The Coalfire Blog

Welcome to the Coalfire Blog, a resource covering the most important issues in IT security and compliance. You'll also find information on Coalfire's insights into the unique cybersecurity issues that impact the industries we serve, including Cloud Service Providers, RetailFinancial Services, Healthcare, Higher Education, Payments, Government, Restaurants, and Utilities.

The Coalfire blog is written by the company's leadership team and our highly-credentialed security assessment experts. We look forward to your comments, so please join the conversation.


  • AWS releases PCI DSS Quick Start for Deploying PCI DSS In-Scope Workloads

    May 24, 2016, The Coalfire Team,

    In the next step to help customers adopt their platform for PCI, Amazon Web Services (AWS) has released their PCI DSS Quick Start program.  The PCI DSS Quick Start program is the next evolution of cloud providers developing tools for rapid deployment of standardized configurations to drive adoption in heavily regulated industries.  The Quick Start program was wholly developed by AWS field teams to help provide guidance on reference architectures, configuration and tools to rapidly deploy the guidance.

    Read more
  • Coalfire goes to Washington!

    May 05, 2016, The Coalfire Team,

    Our CEO Larry Jones visited The White House Thursday morning to join with First Lady Michelle Obama and Dr. Biden in the celebration of the Joining Forces initiative’s fifth-year anniversary and announce Coalfire’s pledge to hire and train veterans and military spouses.

    Read more
  • What to Expect in the PCI 3.2 Update

    April 04, 2016, Shawn Shifflett, CISSP, QSA, Senior Practice Director, PCI

    A preview of new requirements and guidance expected later this month from the Payment Card Industry Security Standards Council was announced Thursday. The PCI DSS 3.2 version represents the first update to the standard that the Council has released since 3.1 in April 2015 and 3.0 in November of 2013.

    Read more
  • What You Need to Know From the Cybersecurity Act of 2015: Part One

    January 19, 2016, Rick Link, Managing Director

    On Dec. 18, 2015, President Obama signed into law an omnibus spending bill that included the Cybersecurity Act of 2015 (“The Act”). The Act was a compromise of cybersecurity information sharing bills that passed the House and Senate earlier in 2015. It creates a voluntary process for sharing cybersecurity information and is intended to encourage public- and private-sector entities to share cyber-threat information. The Act is controversial, as the active sharing of information between and among the Federal Government and private sector entities does not currently occur routinely or effectively.

    Read more
  • PCI Council Gives Merchants Reprieve on PCI 3.1 Updates

    January 07, 2016, Shawn Shifflett, CISSP, QSA, Senior Practice Director, PCI

    The Payment Card Industry Security Standards Council (PCI SSC) released an update to its vulnerability standards and is giving merchants until June 2018 to migrate their security protocols, even though waiting is not recommended.

    Read more
  • Displaying results 1-5 (of 195)
     |<  < 1 - 2 - 3 - 4 - 5 - 6 - 7 - 8 - 9 - 10  >  >| 

Recent Posts

Post Topics

Archives

Tags

Follow us to get the latest updates.