CSOONLINE.com - PCI and Compliance

CSOONLINE.com - PCI and Compliance http://www.csoonline.com/ en_us (c) Copyright 2009 CXO Media, Inc. All Rights Reserved. Sun, 08 Nov 2009 07:21:49 GMT 2009-11-08T07:21:49Z en_us (c) Copyright 2009 CXO Media, Inc. All Rights Reserved. Analyst: PCI Security a Devil, 'Like No Child Left Behind' http://www.csoonline.com/article/506635/Analyst_PCI_Security_a_Devil_Like_No_Child_Left_Behind_?source=rss_pci_and_compliance Joshua Corman, research director for enterprise security at The 451 Group, says the private sector's obsession with PCI DSS compliance is blinding it to larger threats. Wed, 04 Nov 2009 05:00:00 GMT Bill Brenner http://www.csoonline.com/article/506635/Analyst_PCI_Security_a_Devil_Like_No_Child_Left_Behind_?source=rss_pci_and_compliance 2009-11-04T05:00:00Z Why Pen Testing Is Central to Pennsylvania's App Security http://www.csoonline.com/article/503004/Why_Pen_Testing_Is_Central_to_Pennsylvania_s_App_Security?source=rss_pci_and_compliance In this Q&A, Commonwealth of Pennsylvania CISO Robert Maley explains why penetration testing has become an essential tool in his security arsenal. Wed, 23 Sep 2009 04:00:00 GMT Bill Brenner http://www.csoonline.com/article/503004/Why_Pen_Testing_Is_Central_to_Pennsylvania_s_App_Security?source=rss_pci_and_compliance 2009-09-23T04:00:00Z End-to-End Encryption: The PCI Security Holy Grail http://www.csoonline.com/article/501694/End_to_End_Encryption_The_PCI_Security_Holy_Grail?source=rss_pci_and_compliance Encryption seems like the simple answer to data security problems. So why is end-to-end encryption not ubiquitous? Implementation challenges abound. Here's how to handle encryption's 'key issues'. Thu, 10 Sep 2009 04:00:00 GMT http://www.csoonline.com/article/501694/End_to_End_Encryption_The_PCI_Security_Holy_Grail?source=rss_pci_and_compliance 2009-09-10T04:00:00Z 4 Ways to Get the Most from Your PCI QSAs http://www.csoonline.com/article/501663/4_Ways_to_Get_the_Most_from_Your_PCI_QSAs?source=rss_pci_and_compliance In response to Heartland CEO Robert Carr's claim that his qualified security assessors (QSAs) missed key weaknesses during a PCI security audit of his company, security experts offer tips to get the most from an assessment. Wed, 09 Sep 2009 04:00:00 GMT Bill Brenner http://www.csoonline.com/article/501663/4_Ways_to_Get_the_Most_from_Your_PCI_QSAs?source=rss_pci_and_compliance 2009-09-09T04:00:00Z Unmasking DLP: The Data Security Survival Guide http://www.csoonline.com/article/500577/Unmasking_DLP_The_Data_Security_Survival_Guide?source=rss_pci_and_compliance Need a data loss prevention (DLP) strategy but have no idea where to start technologically or culturally? Here's a series of articles and podcasts to help you find your way. Wed, 26 Aug 2009 04:00:00 GMT Bill Brenner http://www.csoonline.com/article/500577/Unmasking_DLP_The_Data_Security_Survival_Guide?source=rss_pci_and_compliance 2009-08-26T04:00:00Z Miami Man Indicted for Massive Credit Hack http://www.csoonline.com/article/499852/Miami_Man_Indicted_for_Massive_Credit_Hack?source=rss_pci_and_compliance Data from more than 130M credit and debit cards was stolen. Tue, 18 Aug 2009 04:00:00 GMT http://www.csoonline.com/article/499852/Miami_Man_Indicted_for_Massive_Credit_Hack?source=rss_pci_and_compliance 2009-08-18T04:00:00Z 8 Dirty Secrets of the IT Security Industry http://www.csoonline.com/article/499815/8_Dirty_Secrets_of_the_IT_Security_Industry?source=rss_pci_and_compliance IBM ISS Security Strategist Joshua Corman speaks out on what he believes are eight cancerous blights affecting the security industry. His goal: motivate people to wake up and battle the affliction. Mon, 17 Aug 2009 04:00:00 GMT Bill Brenner http://www.csoonline.com/article/499815/8_Dirty_Secrets_of_the_IT_Security_Industry?source=rss_pci_and_compliance 2009-08-17T04:00:00Z One Man's View: Heartland CEO Must Accept Responsibility http://www.csoonline.com/article/499565/One_Man_s_View_Heartland_CEO_Must_Accept_Responsibility?source=rss_pci_and_compliance Security Incite's Mike Rothman read our interview with Heartland's CEO and didn't like it one bit. Here's why. Thu, 13 Aug 2009 04:00:00 GMT http://www.csoonline.com/article/499565/One_Man_s_View_Heartland_CEO_Must_Accept_Responsibility?source=rss_pci_and_compliance 2009-08-13T04:00:00Z PCI, QSAs, Hackers, and Slackers: Will the Real Enemy Please Stand Up? http://www.csoonline.com/article/499583/PCI_QSAs_Hackers_and_Slackers_Will_the_Real_Enemy_Please_Stand_Up_?source=rss_pci_and_compliance CSO Senior Editor Bill Brenner dives into a contentious debate over the Heartland CEO's tirade against QSAs and searches for reason. Will he find it? Thu, 13 Aug 2009 04:00:00 GMT Bill Brenner http://www.csoonline.com/article/499583/PCI_QSAs_Hackers_and_Slackers_Will_the_Real_Enemy_Please_Stand_Up_?source=rss_pci_and_compliance 2009-08-13T04:00:00Z Heartland CEO on Data Breach: QSAs Let Us Down http://www.csoonline.com/article/499527/Heartland_CEO_on_Data_Breach_QSAs_Let_Us_Down?source=rss_pci_and_compliance Heartland Payment Systems Inc. CEO Robert Carr opens up about his company's data security breach, how compliance auditors failed to flag key attack vectors and what the big lessons are for other companies. Wed, 12 Aug 2009 04:00:00 GMT Bill Brenner http://www.csoonline.com/article/499527/Heartland_CEO_on_Data_Breach_QSAs_Let_Us_Down?source=rss_pci_and_compliance 2009-08-12T04:00:00Z Network Solutions Warns Merchants After Hack http://www.csoonline.com/article/498179/Network_Solutions_Warns_Merchants_After_Hack?source=rss_pci_and_compliance Criminals may have stolen more than half a million credit card numbers from merchant servers hosted by Networks Solutions. Mon, 27 Jul 2009 04:00:00 GMT Robert McMillan http://www.csoonline.com/article/498179/Network_Solutions_Warns_Merchants_After_Hack?source=rss_pci_and_compliance 2009-07-27T04:00:00Z Mass 201 CMR 17: A Survival Guide for the Anxious http://www.csoonline.com/article/497934/Mass_201_CMR_17_A_Survival_Guide_for_the_Anxious_?source=rss_pci_and_compliance Security experts offer tips for navigating Mass 201 CMR 17. Will your business be ready? Thu, 23 Jul 2009 04:00:00 GMT Bill Brenner http://www.csoonline.com/article/497934/Mass_201_CMR_17_A_Survival_Guide_for_the_Anxious_?source=rss_pci_and_compliance 2009-07-23T04:00:00Z Solving the DLP Puzzle: 5 Technologies That Will Help http://www.csoonline.com/article/496873/Solving_the_DLP_Puzzle_5_Technologies_That_Will_Help?source=rss_pci_and_compliance Before embarking on a Data Loss Prevention program, enterprises must first determine what the essential ingredients are. Here are five technological pieces of the puzzle. (Part 1 in a series) Wed, 08 Jul 2009 04:00:00 GMT Bill Brenner http://www.csoonline.com/article/496873/Solving_the_DLP_Puzzle_5_Technologies_That_Will_Help?source=rss_pci_and_compliance 2009-07-08T04:00:00Z PCI Security Pain: Amid Recession, Merchants Struggle to Comply http://www.csoonline.com/article/495866/PCI_Security_Pain_Amid_Recession_Merchants_Struggle_to_Comply?source=rss_pci_and_compliance With the recession drying up compliance budgets, merchants send PCI Security Standards Council General Manager Bob Russo a letter asking for help (includes audio). Thu, 25 Jun 2009 04:00:00 GMT Bill Brenner http://www.csoonline.com/article/495866/PCI_Security_Pain_Amid_Recession_Merchants_Struggle_to_Comply?source=rss_pci_and_compliance 2009-06-25T04:00:00Z Experts Only: Time to Ditch the Antivirus? http://www.csoonline.com/article/495827/Experts_Only_Time_to_Ditch_the_Antivirus_?source=rss_pci_and_compliance It's definitely not the right move for the average computer user, but some security experts claim they have found better security by disabling the AV and relying on other controls and behaviors. Wed, 24 Jun 2009 04:00:00 GMT Bill Brenner http://www.csoonline.com/article/495827/Experts_Only_Time_to_Ditch_the_Antivirus_?source=rss_pci_and_compliance 2009-06-24T04:00:00Z