Regulatory Compliance, Governance and Security:

PCI DSS


January 17, 2009  12:21 AM

Payment Card Industry Data Security Standards | PCI DSS | It’s the LAW in Minnesota



Posted by: Charles Denyer
Gov. Tim Pawlenty and PCI DSS, merchants, MN PCI DSS, Payment Card Industry Data Security Standards MN, PCI DSS, service providers, The Minnesota Plastic Card Security Act

The Minnesota Plastic Card Security Act, signed by MN Governor Tim Pawlenty, essentially has codified various parts of the Payment Card Industry Data Security Standards (PCI DSS) into law....

January 16, 2009  3:46 PM

SAS 70 Audits & Data Centers | Tips on Preparing for the Audit



Posted by: Charles Denyer
change management sas 70, co-locations, environmental security, incident management, incident management sas 70, managed services sas 70, payment card industry, PCI, PCI DSS, physical security, SAS 70, sas 70 data centers, sas70

Today's data centers and managed services providers are complex businesses, providing customers with a wide array of services. As such, SAS 70 audits have become the standard compliance audit for assessing internal controls for data centers and managed...


December 31, 2008  11:25 PM

SAS 70 Audits and PCI DSS Compliance |What you NEED to Know



Posted by: Charles Denyer
asv, payment card industry data security standards, PCI DSS, pciassessment.org, qsa, SAS 70, sas 70 type ii audit, sas70.us.com

As an auditor, I am constantly approached by my clients desperately wanting to know if efficiencies can be obtained within the audit and assessment process for companies undergoing both a SAS70 audit and a PCI DSS...

Bookmark and Share     0 Comments     RSS Feed     Email a friend


December 30, 2008  3:21 PM

SAS 70 | PCI DSS | 2009 Regulatory Compliance Checklist



Posted by: Charles Denyer
audits, payment card industry, payment card industry data security standards, PCI, pci assessment, pci compliance, PCI DSS, pci dss qsa, regulatory compliance, SAS 70, sas 70 audit report, SAS 70 checklist, sas 70 control objectives, SAS 70 readiness questionnaire, sas 70 sample report, SAS 70 Type I, sas 70 type ii, sas70, sas70 sample reports, Security, SOX, What is SAS 70?

When ushering in the new year festivities, keep in mind that a number of regulatory compliance issues will be facing your organization also as 2009 looms just around the corner. No, they're not stocking stuffers, rather, they can be considered expensive, time-consuming, and arduous, to say the...


December 30, 2008  2:08 PM

PCI Payment Card Industry Compliance | PCI DSS | Important Tips



Posted by: Charles Denyer
payment card industry, payment card industry data security standards, PCI, pci assessment, pci compliance, PCI DSS, pci dss qsa, pci dss requirement 1.1.1, pci dss requirement 1.1.2

Is your organization seeking to become Payment Card Industry (PCI) Data Security Standards (DSS) compliant for 2009? Are you a merchant or service provider that is directly involved in the processing, storage, or transmission of transaction data or cardholder data? If you answered yes to these...


November 23, 2008  7:24 PM

Payment Card Industry (PCI DSS) Compliance | Requirement 1.1.2



Posted by: Charles Denyer
payment card industry, payment card industry data security standards, PCI, pci assessment, pci compliance, PCI DSS, pci dss qsa, pci dss requirement 1.1.2, policies and procedures, qsa, regulatory compliance, SAS 70, sas 70 audit report

Payment Card Industry (PCI) Data Security Standards (DSS) compliance for PCI DSS requirement 1.1.2 calls for "Current network diagram with all connections to cardholder data, including any wireless networks" Thus, testing for validating...


November 23, 2008  7:14 PM

Payment Card Industry (PCI DSS) Compliance | Requirement 1.1.1



Posted by: Charles Denyer
payment card industry, payment card industry data security standards, PCI, pci assessment, pci compliance, PCI DSS, pci dss qsa, pci dss requirement 1.1.1, policies and procedures, qsa

PCI DSS Requirement 1.1.1 calls for "A formal process for approving and testing all network connections and changes to the firewall and router configurations". Thus, the test to validate this, in accordance with PCI DSS 1.2 standards is to...


November 23, 2008  7:03 PM

Payment Card Industry (PCI DSS) Compliance | Requirement 1.1



Posted by: Charles Denyer
configurations, firewalls, payment card industry, PCI, pci assessment, pci compliance, PCI DSS, pci dss qsa, ports, qsa, regulatory compliance, requirement 1.0, requirement 1.1

Payment Card Industry (PCI) Data Security Standards (DSS) for Requirement 1.1 require organizations to "Establish firewall and router configuration standards". This requirement falls under the functional area of the overall Requirement...


November 13, 2008  3:28 AM

PCI DSS Readiness Assessment for Payment Card Industry Compliance



Posted by: Charles Denyer
merchants, payment card industry, payment card industry data security standards, PCI, pci assessment, pci compliance, PCI DSS, pci dss qsa, service providers

Are you a merchant or service provider that needs to be Payment Card Industry Data Security Standards (PCI DSS) compliance? Are you an entity directly involved in the processing, storage, or transmission of transaction data or cardholder data? If so, then read on because one of the most important...


November 13, 2008  2:53 AM

Minnesota (MN) Plastic Card Security Act | Payment Card Industry (PCI DSS) Compliance



Posted by: Charles Denyer
Minnesota (MN) Plastic Card Security Act, payment card industry, payment card industry data security standards, PCI, pci assessment, pci compliance, PCI DSS, pci dss qsa

The state of Minnesota recently codified part of the Payment Card Industry (PCI) Data Security Standards (PCI) framework into actual law. Thus, Minnesota has essentially become the first state...


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: