Clik here to view.
GDPR 101 Part 1: Should I Be Worried?
What you need to know now about the EU’s General Data Protection Regulation (GDPR). Gary GloverSVP, AssessmentsCISSP, CISA, QSA, PA-QSAWith the EU’s GDPR compliance date looming (May 25, 2018),...
View ArticleClik here to view.
PIIscan: Find and Secure Unencrypted Personal Data
SecurityMetrics PIIscan Helps You Comply with Security Standards and Mandates. What is PII, and why do I need to find it?Personally Identifiable Information (PII) is data kept by an organization which...
View ArticleClik here to view.
2018 HIPAA Guide: Highlights for Business Associates
A reference for business associates using the SecurityMetrics HIPAA Guide at their organizations. We released the SecurityMetrics 2018 Guide to HIPAA Compliance on November 30, 2017.Business associates...
View ArticleClik here to view.
2018 PANscan Results: Storage of Credit Card Data on the Rise
See how much unencrypted card data PANscan® found on business networks in 2017. Storage of unencrypted PAN on networks is upPrimary account numbers (PAN) are the 14-, 15-, or 16-digit credit card...
View ArticleClik here to view.
GDPR FAQs
Our most common questions about the General Data Protection Regulation. Ben ChristensenCISA, QSAIf you’re like most business owners, you’re probably wondering if and how the new EU General Data...
View ArticleClik here to view.
No Spreadsheets Needed: Manage HIPAA in SecurityMetrics’ Health Network Portal
Protect your network, save time on HIPAA, and maintain your reputation.HIPAA management for large networksData security and HIPAA compliance are more important than ever for the healthcare sector. From...
View ArticleClik here to view.
What's Inside Our 2018 PCI Guide
The 2018 PCI Guide is here. Learn what’s in it and how it will simplify your PCI process. We’ve officially launched our 2018 Guide to Payment Card Industry Data Security Standard (PCI DSS) Compliance....
View ArticleClik here to view.
Takeaways from Our 2018 PCI Guide
Important lessons from the SecurityMetrics 2018 Guide to PCI DSS Compliance. Our 2018 PCI Guide is out and already helping businesses understand the Payment Card Industry Data Security Standard (PCI...
View ArticleClik here to view.
What are the 12 requirements of PCI DSS Compliance?
The 12 PCI Requirements, plus resources to help address them. The PCI DSS (Payment Card Industry Data Security Standard) is a security standard developed and maintained by the PCI Council. Its purpose...
View ArticleClik here to view.
GDPR 101 Part 2: What are the Requirements of GDPR?
Learn the basics about the EU’s General Data Protection Regulation.Gary GloverVP of AssessmentsCISSP, CISA, QSA, PA-QSAPart 2 of our 3-part GDPR 101 blog series is based on our GDPR 101 Webinar and...
View ArticleClik here to view.
Resources from the PCI Council: Payment Data Security Essentials
Series of infographics and videos to help merchants with common security issues. The Payment Card Industry Security Standards Council (PCI SSC) recently announced the release of their “Payment Data...
View ArticleClik here to view.
Top 5 PCI Blog Posts for SMBs
Resources to help SMBs learn about data security and PCI Compliance.We often get questions from small business owners about where they fit in with data security and PCI compliance. Are they expected to...
View ArticleClik here to view.
How Prepared are UK Businesses for GDPR?
Learn about the General Data Protection Regulation and how UK businesses are preparing.The EU General Data Protection Regulation (GDPR) will come into effect on May 25, 2018. This government mandate...
View ArticleClik here to view.
ETA TRANSACT 2018 Wrap Up
The quality of our connections made 2018 our best year yet. From our annual golf tournament on Monday to tasty drinks and good conversation on the show floor, TRANSACT 18 was a huge success.Mix and...
View ArticleClik here to view.
GDPR 101 Part 3: What Should I Do Now?
Three tips to get the ball rolling on your GDPR efforts. Gary GloverSVP, AssessmentsCISSP, CISA, QSAThis post wraps up the final installment in our 3-part GDPR 101 blog series. This series is based on...
View ArticleClik here to view.
How Much Does HIPAA Compliance Cost?
Realistic HIPAA security budgets vs. wishful thinking.Jen StoneMCSIS, CISSP, QSAHIPAA compliance is rarely allocated the resources it requires. And this trend extends beyond just small organizations...
View ArticleClik here to view.
PCI Council Releases PCI DSS 3.2.1: What You Need to Know
Learn what’s changed in the latest version of the PCI DSS.PCI DSS version 3.2.1The Payment Card Industry Security Standards Council (PCI SSC) recently announced the release of the PCI Data Security...
View ArticleClik here to view.
Lessons from Data Breaches in 2017 and What to Expect in 2018
Which data breach predictions came true in 2017 and what to expect for 2018.David EllisSVP, InvestigationsGCIH, QSA, PFI, CISSPThis blog is based on Dave Ellis’s Webinar, “Lessons Learned from 2017...
View ArticleClik here to view.
PCI 3.1: Stop Using SSL and Outdated TLS Immediately
“SSL has been removed as an example of strong cryptography in the PCI DSS, and can no longer be used as a security control after June 30, 2016.” By: Gary GloverUPDATE: As of May 2017, PCI DSS 3.2.1 is...
View ArticleClik here to view.
IT Checklists for PCI Compliance
Detailed checklists for teams working on PCI compliance.We created our PCI Guideto help businesses get compliant with PCI standards and avoid data breaches. While C-level executives and compliance...
View ArticleClik here to view.
5 Tips to Improve HIPAA Compliance in 2018
The state of HIPAA security this year, plus tips to focus your efforts.Brand BarneyCISSP, HCISSP, QSAWhat’s new in HIPAA in 2018?In general, organizations don’t seem to be keeping up with mounting...
View ArticleClik here to view.
Network Diagrams: Key to Compliance and Security
Three tips for PCI compliance network documentation.Nathan Cooper, CISSPIf you were to ask network architects and engineers about their favorite part of the job, I doubt any of them will respond with...
View ArticleClik here to view.
PCI vs. GDPR: What’s the Difference?
Learn the important differences between the two security standards.Jonas De OliveiraCISSP, QSA, CPA, CISAIf you are a merchant and already deal with PCI compliance, you’ve probably heard about the...
View ArticleClik here to view.
Pentesting vs Vulnerability Scanning: What’s the Difference?
Two very different ways to test your systems for vulnerabilities. By: Gary GloverPenetration testing and vulnerability scanning are often confused for the same service. And, business owners sometimes...
View ArticleClik here to view.
Cloud Security: What Businesses Need to Know
Top Cloud Security Controls Organizations Should Be Using.Adnan RajaBecause securing data within the Cloud is complex, having a standard set of protective controls is pivotal to keep your customers...
View Article