Security Standards and Compliance – Page 2

How to protect sensitive data with PCI DSS compliance

Posted on May 1, 2019 by Kimm Yeo

PCI DSS compliance can help you protect sensitive data and prevent data breaches. Step 1: Identify sensitive data and track how your applications handle it.
The post How to protect sensitive data with PCI DSS compliance appeared first on Software Inte… Continue reading How to protect sensitive data with PCI DSS compliance→

Why your development team should care about software compliance

Posted on April 18, 2019 by Synopsys Editorial Team

Software compliance isn’t just a concern of security, development, and legal executives. Your developers and development managers should care about it too. Here’s why. How do you evaluate the quality of an application? A simple quality chec… Continue reading Why your development team should care about software compliance→

GDPR: Not heavy-handed yet, but driving data breaches into the open

Posted on March 7, 2019 by Taylor Armerding

The GDPR fines issued so far have been small, but breach notifications are up. As GDPR continues to ramp up, it seems likely to achieve its goals of privacy. The original version of this post was published in Forbes. With the European Union’s lan… Continue reading GDPR: Not heavy-handed yet, but driving data breaches into the open→

New software standards aim to slow rampant credit card theft

Posted on February 14, 2019 by Taylor Armerding

With the new PCI standards, the Payment Card Industry Security Standards Council intends to reduce credit card fraud. But the new standards may not be enough. The original version of this post was published in Forbes. Anything that could reverse, or ev… Continue reading New software standards aim to slow rampant credit card theft→

National Data Privacy Day is wishful thinking

Posted on January 31, 2019 by Taylor Armerding

The worst data privacy threat today isn’t data breach but data abuse. Organizations are using AI to learn more about us than we’d ever choose to tell them. The original version of this post was published in Forbes. You have to have a suprem… Continue reading National Data Privacy Day is wishful thinking→

OWASP Top 10 web application security risks

Posted on January 9, 2019 by Synopsys Editorial Team

The OWASP Top 10 2017 is a list of the most significant web application security risks. How are you addressing these top 10 web app vulnerabilities? The Open Web Application Security Project (OWASP) is a nonprofit community of software developers,… Continue reading OWASP Top 10 web application security risks→

SEC getting more aggressive on financial cyber lapses

Posted on December 12, 2018 by Taylor Armerding

SEC security measures, or cyber enforcement actions, are powerful incentives for financial institutions to protect investments and data from theft and fraud. If there oughta be a law but there isn’t, there can still be a regulation. Which so far … Continue reading SEC getting more aggressive on financial cyber lapses→

Don’t expect jailed CEOs, but Wyden at least puts consumer privacy on the table

Posted on November 14, 2018 by Taylor Armerding

The Consumer Data Protection Act (as outlined in the CDPA draft circulated in early November by Sen. Ron Wyden) might not send CEOs to jail, but it will certainly help protect Americans’ data. The original version of this post was published in Fo… Continue reading Don’t expect jailed CEOs, but Wyden at least puts consumer privacy on the table→

Better passwords in California won’t help much

Posted on October 18, 2018 by Taylor Armerding

California is all done with weak passwords. Well, not right now, but it says it will be done with them for internet-connected devices in another 14 months—starting Jan. 1, 2020. From then on, the Information Privacy: Connected Devices bill, signe… Continue reading Better passwords in California won’t help much→