The Coalfire Blog

Welcome to the Coalfire Blog, a resource covering the most important issues in IT security and compliance. You'll also find information on Coalfire's insights into the unique cybersecurity issues that impact the industries we serve, including Cloud Service Providers, RetailFinancial Services, Healthcare, Higher Education, Payments, Government, Restaurants, and Utilities.

The Coalfire blog is written by the company's leadership team and our highly-credentialed security assessment experts. We look forward to your comments, so please join the conversation.


  • Q&A from P2PE-NESA Webinar for Merchants

    June 05, 2017, Tim Winston, Principal, P2PE/Payment Processors

    The selection of a PCI-listed P2PE solution and determination of expected benefits can be challenging for even the most sophisticated merchants. The introduction of the NESA program can make decisions more difficult. To help guide merchants, Coalfire and FreedomPay held a webinar “P2PE & NESA for Merchants: How PCI P2PE and NESA Can Reduce Your Compliance Burden and Risk”.

    Read more
  • Accelerating Point-to-Point (P2PE) Adoption

    April 13, 2017, Avik Mukherjee, Senior IT Security Consultant, Coalfire

    How Coalfire is Helping Increase Access to PCI-listed P2PE Solutions - Use of a PCI-listed P2PE solution offers significant security and compliance benefits. However, merchants and service providers are still challenged to take full advantage of this opportunity. Coalfire has invested in solving the most significant obstacle to adoption of listed P2PE solutions.

    Read more
  • Reconciling Quarterly ASV and QSA Scanning Requirements

    February 02, 2017, Rebecca Larson, ScanDesk Director, Coalfire

    In the compliance realm, the term “quarterly” seems to be a sound and straight-forward term used to provide guidance and to aid entities in adhering to requirements. However, it’s meaning can vary based on its context in relation to dealing with various compliance requirements from your ASV and QSA. Here are some guidelines around what you can do to prevent getting snagged in the potential mire of abiding by quarterly scanning requirements.

    Read more
  • New PCI NESA Guidance is Good News for Non-Listed Encryption Solutions

    December 06, 2016, Sam Pfanstiel, Solution Principal, PCI, Coalfire

    While PCI P2PE is still the most secure approach, solution providers, who are not yet validated, can now offer additional clarity to merchants, QSAs, and acquirers

    Read more
  • Optimizing your PCI Compliance Investments

    November 11, 2016, Sam Pfanstiel, Solution Principal, PCI, Coalfire

    Everybody knows that the cost of a breach is high. Given the fact that the chance of a data breach for all merchants is nearly 1-in-4, it’s important to not only have PCI compliance in place, but also the right solutions to optimize your compliance spend.

    Read more
  • Displaying results 6-10 (of 34)
     |<  <  1 - 2 - 3 - 4 - 5 - 6 - 7  >  >| 

Recent Posts

Post Topics

Archives

Tags