lichtmeister - Fotolia
Expert Mike Chapple explains how two descoping techniques can help many organizations reduce their regulatory compliance burden.
One QSA offers pre-audit planning advice to ensure a smooth, successful enterprise IT security audit for both the organization and the auditor.
A veteran QSA believes PCI DSS 3.0 will help both QSAs and enterprises, but says further clarifications are needed to avoid PCI assessment disputes.
There are several risks involved when using end-of-life software, including the possibility of compliance violations. Expert Mike Chapple explains.