Internal Audit and IT: Joining the Same Cybersecurity Team

Effective cybersecurity management requires cross-collaboration between multiple stakeholders, and becomes increasingly complex with larger organizations. Though technology can serve as a solution to mitigate security risk, oftentimes the solution… Continue reading Internal Audit and IT: Joining the Same Cybersecurity Team

PCI, Capsule8, & Polaris – Enterprise Security Weekly #128

    Capsule8 expands threat detection platform for PCI DSS, BitSight unveils peer analytics for more effective security performance management, Imperva advances autonomous application protection capabilities, and Synopsys launches Polaris Software inte… Continue reading PCI, Capsule8, & Polaris – Enterprise Security Weekly #128

Which Cybersecurity Framework is Right for You?

SOC 2, CIS, NIST, ISO27001, PCI and more. How do you choose?
Given the growing amount of information and data that businesses of all sizes are having to manage, great cybersecurity is increasingly the most critical element of IT. Accenture estimat… Continue reading Which Cybersecurity Framework is Right for You?

How Do You Measure Your Investment in Security?

When evaluating enterprise security tools for their effectiveness, it can be challenging to find the right model for best calculating your “Return on Security Investment” (ROSI). Just a few years ago, the potential cost attributed to a secu… Continue reading How Do You Measure Your Investment in Security?

Statistics Canada Asks for Banking Information of 500,000 Canadians

Everyone knows that it’s not a matter of if your private information will be breached. It’s a matter of when. I don’t have much of an expectation of privacy these days. A search in the Amazon application on my iPhone means that I&#821… Continue reading Statistics Canada Asks for Banking Information of 500,000 Canadians

How the CIS Controls Can Help You Achieve PCI DSS 3.2 Compliance

Compliance with version 3.2 of the Payment Card Industry Data Security Standard (PCI DSS) is a must for organizations that handle, process, transmit and store payment card data. But compliance isn’t always easy to establish or maintain. Indeed, t… Continue reading How the CIS Controls Can Help You Achieve PCI DSS 3.2 Compliance

PCI DSS Version 3.2.1 Published by PCI Security Standards Council

The Payment Card Industry Security Standards Council (PCI SSC) published a minor revision to version 3.2 of its Data Security Standard (PCI DSS). On 17 May, PCI SSC published PCI DSS version 3.2.1. The purpose of the update was to clarify organizations… Continue reading PCI DSS Version 3.2.1 Published by PCI Security Standards Council

3 Key Challenges To Being PCI 3.2 Compliant and How To Resolve Them

The latest revision to PCI DSS, PCI 3.2, provides specific security guidance on the handling, processing, transmitting and storing of credit card data. PCI 3.2 presents an opportunity for retail, healthcare, finance and hospitality organizations to min… Continue reading 3 Key Challenges To Being PCI 3.2 Compliant and How To Resolve Them