to these “financial institutions” is at the heart of the financial privacy provisions of...


September 26, 2009  10:12 PM

HIPAA Security Rule | Another area for Data Center Compliance



Posted by: Charles Denyer
audit, data centers, HIPAA Security Rule, ndbcpa, PHI, protected Health Information

As with the Privacy Rule, the Security Rule is also an important provision that data centers should be compliant with. Security Rule: The Security Rule complements the Privacy Rule. While the Privacy Rule pertains to all Protected Health Information (PHI) including paper and electronic, the...


September 26, 2009  10:07 PM

HIPAA Privacy Rule | Attention Data Centers | Are you HIPAA Compliant?



Posted by: Charles Denyer
HIPAA Privacy rule, PCI, PHI, protected Health Information, SAS 70

First it was SAS 70, then PCI, now HIPAA is fast becoming a requirement for data centers. Here's what you need to know about the HIPAA Privacy Rule. An electronic medical record (EMR) is usually a computerized legal...


September 25, 2009  1:49 PM

HIPAA Compliance for Data Centers | The How and Why



Posted by: Charles Denyer
charles denyer, co-location, data centers, health insurance portability and accountability act, HIPAA, managed services, Payment Card Industry Data Security Standard, PCI DSS, SAS 70

HIPAA compliance for data centers is fast becoming a hot topic in regulatory compliance. It first started with Statement on Auditing Standards No. 70 (SAS 70), it is now moving onto the Payment Card Industry Data...


September 25, 2009  1:34 PM

PCI DSS for DATA CENTERS | It’s only going to become MORE of a Requirement



Posted by: Charles Denyer
co-locations, data centers, managed services, payment card industry data security standards, PCI DSS, qsa, qualified security assessor

I attended a recent compliance conference for data centers and the phrase that kept coming up was PCI DSS. That's right, the Payment Card Industry Data Security Standards, simply known as PCI DSS to millions, is spreading like a virus...


September 25, 2009  1:24 PM

SAS 70 Training Videos | The Best Way to Learn about Type I and Type II Audits



Posted by: Charles Denyer
audit cost, audit fieldwork, planning, sas 70 training videos, type i, type II

SAS 70 training videos are simply the best way to truly gain an understanding of the inner workings on Statement on Auditing Standards No. 70. As an auditor, i've been asked many times on this post and others if...


1

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: