Blog Category: Compliance
- June 20, 2011
- Got PCI? Get an MSS.
The latest version of PCI DSS promises to be a game changer. Unlike previous versions which left certain areas up for interpretation, this year’s update forces retail company security officers to put increased effort into securing the systems that face the greatest risks—this is where the private credit-card data exists, of course.
Read More- By S.L. Sweet
- January 10, 2011
- Retailers: Look beyond PCI DSS Compliance
Many retailers that have recently completed security audits are scrambling to implement new measures as their auditors begin to insist on full compliance with key areas of the Payment Card Industry (PCI) Data Security Standard (DSS).
Read More- By S.L. Sweet
- November 30, 2010
- Tips for Choosing a MSSP
Security as a Service (SaaS) offerings are prompting many businesses to consider finding new ways to manage their network security functions. Yet there can be a high level of anxiety when you think about handing something as critical as network security over to an outside party. The question becomes, how do you find a SaaS provider matches well with the way you want to manage your network security?
Read More- By S.L. Sweet
- September 14, 2010
- A Retailer's View of Security Information Management
If your company accepts payment cards, it can be hard to keep up with the data storage and log review requirements of the Payment Card Industry Data Security Standard (PCI DSS). For device log data, the standard requires storage for at least one year, with the most recent 90 days of data retrievable immediately. This applies to all of the systems within your cardholder data environment and particularly your point-of-sale systems that need daily review for potential security breaches.
Read More- By S.L. Sweet
- August 16, 2010
- Now Is The Time To Step Up Your Security Practices
The United States Secret Service, working in collaboration with Verizon, recently released a report [PDF} investigating cybercrimes which reveals that data breaches of electronic records last year involved external agents 70% of the time, insider agents 48% of the time, that 11% of the events implicated business partners, and that 27% involved multiple parties.
Read More- By Michael Francois
- August 4, 2010
- Keeping Pace with the PCI Data Security Standard
For organizations that accept payment cards, it can be difficult to keep up with the evolving industry standards for data security. And when updated standards emerge, you often find yourself scrambling to keep auditors happy and maintain compliance, not to mention keeping your operations secure. Think for a moment about the range of organizations accepting payment cards, and it becomes easier to understand why maintaining PCI compliance presents a real challenge to network operations and processes.
Read More- By S.L. Sweet
- June 25, 2010
- Be Ready for PCI Changes Coming July 1
Just a friendly reminder to those who process credit card transactions that July 1 is a key date, in terms of security compliance. On this date all North American merchants who process transactions must be making use of Payment Application Data Security Standard (PA-DSS) verified payment applications, in support of the Payment Card Industry Data Security Standard (PCI DSS).
Read More- By Michael Francois
- May 3, 2010
- Working with Retailers to Solve Network Connectivity and Security Issues
This week MegaPath is looking forward to meeting convenience store retailers at the NACStech conference in New Orleans.
Read More- By Jayne Swystun
- April 23, 2010
- Credit Card Security Is Serious Business
Yesterday Janet Wong published an article on our blog about how a lack of security compliance can be costly to your business. Fewer than 24 hours later, VentureBeat reported how a certain Google search revealed the credit card numbers of some Blippy users.
Read More- By Michael Francois
- April 22, 2010
- Lack of Network Security Compliance Can Be Costly
It seemed like an ordinary hacker attack on a small financial firm's Web servers in order to access customer records. That is, until the e-mail arrived with a blackmail attempt.
Read More- By Janet Wong
- March 7, 2010
- Protecting Privacy
It is always a good idea to make sure you are protecting your customer’s private data, now so more than ever. After several extensions of the original implementation date, as of March 1, 2010, any organization that possesses the personally identifiable information of Massachusetts residents will have to be in compliance with the Commonwealth of Massachusetts Data Privacy Law 201 CMR 17.00.
Read More- By Michael Francois
- December 9, 2009
- 10 Topics for 2010
With the end of the year coming up fast, it seems like it is a good time to take a look at what 2010 has in store for us. Several trends in business connectivity have developed over the last year, and will continue to further evolve in 2010. Here is a list of 10 topics you should take into consideration as you do your planning for next year.
Read More- By Michael Francois
- November 10, 2009
- Attention All Retailers: Are You Prepared For Black Friday?
The Holiday Retail Season is fast approaching, and smart businesses are preparing themselves to be able to better compete for the consumer’s dollar.
Read More- By Michael Francois
- September 21, 2009
- Preserving a Free and Open Internet?
FCC Chairman Julius Genachowski gave a speech today in which he discussed his vision for the future of broadband and the Internet, specifically as related to keeping it ‘open.’
Read More- By Michael Francois
- August 5, 2009
- The Summer of Broadband
Wired magazine has an good story about how we are currently living ‘The Summer of Broadband.’ Specifically, the story speaks to the focus the new administration, through the FCC, is placing on America’s IT and communications infrastructure.
Read More- By Michael Francois
- July 27, 2009
- FCC At Full Strength
The U.S. Senate confirmed Meredith Attwell Baker and Mignon Clyburn last week to the last two FCC seats.
Read More- By Michael Francois
- July 20, 2009
- PCI Releases Wireless Guidelines
The Payment Card Industry Security Standards Council has released a guidelines document for implementing wireless networks.
Read More- By Michael Francois
- July 6, 2009
- US Launches Broadband.gov
The FCC has launched a new website, Broadband.gov, where it will place information relative to the US National Broadband plan.
Read More- By Michael Francois
- June 24, 2009
- Nevada Bets On PCI
Nevada has become the latest state to integrate the PCI specification into state law. Previously, Minnesota's Plastic Card Security Act had gotten the ball rolling by including part of the specification, but Nevada has written the entire standard into its law.
Read More- By Michael Francois
