by Binoy KL | Jan 14, 2013 | PCI DSS Compliance
PCI DSS requirements say many things about network security to make the card holder data safe and protected when it is stored, transmitted & processed. How we can achieve the maximum level of security through network devices? PCI DSS requirement talk about...
by Binoy KL | Aug 22, 2012 | PCI DSS Compliance
The cardholder data breach is not a new thing. It is been a nightmare for every CIO in the world. Dancho Danchev’s blog has an interesting article on how these compromised cardholder data is turned into a physical card. He is profiling a rougue plastic card...
by Binoy KL | Apr 12, 2012 | Corporate Security, PCI DSS Compliance, Standards & Compliance
Many information security professionals, event at the senior level roles, are still getting the internal control mechanisms such as Dual Control and Segregation of duties wrong. I often see that they are confused between the concepts of Dual Control and Segregation of...
by Binoy KL | Apr 4, 2012 | Corporate Security, PCI DSS Compliance, Risk Management
Patch management is one among the major IT Security concerns most of the organizations are worried about. It is practically not possible to have a 100% of the IT infrastructure patched with all patches released by all the software vendors in the environment. Following...
by Binoy KL | Apr 2, 2012 | Data Protection, PCI DSS Compliance
Security breaches are become a common thing these days. They hit the front page only when the size or importance of the breach become huge. The recent security breach at the Global Payments made its way to the front page for the oblivious reason, which is nothing but...
by Binoy KL | Mar 26, 2012 | Passwords, PCI DSS Compliance, Standards & Compliance
Usernames and passwords is still the major method of authenticating users to the systems. It would be difficult to find someone without a user name and password in the workplace. In addition, personal usernames and passwords often come into picture when people access...
Recent Comments