June 2009

  • PCI compliance requirement 12: Policy

    To pass the Payment Card Industry Data Security Standard, particularly Requirement 12, it's important that you maintain a body of policy or documentation of how you will address the PCI DSS require...

  • PCI compliance requirement 5: Antivirus

    Diana Kelley and Ed Moyle of Security Curve review PCI compliance requirement 5: "Use and regularly update antivirus software."

  • SIMs: More Than a Pile of Logs

    SIMs have come a long way from the days of log aggregation and correlation; enterprises now glean value for compliance, visualization, and business intelligence.

  • PCI compliance requirement 6: Systems and applications

    Diana Kelley and Ed Moyle of Security Curve review PCI compliance requirement 6: "Develop and maintain secure systems and applications."

  • A Method[ology] to the Madness

    One security professional describes a homegrown risk methodology currently being used by a large university and a private corporation.