PCI DSS News
June 08, 2016
Following a number of attacks on the SWIFT banking system that led to the theft of millions of dollars, SWIFT promised new rules to improve security for bank transfers.
April 28, 2016
PCI DSS 3.2 marks the start of refining the payment data regulations, rather than minor changes, and includes requirements to strengthen encryption and multifactor authentication.
February 19, 2016
The PCI council has determined its data security standard is finally mature enough to forego significant updates, so PCI DSS 3.2 will be more of an incremental modification.
January 13, 2016
A lot of organizations don't understand what it takes to maintain compliance on mobile. It starts with keeping track of devices and apps.
PCI DSS Get Started
Bring yourself up to speed with our introductory content
Does PCI DSS 3.2 mark the end of major updates to payment security compliance standards? Expert Mike Chapple discusses the update and what it means for organizations. Continue Reading
CBOSS, a payment processing service provider, hired integrator AdvizeX to deploy NSX, the VMware network virtualization platform, as part of a software-defined networking project. Continue Reading
Free guides from cloud customer advocacy groups fit nicely into Pension Benefit Guaranty Corp.'s structured approach to cloud. Continue Reading
Evaluate PCI DSS Vendors & Products
Weigh the pros and cons of technologies, products and projects you are considering.
BYOK options from public cloud providers like AWS and Azure give users more control over their data encryption keys -- but not without some tradeoffs. Continue Reading
Merchants that sell at off-site venues need to take extra care to follow PCI compliance standards. Expert Mike Chapple discusses how organizations can do this. Continue Reading
The FTC's order for PCI DSS compliance assessments is odd since PCI isn't a government regulation. Expert Mike Chapple explains the motivation driving this order. Continue Reading
Manage PCI DSS
Learn to apply best practices and optimize your operations.
Third-party vendors are necessary for organizations, but with them come more security risks. Expert Mike O. Villegas discusses how vendor risk assessments can help. Continue Reading
PCI DSS is pretty specific about security, but does it do enough for mobile payment security? Expert Mike Chapple explains why he says yes. Continue Reading
Do you have the guts and technology know-how to undertake a self-assessment of your organization's Exchange-related risks? If so, start here. Continue Reading
Problem Solve PCI DSS Issues
We’ve gathered up expert advice and tips from professionals like you so that the answers you need are always available.
With numerous security standards and certifications available, evaluating a cloud provider can be tricky. Expert Dan Sullivan explains what to look for during evaluation. Continue Reading
Point-of-sale malware, such as the recent PoSeidon malware, continues to evolve to avoid detection. So what's an enterprise to do? Expert Nick Lewis explains how the malware functions and what organizations can do about it. Continue Reading
Adobe's Common Controls Framework sets an example for enterprises struggling to manage multiple compliance standards and looking to build their own compliance framework. Continue Reading