Are you Keeping an Inventory of Cipher Suites and Certificates for the New PCI DSS?
We recently discussed the required cataloging of your organization’s software for the (more…)
Cindy Kaplan2025-09-01T06:50:58+00:00
The Silent Threat: How PCI DSS 4.0.1 Tackles Service Account Vulnerabilities
While organizations rightly prioritize protecting employee accounts from cybersecurity threats, particularly those with (more…)
Satisfying the SAQ-A Eligibility Criteria Update
Are You Outsourcing eCommerce?
Our recent article PCI SSC Updates SAQ A: Removal (more…)
The New PCI DSS v4.0.1 Software Catalog Mandate: Are You Ready?
Some of the 51 future dated requirements of the new PCI DSS (more…)
PCI SSC Updates SAQ A: Removal of Key E-Commerce Security Requirements & New Eligibility Criteria
The PCI Security Standards Council (PCI SSC) has made significant updates to Self-Assessment (more…)
What Legislation Protects Against Deepfakes and Synthetic Media?
A Deep Look at Legislation
Deepfake legislation (more…)
What is the PCI DSS v4.0.1 Requirement for PoLP?
Least Privilege Takes Center Stage in PCI DSS Update
In today’s digital landscape, organizations (more…)
What is the PCI DSS v4 Authenticated Scanning Mandate?
Preparing for PCI DSS 4.0.1: The Authenticated Scanning Mandate
As organizations prepare for PCI (more…)
Is Your Organization Prepared for PCI DSS Automation?
By Viviana Wesley, PCI QSA, ISO 27001 Auditor, CISM – (more…)
Unpacking the New PCI DSS v4.x Password Standards
By Jason Maiden, CISSP, PMP, PCI QSA, ISO 27001 Lead Auditor (more…)
