.webp?width=2169&height=526&name=Compass%20regular%20transparent%20website%20(1).webp "Compass IT Compliance Logo")
-1.webp?width=2169&height=620&name=Compass%20regular%20transparent%20website%20smaller%20(1)-1.webp "Compass IT Compliance")
PCI Requirement 6 - Patches and Scanning and Coding, Oh My!
by Derek Morris on June 20, 2018 at 10:00 AM
This is the sixth blog in a 12-part series addressing each PCI DSS Requirement and the challenges faced by companies going through this process. To view the previous posts in this series, follow the links below: PCI Requirement 1 - Defending the Wall PCI Requirement 2 - Change Your De …
Information Security - Don't Just Check the Box!
by Derek Morris on June 12, 2018 at 10:00 AM
Compliance and security at times go hand in hand. In most cases, being compliant does not truly ensure you are being secure. I titled this blog “Don’t just check the box!” because the thinking that if your company can check the compliance box it will be secure enough is just not true. …
The NIST Cybersecurity Framework Functions – Respond
by Kyle Daun on June 8, 2018 at 10:00 AM
This is part 4 of our ongoing blog series on the NIST Cybersecurity Framework. To view our previous posts in this series, please see the links below: NIST Cybersecurity Framework - Overview and Identify NIST Cybersecurity Framework - Protect NIST Cybersecurity Framework - Detect After …
PCI Requirement 5 - Update and Scan
by Derek Morris on June 7, 2018 at 10:00 AM
This is the fifth blog in a 12-part series addressing each PCI DSS Requirement and the challenges faced by companies going through this process. To read the previous posts in this series, click on the links below: PCI Requirement 1 PCI Requirement 2 PCI Requirement 3 PCI Requirement 4 …
PCI Requirement 4 – Hide in Plain Sight
by Derek Morris on May 22, 2018 at 9:30 AM
This is the fourth blog in a 12-part series addressing each PCI DSS Requirement and the challenges faced by companies going through this process. To read previous posts in this series, click on the links below: PCI DSS Requirement 1 PCI DSS Requirement 2 PCI DSS Requirement 3 Requirem …
WannaCry Lives On! Have we Learned Anything?
by Adam Cravedi on May 21, 2018 at 10:58 AM
As the one-year anniversary of the most widely spread ransomware attack approaches, WannaCry is still active in the wild. Fortunately, so is the “kill switch” domain, rendering the attack mostly benign. During the WannaCry outbreak MalwareTech, a UK-based researcher, discovered that W …