Skip to main content

March 07, 2018

PCI Compliance Every Day – Requirement 4

In this latest post of my Payment Card Industry Data Security Standard (PCI DSS) compliance blog series, we will explore Requirement 4 of the standard...

See Details

December 08, 2017

PCI Requirement Changes Coming in 2018

The end of 2017 is quickly approaching, and we thought we should remind you of the PCI requirement changes that are coming next year. Some of these de...

See Details

November 20, 2017

PCI Compliance Every Day – Requirement 5

In this latest post of my PCI compliance blog series, we will explore Requirement 5, which has four distinct requirements that imply they need to be a...

See Details

November 13, 2017

PCI Compliance Every Day – Requirement 10

When people think of PCI business as usual (BAU) they do not typically see the requirements in section 10 as having much of anything to do with BAU. H...

See Details

October 19, 2017

PCI Compliance Every Day – Requirement 11

The most widely known requirements in PCI DSS 3.2 section 11 with a timing implication are the quarterly external and internal vulnerability scans (11...

See Details

May 10, 2017

PCI Compliance Every Day

The title of this post sounds daunting, does it not? However, achieving PCI compliance every day is not as daunting as you might think. With the relea...

See Details

May 02, 2016

PCI DSS Version 3.2 Released

Last Thursday, April 28, 2016 the PCI Security Standards Council (PCI SSC) released version 3.2 of the PCI Data Security Standard (PCI DSS). To save y...

See Details

December 18, 2014

PCI DSS: The 30-Day Patch Rule

Requirement 6.2 of the PCI DSS (6.1 in v2) has always created a lot of consternation and discussion. For those of you that have forgotten, requirement...

See Details

September 02, 2014

PCI DSS: Significant Change vs. Periodic

No words or phrases in the PCI standards elicit more comments and questions than “significant change,” “periodic” and “periodically”. So what do these...

See Details