.webp?width=2169&height=526&name=Compass%20regular%20transparent%20website%20(1).webp "Compass IT Compliance Logo")
-1.webp?width=2169&height=620&name=Compass%20regular%20transparent%20website%20smaller%20(1)-1.webp "Compass IT Compliance")
The Best Cyber Monday Gift: A Security Risk Assessment
by Geoff Yeagley on December 1, 2015 at 11:14 AM
Cyber Monday is in the books for 2015 and it is expected to be another record year for online spending. Analysts expect that individuals will spend around $2.4 billion online this past Cyber Monday, an 18% - 20% increase over last year. While there were some deals to be found out ther …
The Case for the PCI ROC: When to Perform One Over an SAQ
by Geoff Yeagley on November 24, 2015 at 9:18 AM
PCI Compliance can be a challenging initiative to take on, especially if this is a new process for your organization. Depending on the level of merchant or service provider you fall under determines the requirements you must complete to become PCI Compliant. This will either take form …
FFIEC Guidance: Significant Changes to the Management Booklet
by Geoff Yeagley on November 18, 2015 at 10:00 AM
On November 10th, the Federal Financial Institutions Examination Council (FFIEC) issued a revised Management booklet which is a part of the IT Examination Handbook. This is considered a major revision of the booklet and the first one to take place since 2004. As just a quick overview, …
The Top 5 Reasons You Should Have a Vendor Management Program
by Geoff Yeagley on November 10, 2015 at 10:09 AM
Last week we talked about what Vendor Management is and really why you should care about it for your organization. This week we are going to outline the top 5 reasons, in no particular order, of why your organization needs to have a Vendor Management Program implemented and that makes …
What is a Vendor Management Program and Why Should You Care?
by Geoff Yeagley on November 3, 2015 at 10:00 AM
Vendor Management is a term that is thrown around all the time, but what does it really mean? If we look at it on the surface, it is a method for managing your vendors and third party service providers. That's a little obvious of course, but let's look at the definition of Vendor Mana …