Derek Morris

Derek Morris

Derek Morris is an experienced Senior Information Technology Security Professional with Compass IT Compliance. Derek carries over 25 years of experience in information technology, security, and infrastructure. He holds numerous industry and vendor certifications including CISSP, CISM, CISA, CDPSE, CCNA, and MCSA along with a Bachelor's Degree in Computer Information Systems from Bryant University. Derek also currently serves as one of the Qualified Security Assessors (QSA) for PCI DSS at Compass.

Posts by Derek Morris

PCI Requirement 9 – Lock the Doors and Don’t Forget the Windows Too!

by Derek Morris on September 10, 2018 at 9:48 AM

hacker-1944688_1280

This is the ninth blog in a 12-part series addressing each PCI DSS Requirement and the challenges faced by companies going through this process. To view the previous posts in this series, click on the appropriate links below: PCI Requirement 1 - Defending the Wall PCI Requirement 2 - …

Read Story

Topics: PCI Compliance

PCI Requirement 8 - Identify, Authenticate, and Authorize!!

by Derek Morris on July 17, 2018 at 10:15 AM

black-and-white-computer-device-163017

This is the eighth blog in a 12-part series addressing each PCI DSS Requirement and the challenges faced by companies going through this process. To view the previous blog posts in this series, please follow the links below: PCI Requirement 1 - Defending the Wall PCI Requirement 2 - C …

Read Story

Topics: PCI Compliance

PCI Requirement 7 - Thou Shall Not Pass!

by Derek Morris on July 10, 2018 at 10:00 AM

hacker-1944688_1280

This is the seventh blog in a 12-part series addressing each PCI DSS Requirement and the challenges faced by companies going through this process. For links to the previous posts in this series, use the links below: PCI Requirement 1 - Defending the Wall PCI Requirement 2 - Change You …

Read Story

Topics: PCI Compliance

PCI Requirement 6 - Patches and Scanning and Coding, Oh My!

by Derek Morris on June 20, 2018 at 10:00 AM

2017-04-27healthcare-ransomware

This is the sixth blog in a 12-part series addressing each PCI DSS Requirement and the challenges faced by companies going through this process. To view the previous posts in this series, follow the links below: PCI Requirement 1 - Defending the Wall PCI Requirement 2 - Change Your De …

Read Story

Topics: PCI Compliance

Information Security - Don't Just Check the Box!

by Derek Morris on June 12, 2018 at 10:00 AM

checklist-2077018_1280

Compliance and security at times go hand in hand. In most cases, being compliant does not truly ensure you are being secure. I titled this blog “Don’t just check the box!” because the thinking that if your company can check the compliance box it will be secure enough is just not true. …

Read Story

Topics: Information Security

PCI Requirement 5 - Update and Scan

by Derek Morris on June 7, 2018 at 10:00 AM

cyber-security-3400657_1280

This is the fifth blog in a 12-part series addressing each PCI DSS Requirement and the challenges faced by companies going through this process. To read the previous posts in this series, click on the links below: PCI Requirement 1 PCI Requirement 2 PCI Requirement 3 PCI Requirement 4 …

Read Story

Topics: PCI Compliance
1 2 3 4

See all

See all

Subscribe by email