PCI DSS 3.0 Is Coming Soon
May, 2013, Matt Getzelman, PCI Practice Director
The PCI Security Standards Council (SSC) plans on releasing the newest version of the PCI Data Security Standard in October, 2013. Predictably, the PCI SSC has been tight-lipped on divulging details regarding any expected changes.
Determining if your Company is Prepared for FedRAMP
May, 2013, Tom McAndrew, EVP Commercial Services, Coalfire
Many companies interested in pursuing FedRAMP are seeking guidelines, checklists and any referenceable source to help them understand and determine their level of preparedness to go through the FedRAMP process. The GSA's FedRAMP.gov site provides documentation on the FedRAMP process in their "Guide to Understanding FedRAMP." In it is a 12-step checklist to help organizations gauge their readiness for FedRAMP.
Compliance Talk: Debt Collectors and PCI
May, 2013, Ken Ballard,
As the largest IT audit and compliance advisor in the U.S., Coalfire is exposed to a wide variety of compliance concerns. In this series of Compliance Talk blogs, Dirk and Ken are back at their favorite coffee shop…the Bean and Berry in Louisville, Colorado. Over a couple cappuccinos, their discussion turned to some of the unique aspects, when it comes to data security, of debt collection companies.