Home > IT Blogs > Regulatory Compliance, Governance and Security/

Regulatory Compliance, Governance and Security:

report on compliance

1
August 29, 2009  1:31 PM

PCI DSS Compliance | Watch out for the “Road Blocks”



Posted by: Charles Denyer
charles denyer, intrusion detection system, merchants, pci dss compliance, qsa, qualified security assessor, report on compliance, ROC, service providers, software code review, two factor authentication, web application firewall

PCI DSS Compliance, especially on-site reviews conducted by a Qualified Security Assessor (QSA), can take an immense amount of time in completing and receiving one's Report on Compliance (ROC). What most merchants and service providers fail to recognize is that there are numerous issues that could...

  Bookmark and Share     0 Comments     RSS Feed     Email a friend

June 16, 2009  2:35 AM

SAS 70 Audits and PCI DSS | Yes, There is a Big Difference



Posted by: Charles Denyer
assessments, audits, charles denyer, cpa firm, payment card industry data security standards, PCI DSS, PCI DSS Level 1 compliance, report on compliance, ROC, sas 70 type ii audit

SAS 70 audits, especially Type II reports and PCI DSS Level 1 Report on Compliance (ROC) assessments are dominating today's regulatory compliance arena. Painfully, as a SAS 70 auditor and a PCI DSS assessor, I keep hearing people talk about these two compliance initiatives as if they are one in...

  Bookmark and Share     0 Comments     RSS Feed     Email a friend

1