pci assessments Archives - Payment Card Assesments

17 April

10 Insider Secrets From a Recovering PCI ISA

April 17, 2023May 8, 2023Peggy NolanPCI Report on Compliance2 Comments

10 Insider Secrets From a Recovering PCI ISA

Does this sound familiar?

“I feel like a fraud.”

“I have no idea what I’m doing.”

“How do I know if this evidence meets the PCI DSS requirement?”

“I don’t know how to tell a senior director their software development process is neither secure nor PCI DSS compliant.”

Running or being in charge of a PCI Compliance Program feels like you’ve been given the weight of a thousand worlds to carry.

You have all of the responsibility and zero authority.

It’s like being stuck in a dingy in the middle of the Pacific Ocean.

So, how do you get past feeling like a fraud who’s adrift in a vast ocean without any paddles?

I know how overwhelming running a PCI DSS Compliance program is.

That’s why I’m sharing How to Win At PCI Compliance: 10 Insider Secrets From an Ex PCI ISA with you today.

I want help you feel more confident and less adrift.

Keep Reading!

20 March

10 Essential Tasks To Do BEFORE You Start Your 2023 PCI Report On Compliance

March 20, 2023May 22, 2023Peggy NolanPCI Report on ComplianceNo Comments

Don’t Start Your 2023 PCI Report on Compliance Without Doing These 10 Essential Tasks FIRST:

The end of the first quarter is quickly approaching. It’s time to get your PCI Compliance house in order.

Because nobody wants to be the next Landry’s and have a $20M fine upheld by federal court.

1. You have a copy of the signed Statement of Work with your QSA

Make sure you have this statement of work at your fingertips throughout your assessment period. This agreement protects you and your QSA for work that is contractually agreed upon.

2. Complete an end-to-end PCI Scope Assessment

The success of your PCI Report on Compliance hinges upon an accurate PCI Scope Assessment.

Your scope assessment includes the who, what, where, when, why, and how of your cardholder data environment and anything or anybody that connects to your cardholder data environment.

13 March

5 Actionable Tips To Crush Your Next PCI Report on Compliance

March 13, 2023May 22, 2023Peggy NolanPCI Report on ComplianceNo Comments

Have you almost quit your PCI Compliance job after submitting your organization’s Report on Compliance?

Don’t be shy. It’s okay if you walked away.

I almost quit I submitted the first PCI Report on Compliance I ever worked on.

December 21, 2012 a day that still dredges up heartburn.

But…

I didn’t quit.

I didn’t walk away.

Instead, I saw the opportunity to build a world class PCI DSS Compliance program.

27 February

5 PCI Compliance Headaches You Can Live Without

February 27, 2023May 22, 2023Peggy NolanPCI DSS, PCI Report on ComplianceNo Comments

If PCI Compliance were easy, every organization would be doing it, right?

But it’s not.

The sad statistic from the most recent Verizon Payment Security Report is that 57% of all merchants fail to sustain PCI DSS Compliance.

Why?

There are so many reasons. Where do we start?

Let’s start with the 5 PCI Compliance headaches everyone can live without.

15 March

The (PCI) Law of Cause and Effect: Are You Sowing The Right Seeds for Your PCI DSS Program?

March 15, 2022June 1, 2022Peggy NolanBlog, PCI DSS, SustainabilityNo Comments

You know the old saying, “you reap what you sow.” If you don’t already have the structure or a sustainable set of processes in place or you’re not planning your…

6 February

The Seven Most Common PCI Compliance Challenges Merchants Face

February 6, 2022March 5, 2022Peggy NolanBlog, PCI DSS, PCI Report on Compliance, SustainabilityNo Comments

For most merchants, PCI DSS Compliance is a confusing, complicated mix of requirement complexity, lack of knowledge, and an ever changing threat landscape. From small retailers to global merchants, PCI is…

1 December

Warning: Complacency With Your Vulnerability Management Program Can Hurt Your Organization

December 1, 2021June 27, 2022Peggy NolanPCI DSS, PCI Report on Compliance, Tips/TricksNo Comments

Warning: Complacency With Your Vulnerability Management Program Can Hurt Your Organization By definition, a computer virus is: a malicious application or authored code used to perform destructive activity on a…

9 September

How Safe Is Your Customer Cardholder Data At Rest and During Transmission?

September 9, 2021Peggy NolanPCI DSS, PCI Report on ComplianceNo Comments

Welcome back to the our series, The Ultimate Guide On Managing PCI DSS Requirement Frequencies. This week we’re diving head first into Requirement 3, “Protect Stored Cardholder Data,” and Requirement…

29 April

10 Tips to Breeze Through Your Next PCI Interview

April 29, 2021June 9, 2021Peggy NolanBlog, PCI Report on ComplianceNo Comments

Most people would rather have root canal without novocaine than be interviewed by a QSA for a PCI Report on Compliance. Maybe it makes your palms all sweaty and your…