Security Awareness Training: The First Line of Defense
As a security company, we often get asked what the most important factor is involved in safeguarding companies’ data assets. Cybersecurity may begin with putting in place measures like spam filters, fraud detection software, multi-factor authentication and file...
7 most important Benefits of a virtual CISO
Over the past decade, many organizations have made the choice to use a virtual CISO to either fill this role or complement their current CISO. As security experts, we believe this is a good development because it enhances the security level of companies. What...
4 easy Tips to help reducing costs for PCI DSS
Reducing your PCI DSS scope is an effective way to save costs on the PCI audits. Officially it is not required to segment the network or isolate systems that process, transmit or store credit card data. However, without proper network segmentation and isolation of...
Tokenizing your payment card data may be the smartest security decision you make in 2020
Tokenization is an excellent data security strategy that, unfortunately, only a few companies take advantage of. We believe that it is one of the best security strategies for credit card data and Payment Card Industry Data Security Standard (PCI DSS) scope reduction....
How to Define the Cryptoperiod for PCI DSS?
PCI DSS has incorporated new requirements in the latest version 3.2.1. Within the new requirements for service providers, there is one of the requirements (3.5.1) which requires maintaining the documented cryptographic architecture where the algorithms, protocols and...
Annual Plan – PCI DSS Compliance
Many merchants and service providers choose the path of self-validating. They perform all validation steps themselves and record their progress in the Self-Assessment Questionnaires (SAQ) and report their status in the Attestation of Compliance. A PCI Compliance...