Security Service Management IT Data Privacy Ransomware ITSM IT Service Management isecops

If you are responsible for data security in your organization, you’ve likely had recent interactions with your IT group around recovery time and recovery point objectives (RTO and RPO). You...

Security PCI PCIDSS4.0 PCI Assessment PCI DSS v4.0

One of the most significant changes introduced in PCI DSS v4.0 involves the documented approach for performing internal vulnerability scans. The internal vulnerability scanning requirement...

Security PCIDSS4.0

What could possibly go wrong with calling out a non-compliant status, or “In Place with Remediation,” on your Attestation of Compliance? Do you have a storm brewing you are yet aware of?

Security PCIDSS4.0

  User Accounts, Application and System Accounts, and Access Reviews Remember the good ole days when Requirement 7 was all about general and privileged user accounts? Well, those days are...

Customer Experience eCommerce CX Roadmap wholesale B2B B2BCommerce Wholesale Distribution

This post is Part II of the two-part series on developing a B2B Customer Experience strategy. We have defined strategy as “vision + goals + initiatives.” Here is a link to the first post in...

Security Malware PCI compliance PCIDSS4.0

Along with the title change of PCI DSS Requirement 5 (it was previously Protect all systems against malware and regularly update anti-virus software or programs), the number of assessment...

Customer Experience eCommerce CX Roadmap B2B B2BCommerce

How to Align Your Success With Your Customer's Success How we treat customers has a significant impact on their perception of us. 85% of business buyers say that their experience with a...

Risk Assessments Security PCI Risk Risk Management RSP PCIDSS4.0 PCIDSS PCI Assessment PCI DSS v4.0

PCI DSS v4.0 introduces new expectations about what is required when it comes to assessing risk.  In contrast to the previous version of the Standard, risk awareness is a core concept that...

Security PCIDSS4.0

On March 31st, 2022 PCI DSS v4.0 was released. Today’s post is part of series of pieces we are publishing that explore the changes to the PCI standard and provide insight into what the...

Security PCI PCIDSS4.0 PCIDSS

Have you ever been off-roading? Full-on four-wheel-drive, low gear, creeping over rocks, or blasting through snowbanks? It’s quite an exhilarating experience. I liken the updates made to...

Security PCIDSS4.0 PCI Assessment PCI DSS v4.0

The recent release of PCI DSS v4.0 may give the mistaken impression that there is a lot of time for organizations to prepare for any required changes to people, processes, and...

Security PCIDSS4.0 PCIDSS PCI Assessment PCI DSS v4.0

I’ve recently spent some time reviewing the PCI DSS v4.0’s updates on the Customized Approach and want to go on record as stating that I believe this is one of the most significant changes...