door Gerdien van den Bosch | okt 1, 2019 | Compliance, PCI DSS
We hebben nog steeds klanten die ons deze vraag van tijd tot tijd stellen. Helaas betekent het simpelweg versleutelen van kaarthoudergegevens (CHD) niet noodzakelijkerwijs vermindering van de scope ervan. Onder de meeste omstandigheden geldt, als gecodeerde CHD wordt...
door Gerdien van den Bosch | aug 26, 2019 | Compliance, PCI DSS
Complying to PCI DSS requires you to have both documented processes and policies in place. Remember: PCI DSS is about People, Processes and Technology. The processes are usually described in policy and process documentation. You have to supply these documents as...
door Gerdien van den Bosch | jul 23, 2019 | Compliance, PCI DSS
This blog is part of a blog series on the 12 requirements of PCI DSS. We discuss the common challenges and explain what kind of evidence is needed to comply with the requirement. Here we discuss: Requirement 12: Maintain a policy that addresses information...
door Gerdien van den Bosch | jul 9, 2019 | Compliance, PCI DSS
This blog is part of a blog series on the 12 requirements of PCI DSS. We discuss the common challenges and explain what kind of evidence is needed to comply with the requirement. Here we discuss: Requirement 11: Regularly test security systems and processes The system...
door Gerdien van den Bosch | jul 1, 2019 | Compliance, PCI DSS
Achieving PCI Compliance can be challenging. However, maintaining compliance with the latest version of the PCI Data Security Standards can be even more difficult. As part of the PCI Compliance process, there are many different things that an organization must do...
door Gerdien van den Bosch | jun 24, 2019 | Compliance, PCI DSS
The Self-Assessment Questionnaires (SAQs) are validation tools designed to help merchants and service providers report on the results of their compliance with PCI DSS. It must be completed as evidence of their completion of the PCI DSS self-assessment. These SAQs need...