Cybersecurity Risk and Compliance March 2023

PCI DSS v3.2.1 expires on March 31, 2024. Organizations should now be planning their transition to PCI DSS v4.0. With 64 new requirements in PCI DSS v4.0, companies have a lot to consider in preparation for the coming deadline. In our PCI Webinar Series, learn about the general changes to 4.0, new requirements, best practices, and how an increased focus on risk evaluations in this new version will be a driving force for security and compliance. Register as our guest – the schedule and sessions are below. We invite you to also submit your questions that can be answered at the webinar.

Cybersecurity awareness posters to help your folks make smart decisions and remember your policies. 

And here is a quick overview of reasonable security and cyber news to keep you aware of threats and controls to consider in our fast changing environments.

DATA BREACH BULLETINS

Largest Bottler of Pepsi-Cola Falls Victim to a Data Breach

DraftKings Online Accounts Breached

LastPass: Password Manager Reports Customer Accounts were Compromised

T-Mobile Agrees to a $350 Million Data Breach Settlement

Read more HALOCK Breach Bulletins

ARTICLES & REFERENCES

PCI Webinar Series:

• Preparing for Your Transition to PCI DSS v4.0
• A Deep Dive into the New 4.0 DSS
• Requirements that are Applicable Immediately
• A Deep Dive into the Emerging New 4.0 DSS Requirements that are Due by March 2025
• How to do Targeted Risk Analysis using a Duty of Care Risk Analysis Method 
• SAQ Comparison Summaries

CYBER BEST PRACTICE

RISK MITIGATION

Review your security posture and compliance requirements. We can help scope your risk profile to establish reasonable security and manage risk. Let’s ensure you have your security program in compliance.