Password authentication


  • March 23, 2018 23 Mar'18

    CSO Stamos leaving Facebook, according to reports

    News roundup: Is Alex Stamos leaving Facebook? The CSO hasn't confirmed, but reports say yes. Plus, an Orbitz breach exposed the payment card data of 880,000 people, and more.

  • January 26, 2018 26 Jan'18

    A series of new IoT botnets plague connected devices

    News roundup: New IoT botnets compromise tens of thousands of devices worldwide. Plus, Kaspersky Lab filed an injunction against DHS, mobile POS gets a PCI standard, and more.

  • September 01, 2017 01 Sep'17

    Enterprise compliance with PCI DSS is up, says Verizon

    News roundup: More than half of enterprises are in compliance with PCI DSS, according to a Verizon report. Plus, Turla is on the attack again with a new campaign, and more.

  • November 29, 2016 29 Nov'16

    At SME Summit, SAP Anywhere growing pains revealed

    Attendees at an SAP SME Summit lauded the e-commerce front end, but some said back-end integration and payment-processing features are needed before a full migration to the platform.

View All News

PCI DSS Get Started

Bring yourself up to speed with our introductory content

  • What is included in the mPOS security standard from PCI SSC?

    The PCI SSC developed an mPOS security standard to improve mobile payment and PIN systems. Expert Michael Cobb looks at what the requirements are and how they help. Continue Reading

  • Cloud provider security in spotlight, gives rise to new role

    The big guys already have one -- now smaller cloud service vendors are hiring a cloud-specific security exec to focus on security. Continue Reading

  • The managed security provider comes knocking

    A constantly evolving threat landscape and a deepening skills crisis has more enterprises looking to a managed security service provider for help handling some of their security requirements. The trend is expected to drive strong demand for MSSPs over the next few years, especially in areas like intrusion prevention and detection systems, distributed denial-of-service mitigation, unified threat management and security information and event management (SIEM). Estimates for the overall size of the global market over the next few years range from the low $20 billion to $35 billion. That makes it one of the fastest growing segments in the security industry. What are the factors CISOs need to consider when choosing a managed security provider and what are some best practices for getting the most out of these relationships?

    Enterprises have a range of options for using such services, from managed on-premises or managed customer-premise equipment services to fully outsourced, cloud-hosted options. A hybrid security model has worked for Arlington County in Virginia. The local government's security operations center is managed by in-house engineers who inherently know the network and are better positioned to respond to SIEM alerts from the MSSP. "We preferred the hybrid approach because we had the seasoned staff available to perform this aspect of the security practice," CISO David Jordan said. "It's a positive and successful approach, and the results are repeatable."

    Much of the managed security provider growth is being driven by the need for increased security and compliance measures at small to medium-sized businesses. In this issue of Information Security magazine, we look at the evolution of the managed security provider and the best ways to handle these partnerships.

     Continue Reading

View All Get Started

Evaluate PCI DSS Vendors & Products

Weigh the pros and cons of technologies, products and projects you are considering.

View All Evaluate

Manage PCI DSS

Learn to apply best practices and optimize your operations.

View All Manage

Problem Solve PCI DSS Issues

We’ve gathered up expert advice and tips from professionals like you so that the answers you need are always available.

View All Problem Solve