The Coalfire Blog

Welcome to the Coalfire Blog, a resource covering the most important issues in IT security and compliance. You'll also find information on Coalfire's insights into the unique cybersecurity issues that impact the industries we serve, including Cloud Service Providers, RetailFinancial Services, Healthcare, Higher Education, Payments, Government, Restaurants, and Utilities.

The Coalfire blog is written by the company's leadership team and our highly-credentialed security assessment experts. We look forward to your comments, so please join the conversation.


  • New PCI NESA Guidance is Good News for Non-Listed Encryption Solutions

    December 06, 2016, Sam Pfanstiel, Solution Principal, PCI, Coalfire

    While PCI P2PE is still the most secure approach, solution providers, who are not yet validated, can now offer additional clarity to merchants, QSAs, and acquirers

    Read more
  • Optimizing your PCI Compliance Investments

    November 11, 2016, Sam Pfanstiel, Solution Principal, PCI, Coalfire

    Everybody knows that the cost of a breach is high. Given the fact that the chance of a data breach for all merchants is nearly 1-in-4, it’s important to not only have PCI compliance in place, but also the right solutions to optimize your compliance spend.

    Read more
  • AWS releases PCI DSS Quick Start for Deploying PCI DSS In-Scope Workloads

    May 24, 2016, Communications Team, Coalfire

    In the next step to help customers adopt their platform for PCI, Amazon Web Services (AWS) has released their PCI DSS Quick Start program.  The PCI DSS Quick Start program is the next evolution of cloud providers developing tools for rapid deployment of standardized configurations to drive adoption in heavily regulated industries.  The Quick Start program was wholly developed by AWS field teams to help provide guidance on reference architectures, configuration and tools to rapidly deploy the guidance.

    Read more
  • What to Expect in the PCI 3.2 Update

    April 04, 2016, Shawn Shifflett, CISSP, QSA, Senior Practice Director, PCI

    A preview of new requirements and guidance expected later this month from the Payment Card Industry Security Standards Council was announced Thursday. The PCI DSS 3.2 version represents the first update to the standard that the Council has released since 3.1 in April 2015 and 3.0 in November of 2013.

    Read more
  • PCI Council Gives Merchants Reprieve on PCI 3.1 Updates

    January 07, 2016, Shawn Shifflett, CISSP, QSA, Senior Practice Director, PCI

    The Payment Card Industry Security Standards Council (PCI SSC) released an update to its vulnerability standards and is giving merchants until June 2018 to migrate their security protocols, even though waiting is not recommended.

    Read more
  • Displaying results 6-10 (of 31)
     |<  <  1 - 2 - 3 - 4 - 5 - 6 - 7  >  >| 

Recent Posts

Post Topics

Archives

RSS Feed

The Coalfire BlogSubscribe to Feed
Chrome users will need to install RSS Subscription Extension (by Google)

Tags