Guidance to Remain PCI Compliant After Making Changes to Your IT Infrastructure

One of the most avoidable PCI failures we see time and again is significant change follow-up. What happens is you make a change to your infrastructure, resume processing, and move on with the newly changed environment in the new configuration. Months later, your Qualified Security Assessor (QSA) walks in and asks, “Did you perform due …

Remote Working: Adapting Payment Security to the New Norm

​Alexander Norell writes that in the period of lockdown more businesses are operating remotely. Employees of banks and call centres are now handling more sensitive data remotely and it is likely to be the new norm. How can they ensure the data is protected? With remote working now the new norm and with many businesses …

Will It Take a Breach for You to Take the Next Maturity Step?

Everyone (er, almost everyone) has had the experience of growing up – maturing if you will. You likely had people teach you and thoughtfully impart to you some knowledge. And, if you’re like me, you didn’t always pay attention. I had to make mistakes for myself to learn. When it comes to compliance and risk, …