Author Archives: Nancy Sykora

Security Awareness training is required by PCI DSS

I often write about security awareness training, but it bears repeating periodically.  Cyber security awareness training is required by some standards – the PCI DSS is pretty specific about requiring it.  Security awareness training for the general employee population on at least an annual basis is a good idea.  More technical training for IT or […]

3rd Party Providers

3rd Party Providers. Remember when the big car companies in Detroit went through their quality measures and certifications, then began requiring all their 1st tier vendors to undergo the same quality certifications?  This later trickled down to the multiple tiers of vendors that supported the 1st tier vendors.  It was (is) called QS 9000.

1 2 3 4 7