Derek Morris

Derek Morris

Derek Morris is an experienced Senior Information Technology Security Professional with Compass IT Compliance. Derek carries over 25 years of experience in information technology, security, and infrastructure. He holds numerous industry and vendor certifications including CISSP, CISM, CISA, CDPSE, CCNA, and MCSA along with a Bachelor's Degree in Computer Information Systems from Bryant University. Derek also currently serves as one of the Qualified Security Assessors (QSA) for PCI DSS at Compass.

Posts by Derek Morris

What is Social Engineering? The Phishing Email

by Derek Morris on April 4, 2017 at 9:30 AM

Bad Phishing Email.png

What is Social Engineering? Part 2 The seemingly most common way for an attacker to use social engineering to gain entry, exfiltrate information or disrupt business is through email phishing. As I mentioned in the previous blog, slick tactics like using nicknames and shockingly proper …

Read Story

Topics: Social Engineering Phishing

PCI Compliance Requirements: Some Tools to Help With Requirement 10!

by Derek Morris on March 29, 2017 at 10:00 AM

PCI Compliance Requirements: Some Tools to Help With Requirement 10!

PCI Requirement 10 states: Track and monitor all access to network resources and cardholder data Logging mechanisms and the ability to track user activities are critical in preventing, detecting and minimizing the impact of a data compromise. The presence of logs in all environments a …

Read Story

Topics: PCI Compliance

What is Social Engineering? Part I

by Derek Morris on March 14, 2017 at 9:45 AM

What is Social Engineering Blog Graphic.png

This post will be the first part in a series of three blog posts that outlines some of the most common methods “hackers” use, from a very high level, to gain access to your systems though social engineering tactics. The next two posts will dig a bit deeper into the different methods, …

Read Story

Topics: Information Security Social Engineering
1 2 3 4

See all

See all

Subscribe by email