door Gerdien van den Bosch | jul 23, 2019 | Compliance, PCI DSS
This blog is part of a blog series on the 12 requirements of PCI DSS. We discuss the common challenges and explain what kind of evidence is needed to comply with the requirement. Here we discuss: Requirement 12: Maintain a policy that addresses information...
door Gerdien van den Bosch | jul 9, 2019 | Compliance, PCI DSS
This blog is part of a blog series on the 12 requirements of PCI DSS. We discuss the common challenges and explain what kind of evidence is needed to comply with the requirement. Here we discuss: Requirement 11: Regularly test security systems and processes The system...
door Gerdien van den Bosch | jul 1, 2019 | Compliance, PCI DSS
Achieving PCI Compliance can be challenging. However, maintaining compliance with the latest version of the PCI Data Security Standards can be even more difficult. As part of the PCI Compliance process, there are many different things that an organization must do...
door Gerdien van den Bosch | jun 24, 2019 | Compliance, PCI DSS
The Self-Assessment Questionnaires (SAQs) are validation tools designed to help merchants and service providers report on the results of their compliance with PCI DSS. It must be completed as evidence of their completion of the PCI DSS self-assessment. These SAQs need...
door Gerdien van den Bosch | mei 22, 2018 | Compliance, PCI DSS
The Self-Assessment Questionnaires (SAQs) are validation tools designed to help merchants and service providers report on the results of their compliance with PCI DSS. It can be used by eligible organizations who self-assess their PCI DSS compliance, and who are not...
door Gerdien van den Bosch | mrt 20, 2018 | Compliance, Informatiebeveiliging
In the security community, compliance is often treated with disregard. The statement is often made that compliance is the enemy of security. Compliance is only about ‘ticking the boxes’, and not ticking enough boxes did not cause Equifax to get breached. I...
