Regulatory Compliance, Governance and Security:



August 29, 2009  1:31 PM

PCI DSS Compliance | Watch out for the “Road Blocks”

Posted by: Charles Denyer
charles denyer, intrusion detection system, merchants, pci dss compliance, qsa, qualified security assessor, report on compliance, ROC, service providers, software code review, two factor authentication, web application firewall

PCI DSS Compliance, especially on-site reviews conducted by a Qualified Security Assessor (QSA), can take an immense amount of time in completing and receiving one's Report on Compliance (ROC). What most merchants and service providers fail to recognize is that there are numerous issues that could...

June 26, 2009  3:08 PM

PCI DSS Requirements and PCI DSS Merchant Levels | VISA

Posted by: Charles Denyer
2, 3, 4, annual report on compliance, annual self assessment questionnaire, asv, Attestaion of compliance form, charles denyer, Merchant Levels 1, PCI DSS Requirements and PCI DSS Merchant Levels | VISA, Quarterly network scan by approved Scan Vendor, ROC, SAQ

PCI DSS Requirements for Merchants is dependent on the "Level" your organization falls into. Currently, there are four (4) Merchant Levels for PCI DSS compliance. What's important to note is that these merchant levels are...

June 16, 2009  2:35 AM

SAS 70 Audits and PCI DSS | Yes, There is a Big Difference

Posted by: Charles Denyer
assessments, audits, charles denyer, cpa firm, payment card industry data security standards, PCI DSS, PCI DSS Level 1 compliance, report on compliance, ROC, sas 70 type ii audit

SAS 70 audits, especially Type II reports and PCI DSS Level 1 Report on Compliance (ROC) assessments are dominating today's regulatory compliance arena. Painfully, as a SAS 70 auditor and a PCI DSS assessor, I keep hearing people talk about these two compliance initiatives as if they are one in...


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: