TOP CLOUD SECURITY CONTROLS ORGANIZATIONS SHOULD BE USING. Adnan Raja Because securing data within the Cloud is complex, having a standard set of protective controls is pivotal to keep you...
http://blog.securitymetrics.com/2018/07/cloud-security-what-businesses-need-to_17.html
TWO VERY DIFFERENT WAYS TO TEST YOUR SYSTEMS FOR VULNERABILITIES. By: Gary Glover Penetration testing and vulnerability scanning are often confused for the same service. And, business ow...
http://blog.securitymetrics.com/2015/05/pentesting-vs-vulnerability-scanning.html
LEARN THE IMPORTANT DIFFERENCES BETWEEN THE TWO SECURITY STANDARDS. Jonas De Oliveira CISSP, QSA, CPA, CISA If you are a merchant and already deal with PCI compliance , you’ve proba...
http://blog.securitymetrics.com/2018/07/pci-vs-gdpr-whats-difference.html
THREE TIPS FOR PCI COMPLIANCE NETWORK DOCUMENTATION. Nathan Cooper, CISSP If you were to ask network architects and engineers about their favorite part of the job, I doubt any of them will...
http://blog.securitymetrics.com/2018/06/network-diagrams-key-to-compliance-and.html
THE STATE OF HIPAA SECURITY THIS YEAR, PLUS TIPS TO FOCUS YOUR EFFORTS. Brand Barney CISSP, HCISSP, QSA WHAT’S NEW IN HIPAA IN 2018? In general, organizations don’t seem to be ke...
http://blog.securitymetrics.com/2018/06/5-tips-to-improve-hipaa-compliance-in.html
DETAILED CHECKLISTS FOR TEAMS WORKING ON PCI COMPLIANCE. We created our PCI Guide to help businesses get compliant with PCI standards and avoid data breaches. While C-level executives and com...
http://blog.securitymetrics.com/2018/06/it-checklists-for-pci-compliance.html
“SSL HAS BEEN REMOVED AS AN EXAMPLE OF STRONG CRYPTOGRAPHY IN THE PCI DSS, AND CAN NO LONGER BE USED AS A SECURITY CONTROL AFTER JUNE 30, 2016.” Gary Glover SVP, Assessments UPDATE: ...
http://blog.securitymetrics.com/2015/04/pci-3-1-ssl-and-tls.html
WHICH DATA BREACH PREDICTIONS CAME TRUE IN 2017 AND WHAT TO EXPECT FOR 2018. David Ellis SVP, Investigations GCIH, QSA, PFI, CISSP This blog is based on Dave Ellis’s Webinar, “Lesson...
http://blog.securitymetrics.com/2018/05/lessons-from-data-breaches-in-2017-and.html
LEARN WHAT’S CHANGED IN THE LATEST VERSION OF THE PCI DSS. PCI DSS VERSION 3.2.1 The Payment Card Industry Security Standards Council (PCI SSC) recently announced the release of the PCI ...
http://blog.securitymetrics.com/2018/05/pci-council-releases-pci-dss-321-what.html
REALISTIC HIPAA SECURITY BUDGETS VS. WISHFUL THINKING. Jen Stone MCSIS, CISSP, QSA HIPAA compliance is rarely allocated the resources it requires. And this trend extends beyond just small...
http://blog.securitymetrics.com/2015/04/how-much-does-hipaa-cost.html
THREE TIPS TO GET THE BALL ROLLING ON YOUR GDPR EFFORTS. Gary Glover SVP, Assessments CISSP, CISA, QSA This post wraps up the final installment in our 3-part GDPR 101 blog series. ...
http://blog.securitymetrics.com/2018/05/gdpr-101-part-3-what-should-i-do-now.html
THE QUALITY OF OUR CONNECTIONS MADE 2018 OUR BEST YEAR YET. From our annual golf tournament on Monday to tasty drinks and good conversation on the show floor, TRANSACT 18 was a huge success....
http://blog.securitymetrics.com/2018/05/eta-transact-2018-wrap-up.html
LEARN ABOUT THE GENERAL DATA PROTECTION REGULATION AND HOW UK BUSINESSES ARE PREPARING. The EU General Data Protection Regulation (GDPR) will come into effect on May 25, 2018. This government...
http://blog.securitymetrics.com/2018/05/how-prepared-are-uk-businesses-for-gdpr.html
RESOURCES TO HELP SMBS LEARN ABOUT DATA SECURITY AND PCI COMPLIANCE. We often get questions from small business owners about where they fit in with data security and PCI compliance. Are they...
http://blog.securitymetrics.com/2018/05/top-5-pci-blog-posts-for-small.html
SERIES OF INFOGRAPHICS AND VIDEOS TO HELP MERCHANTS WITH COMMON SECURITY ISSUES. The Payment Card Industry Security Standards Council (PCI SSC) recently announced the release of their “Pa...
http://blog.securitymetrics.com/2018/04/resources-from-pci-council-payment-data.html
LEARN THE BASICS ABOUT THE EU’S GENERAL DATA PROTECTION REGULATION. Gary Glover VP of Assessments CISSP, CISA, QSA, PA-QSA Part 2 of our 3-part GDPR 101 blog series is based on our GDP...
http://blog.securitymetrics.com/2018/04/gdpr-101-part-2-what-are-requirements.html
THE 12 PCI REQUIREMENTS, PLUS RESOURCES TO HELP ADDRESS THEM. The PCI DSS (Payment Card Industry Data Security Standard) is a security standard developed and maintained by the PCI Counci...
http://blog.securitymetrics.com/2018/04/what-are-12-requirements-of-pci-dss.html
IMPORTANT LESSONS FROM THE SECURITYMETRICS 2018 GUIDE TO PCI DSS COMPLIANCE. Our 2018 PCI Guide is out and already helping businesses understand the Payment Card Industry Data Security Stan...
http://blog.securitymetrics.com/2018/04/takeaways-from-our-2018-pci-guide.html
THE 2018 PCI GUIDE IS HERE. LEARN WHAT’S IN IT AND HOW IT WILL SIMPLIFY YOUR PCI PROCESS. We’ve officially launched our 2018 Guide to Payment Card Industry Data Security Standard (PCI D...
http://blog.securitymetrics.com/2018/03/whats-inside-our-2018-pci-guide.html
PROTECT YOUR NETWORK, SAVE TIME ON HIPAA, AND MAINTAIN YOUR REPUTATION. HIPAA MANAGEMENT FOR LARGE NETWORKS Data security and HIPAA compliance are more important than ever for the healthcare...
http://blog.securitymetrics.com/2018/03/securitymetrics-health-network-portal.html
OUR MOST COMMON QUESTIONS ABOUT THE GENERAL DATA PROTECTION REGULATION. Ben Christensen CISA, QSA If you’re like most business owners, you’re probably wondering if and how the new E...
SEE HOW MUCH UNENCRYPTED CARD DATA PANSCAN® FOUND ON BUSINESS NETWORKS IN 2017. Storage of unencrypted PAN on networks is up Primary account numbers (PAN) are the 14-, 15-, or 16-di...
http://blog.securitymetrics.com/2018/03/2018-panscan-results-storage-of-credit.html
A REFERENCE FOR BUSINESS ASSOCIATES USING THE SECURITYMETRICS HIPAA GUIDE AT THEIR ORGANIZATIONS. We released the SecurityMetrics 2018 Guide to HIPAA Compliance on November 30, 2017. ...
http://blog.securitymetrics.com/2018/02/2018-hipaa-guide-what-business.html
SECURITYMETRICS PIISCAN HELPS YOU COMPLY WITH SECURITY STANDARDS AND MANDATES. WHAT IS PII, AND WHY DO I NEED TO FIND IT? Personally Identifiable Information (PII) is data kept by an organ...
http://blog.securitymetrics.com/2018/02/piiscan-find-and-secure-unencrypted.html
WHAT YOU NEED TO KNOW NOW ABOUT THE EU’S GENERAL DATA PROTECTION REGULATION (GDPR). Gary Glover SVP, Assessments CISSP, CISA, QSA, PA-QSA With the EU’s GDPR compliance date loomi...
http://blog.securitymetrics.com/2018/02/GDPR-should-I-be-worried.html