.webp?width=2169&height=526&name=Compass%20regular%20transparent%20website%20(1).webp "Compass IT Compliance Logo")
-1.webp?width=2169&height=620&name=Compass%20regular%20transparent%20website%20smaller%20(1)-1.webp "Compass IT Compliance")
PCI DSS v4.0 Released – What Changes Were Made?
by Kyle Daun on April 4, 2022 at 2:15 PM
On January 1st, 2019, the Payment Card Industry Data Security Standard (PCI DSS) v3.2.1 came into effect replacing v3.2 which had been in place since October 31st, 2016. Many changes have occurred since January of 2019, one of which being the worldwide shut down in the first half of 2 …
PCI, Service Providers, and You
by Donald Mills on August 19, 2021 at 3:30 PM
As merchants increasingly utilize trusted partners to maintain and manage critical pieces of their business, information technology, and security infrastructure, it becomes necessary to build a program to manage these vendors.
Grocery Stores – A Hidden Gem for Cyber Criminals?
by Nicholas Foisy on March 25, 2020 at 11:00 AM
Following the recent closures of many public-facing businesses in the United States (and across the globe) in response to the spread of Coronavirus (COVID-19), this week’s blog post will discuss some of the cybersecurity challenges and vulnerabilities facing one of the only industries …
Deciphering the PCI Testing Requirements of PCI-DSS Requirement 11
by Adam Cravedi on November 6, 2019 at 1:00 PM
PCI-DSS Requirement 11: Regularly test security systems and processes As a Qualified Security Assessor (QSA) organization and a security analyst, we receive many questions about meeting the various testing controls outlined within the Payment Card Industry Data Security Standard (PCI- …
New PCI Software Security Framework Published
by Patrick Hughes on February 9, 2019 at 1:00 PM
The PCI Security Standards Council published its new Software Security framework on Wednesday January 16th, 2019. The council has stated that the existing standards will be officially retired in 2022.
PCI Requirement 12 - People, Policies, and Processes Time!
by Derek Morris on December 19, 2018 at 2:46 PM
This is the twelfth blog in a 12-part series addressing each PCI DSS Requirement and the challenges faced by companies going through this process. To view the previous posts in this series, click on the appropriate links below: PCI Requirement 1 - Defending the Wall PCI Requirement 2 …