Using Frameworks to Navigate the Convergence of Data Privacy & Cybersecurity | Apptega

Cyber Insights Team | July 14, 2020 | ISO 27001, NIST, NIST 800 - 53, NIST 800-171, NIST CsF, PCI, Privacy, SOC 2

...

A Checklist for Preparing for Your Organization’s Next PCI Audit

Anthony Israel-Davis | July 2, 2020 | Compliance, PCI, pci audit

Organizations cannot afford to neglect their PCI compliance obligations. According to its website, PCI could punish offending organizations with a monetary penalty ranging in value from $5,000 to $100,000 per month. These ...

The State of Security

It’s all about the data

Deepika Gajaria, Senior Director, Product Management | June 11, 2020 | AppSec, Card Theft, CCPA, Client-side Vulnerability, Client-side Website Attacks, Content Security Policy, credit card skimming, Data breaches, Data Privacy, feature-policy, formjacking, , HSTS, Javascript Attacks, Magecart, Payment Card Skimming, PCI, SRI

Data protection, controls and compliance don’t have to be an onerous obligation. With the right approach, you can turn it into a key differentiator for your business, says Tala’s Director of Product ...

Tala Blog

RSA Continues User Experience Evolution with RSA Archer Release 6.8

RSA Blog | April 28, 2020 | Digital Transformation, GRC, Integrated Risk Management, PCI, Regulatory Compliance, RSA Archer, Third Party Risk

In keeping with our vision to ?Inspire Everyone to Own Risk,? RSA Archer Release 6.8 continues the evolution of the RSA Archer user experience. Available April 28, 2020, this release delivers?new features ...

RSA Blog

How Are You Implementing Compensating Controls for OWASP Top 10?

Harish Bhat | April 27, 2020 | AppSec Training, Blog, Compliance, Cybersecurity, owasp, PCI, Secure Coding Education, Secure Development Training

Read Time 2 minutes OWASP’s Top 10 vulnerabilities continue to challenge security professionals on the compensating controls they need to ...

Blog – Cybersecurity Workforce Training on the Frontlines

Unleash a Kick-Ass AppSec Ninja Program

Harish Bhat | February 26, 2020 | AppSec Training, Blog, Blue Teams, Capture-the-Flag (CTF), Cybersecurity, gamification, hackathons, PCI, Red Teams, Secure Coding Education, Secure Development Training

Read Time 2 minutes Left shifting of security has moved developers to the frontline of application security. However, developers have limited ...

Blog – Cybersecurity Workforce Training on the Frontlines

Is it time to Reimagine AppSec Training?

Harish Bhat | February 12, 2020 | AppSec Training, Blog, Compliance, Cybersecurity, owasp, PCI, Secure Coding Education, Secure Development Training

Read Time < 1 minute A closer look at various industry reports indicate that software vulnerabilities continue to creep into code at an alarming clip ...

Blog – Cybersecurity Workforce Training on the Frontlines

Developing a Data Protection Compliance Program – Verizon’s 9-5-4 Model

Anthony Israel-Davis | January 13, 2020 | 9-5-4 model, IT Security and Data Protection, PCI, verizon

In a previous post, I wrote about my key take-aways from Verizon’s 2019 Payment Security Report. While it’s no surprise it was full of interesting and useful data, (Verizon’s yearly Data Breach ...

The State of Security

Sale of 4 Million Stolen Cards Tied to Breaches at 4 Restaurant Chains

BrianKrebs | November 26, 2019 | Data breaches, Focus Brands, Gemini Advisory, Joker's stash, Krystal breach, McAlister's Deli breach, Moe's breach, Payment Card Industry security standards, PCI, Schlotsky's breach, The Coming Storm, verizon

On Nov. 23, one of the cybercrime underground's largest bazaars for buying and selling stolen payment card data announced the immediate availability of some four million freshly-hacked debit and credit cards. KrebsOnSecurity ...

Krebs on Security

3 Benefits of Taking Data Out of PCI Audit Scope

Jonathan Deveaux | October 29, 2019 | data-centric security, dataprivacy, dataprotection, digital payments, out-of-scope, PCI, PCI DSS, Tokenization

Whether your company accepts payments at a store or restaurant, sells products or services through a website, or handles monthly payment billing, you or someone at your company is most likely aware ...

comforte Insights

PCI

Using Frameworks to Navigate the Convergence of Data Privacy & Cybersecurity | Apptega

A Checklist for Preparing for Your Organization’s Next PCI Audit

It’s all about the data

RSA Continues User Experience Evolution with RSA Archer Release 6.8

How Are You Implementing Compensating Controls for OWASP Top 10?

Unleash a Kick-Ass AppSec Ninja Program

Is it time to Reimagine AppSec Training?

Developing a Data Protection Compliance Program – Verizon’s 9-5-4 Model

Sale of 4 Million Stolen Cards Tied to Breaches at 4 Restaurant Chains

3 Benefits of Taking Data Out of PCI Audit Scope

The Future of Multi-Cloud Security: A Look Ahead at Intelligent Cloud Security Posture Management Solutions

Prevent Catastrophic Data Loss in the Cloud

CISO Roundtable: What We’ve Heard, and What We’re Looking Forward To