It is hard to believe that the PCI DSS is 15 years old and yet people still struggle with what it is!? It’s time to stop tearing your hair out. We’ve got you covered with all you need to know in our new PCI Primer blog series, and we’re starting with the basics.  

Third-party SOC or PCI readiness tools seem easy, don’t they! Taking a hands-off approach to your company’s security compliance may seem like it’s saving you time and money, but is that really true? Find out here.

The ease of spinning up EC2 instances is coming at the expense of security controls that would otherwise be in place to protect on-premises servers. AWS admins need to use available tools properly to help ensure the logical security of their environments.

The PCI DSS requires that an organization have configuration standards for devices that make up their infrastructure such as firewalls, routers, load balancers, switches and servers.  That includes devices that exist virtually as well as those that exist physically.

The impacts of COVID-19 may have caused your company to change up processes and work outside of what is normal operations.  Below are some best practices to consider in getting back to “normal” for the current and future SOC reporting periods.

The impact of COVID-19 has meant making quite a few changes in a rapid fashion to help ensure business continuity. As you work to continue to serve your clients while also supporting a mostly remote workforce, you may have lost focus on the operation of your internal controls.