CSOONLINE.com - PCI and Compliance

CSOONLINE.com - PCI and Compliance http://www.csoonline.com/ en_us (c) Copyright 2009 CXO Media, Inc. All Rights Reserved. Sat, 21 Nov 2009 08:57:08 GMT 2009-11-21T08:57:08Z en_us (c) Copyright 2009 CXO Media, Inc. All Rights Reserved. The Mass. 201 CMR 17 Survival Guide http://www.csoonline.com/article/508039/The_Mass._201_CMR_17_Survival_Guide?source=rss_pci_and_compliance As companies scramble to meet the requirements of the Bay State's data security law, CSOonline.com offers this collection of articles and podcasts to help IT security practitioners and compliance officers find the best approach. Wed, 18 Nov 2009 05:00:00 GMT Bill Brenner http://www.csoonline.com/article/508039/The_Mass._201_CMR_17_Survival_Guide?source=rss_pci_and_compliance 2009-11-18T05:00:00Z The Cloud Security Survival Guide http://www.csoonline.com/article/507974/The_Cloud_Security_Survival_Guide?source=rss_pci_and_compliance For companies increasingly dependent on cloud services, security challenges abound. Here's a collection of articles, columns and audio to help IT security practitioners plot the right course. Tue, 17 Nov 2009 05:00:00 GMT Bill Brenner http://www.csoonline.com/article/507974/The_Cloud_Security_Survival_Guide?source=rss_pci_and_compliance 2009-11-17T05:00:00Z PCI DSS: No Angel, But Certainly Not the Devil http://www.csoonline.com/article/507364/PCI_DSS_No_Angel_But_Certainly_Not_the_Devil?source=rss_pci_and_compliance Security luminaries Anton Chuvakin and Ben Rothke explain why 451 Group analyst Josh Corman is off base when he compares PCI security to a devil and "No Child Left Behind." Wed, 11 Nov 2009 05:00:00 GMT http://www.csoonline.com/article/507364/PCI_DSS_No_Angel_But_Certainly_Not_the_Devil?source=rss_pci_and_compliance 2009-11-11T05:00:00Z Federal Data Security Law: 'Careful What You Wish For' http://www.csoonline.com/article/507328/Federal_Data_Security_Law_Careful_What_You_Wish_For_?source=rss_pci_and_compliance A cybersecurity bill advanced further up the U.S. Senate gauntlet last week, and some IT security practitioners aren't happy about it. Wed, 11 Nov 2009 05:00:00 GMT Bill Brenner http://www.csoonline.com/article/507328/Federal_Data_Security_Law_Careful_What_You_Wish_For_?source=rss_pci_and_compliance 2009-11-11T05:00:00Z Analyst: PCI Security a Devil, 'Like No Child Left Behind' http://www.csoonline.com/article/506635/Analyst_PCI_Security_a_Devil_Like_No_Child_Left_Behind_?source=rss_pci_and_compliance Joshua Corman, research director for enterprise security at The 451 Group, says the private sector's obsession with PCI DSS compliance is blinding it to larger threats. Wed, 04 Nov 2009 05:00:00 GMT Bill Brenner http://www.csoonline.com/article/506635/Analyst_PCI_Security_a_Devil_Like_No_Child_Left_Behind_?source=rss_pci_and_compliance 2009-11-04T05:00:00Z Why Pen Testing Is Central to Pennsylvania's App Security http://www.csoonline.com/article/503004/Why_Pen_Testing_Is_Central_to_Pennsylvania_s_App_Security?source=rss_pci_and_compliance In this Q&A, Commonwealth of Pennsylvania CISO Robert Maley explains why penetration testing has become an essential tool in his security arsenal. Wed, 23 Sep 2009 04:00:00 GMT Bill Brenner http://www.csoonline.com/article/503004/Why_Pen_Testing_Is_Central_to_Pennsylvania_s_App_Security?source=rss_pci_and_compliance 2009-09-23T04:00:00Z End-to-End Encryption: The PCI Security Holy Grail http://www.csoonline.com/article/501694/End_to_End_Encryption_The_PCI_Security_Holy_Grail?source=rss_pci_and_compliance Encryption seems like the simple answer to data security problems. So why is end-to-end encryption not ubiquitous? Implementation challenges abound. Here's how to handle encryption's 'key issues'. Thu, 10 Sep 2009 04:00:00 GMT http://www.csoonline.com/article/501694/End_to_End_Encryption_The_PCI_Security_Holy_Grail?source=rss_pci_and_compliance 2009-09-10T04:00:00Z 4 Ways to Get the Most from Your PCI QSAs http://www.csoonline.com/article/501663/4_Ways_to_Get_the_Most_from_Your_PCI_QSAs?source=rss_pci_and_compliance In response to Heartland CEO Robert Carr's claim that his qualified security assessors (QSAs) missed key weaknesses during a PCI security audit of his company, security experts offer tips to get the most from an assessment. Wed, 09 Sep 2009 04:00:00 GMT Bill Brenner http://www.csoonline.com/article/501663/4_Ways_to_Get_the_Most_from_Your_PCI_QSAs?source=rss_pci_and_compliance 2009-09-09T04:00:00Z Unmasking DLP: The Data Security Survival Guide http://www.csoonline.com/article/500577/Unmasking_DLP_The_Data_Security_Survival_Guide?source=rss_pci_and_compliance Need a data loss prevention (DLP) strategy but have no idea where to start technologically or culturally? Here's a series of articles and podcasts to help you find your way. Wed, 26 Aug 2009 04:00:00 GMT Bill Brenner http://www.csoonline.com/article/500577/Unmasking_DLP_The_Data_Security_Survival_Guide?source=rss_pci_and_compliance 2009-08-26T04:00:00Z Miami Man Indicted for Massive Credit Hack http://www.csoonline.com/article/499852/Miami_Man_Indicted_for_Massive_Credit_Hack?source=rss_pci_and_compliance Data from more than 130M credit and debit cards was stolen. Tue, 18 Aug 2009 04:00:00 GMT http://www.csoonline.com/article/499852/Miami_Man_Indicted_for_Massive_Credit_Hack?source=rss_pci_and_compliance 2009-08-18T04:00:00Z 8 Dirty Secrets of the IT Security Industry http://www.csoonline.com/article/499815/8_Dirty_Secrets_of_the_IT_Security_Industry?source=rss_pci_and_compliance IBM ISS Security Strategist Joshua Corman speaks out on what he believes are eight cancerous blights affecting the security industry. His goal: motivate people to wake up and battle the affliction. Mon, 17 Aug 2009 04:00:00 GMT Bill Brenner http://www.csoonline.com/article/499815/8_Dirty_Secrets_of_the_IT_Security_Industry?source=rss_pci_and_compliance 2009-08-17T04:00:00Z One Man's View: Heartland CEO Must Accept Responsibility http://www.csoonline.com/article/499565/One_Man_s_View_Heartland_CEO_Must_Accept_Responsibility?source=rss_pci_and_compliance Security Incite's Mike Rothman read our interview with Heartland's CEO and didn't like it one bit. Here's why. Thu, 13 Aug 2009 04:00:00 GMT http://www.csoonline.com/article/499565/One_Man_s_View_Heartland_CEO_Must_Accept_Responsibility?source=rss_pci_and_compliance 2009-08-13T04:00:00Z PCI, QSAs, Hackers, and Slackers: Will the Real Enemy Please Stand Up? http://www.csoonline.com/article/499583/PCI_QSAs_Hackers_and_Slackers_Will_the_Real_Enemy_Please_Stand_Up_?source=rss_pci_and_compliance CSO Senior Editor Bill Brenner dives into a contentious debate over the Heartland CEO's tirade against QSAs and searches for reason. Will he find it? Thu, 13 Aug 2009 04:00:00 GMT Bill Brenner http://www.csoonline.com/article/499583/PCI_QSAs_Hackers_and_Slackers_Will_the_Real_Enemy_Please_Stand_Up_?source=rss_pci_and_compliance 2009-08-13T04:00:00Z Heartland CEO on Data Breach: QSAs Let Us Down http://www.csoonline.com/article/499527/Heartland_CEO_on_Data_Breach_QSAs_Let_Us_Down?source=rss_pci_and_compliance Heartland Payment Systems Inc. CEO Robert Carr opens up about his company's data security breach, how compliance auditors failed to flag key attack vectors and what the big lessons are for other companies. Wed, 12 Aug 2009 04:00:00 GMT Bill Brenner http://www.csoonline.com/article/499527/Heartland_CEO_on_Data_Breach_QSAs_Let_Us_Down?source=rss_pci_and_compliance 2009-08-12T04:00:00Z Network Solutions Warns Merchants After Hack http://www.csoonline.com/article/498179/Network_Solutions_Warns_Merchants_After_Hack?source=rss_pci_and_compliance Criminals may have stolen more than half a million credit card numbers from merchant servers hosted by Networks Solutions. Mon, 27 Jul 2009 04:00:00 GMT Robert McMillan http://www.csoonline.com/article/498179/Network_Solutions_Warns_Merchants_After_Hack?source=rss_pci_and_compliance 2009-07-27T04:00:00Z