• The road to secure crypto: start getting risk management priorities on your threat modeling radar

    Karl Steinkamp, Director, PCI Product and Quality Assurance

    While attending the biggest event in crypto history earlier this month in Miami, it struck me that, although irrational over-exuberance was the mood, the reality is really sinking in: We are in a new payments industry paradigm shift. It’s not a fad anymore, and it’s not going away. An exclamation to the event was the notice that on June 9, 2021, El Salvador has officially adopted bitcoin as legal tender (currency) for the country.

    Read more
  • What you need to know: Transitioning CSA STAR for Cloud Controls Matrix 4.0

    Chase Kimberly, Principal of Standardization, Coalfire

    In January of this year, the Cloud Security Alliance (CSA) released a major revision to its widely adopted Cloud Controls Matrix (CCM) in the form of version 4.0. This comes in the middle of a calendar year where several alternative information security frameworks are also expected to be refined, including the HITRUST CSF, ISO/IEC 27002, and PCI DSS.

    Read more