The founders of Payment Card Assessments know all to well what it’s like to receive a scan report with over 2,000 configuration failures, a standards team that didn’t communicate changes to the scanning team, and an implementation team that had no idea what they were supposed to do to an in-scope asset before it went into production.
Working with QSA's since 2011, I realized that not all QSA's are created the same. Some QSA's have been working in the PCI DSS Compliance space for a few years,…
How to Stop PCI DSS Control Failures Without Losing Your Cool Hot coffee in hand, you sit down at your desk. You’re humming that catchy tune from the Lego Movie, …
You're running around with your hair on fire because your QSA just informed your CISO that 3,000 call center agents that typed in customer credit card data were in scope…
72% of merchants fall out of PCI DSS compliance within 6 months of achieving their Report on Compliance 2020 Verizon Payment Security Report What sets merchants who have successful PCI…
Payment Card Assessments is dedicated to helping our customers ease the stress and burden that comes with achieving and sustaining PCI DSS Compliance. paymentcardassessments.com Two years sounds like a lot of…
You know the old saying, “you reap what you sow.” If you don’t already have the structure or a sustainable set of processes in place or you’re not planning your…
Let’s be real for a second – the report on compliance is mandatory for all level 1 merchants and any merchant regardless of level that is required to provide a report on compliance by either their acquirer or card brand. Most level 1 merchants fall out of compliance shortly after the ink is dry on their most recent report. Why? Because they don’t have a sustainability program. The RoC is treated like a bad surprise every year and that creates wasted effort, lost money, and burned out staff.
For most merchants, PCI DSS Compliance is a confusing, complicated mix of requirement complexity, lack of knowledge, and an ever changing threat landscape. From small retailers to global merchants, PCI is…
Warning: Complacency With Your Vulnerability Management Program Can Hurt Your Organization By definition, a computer virus is: a malicious application or authored code used to perform destructive activity on a…