• May 03, 2010 03 May'10

    Getting serious about PCI DSS compliance

    A survey of Qualified Security Assessors (QSAs) on how businesses are dealing with the 12 mandatory requirements of the Payment Card Industry Security Standard (PCI DSS) contains a number of ...  Continue Reading

  • May 03, 2010 03 May'10

    Achieving compliance is about more than secure data encryption

    Hype says the only security control needed for achieving compliance is encryption. Reality says computer upgrades and home PCs are also issues to be concerned about.  Continue Reading

  • May 01, 2010 01 May'10

    IT controls

    An IT control is a procedure or policy that provides a reasonable assurance that the information technology (IT) used by an organization operates as intended, that data is reliable and that the organization is in compliance with applicable laws and ...  Continue Reading

  • May 01, 2010 01 May'10

    New rules for HIPAA

    Organizations that had to comply with HIPAA were frustrated by the lack of enforcement and specifics. The HITECH Act is changing all of that. Read this e-book to learn how the HIPAA is getting new teeth, new ways the FTC is getting involved and more.  Continue Reading