Search

Latest Posts

Popular data security articles: the most-read PCI DSS compliance and data security posts.

Cloud Security

How to Conduct a Cloud Security Assessment

A cloud security assessment is an assessment that tests and analyzes cloud infrastructure to ensure the organization is protected from various security risks and threats on the cloud.
Read
PCI DSS Audit

What are the PCI DSS Audit Requirements

The primary purpose of the PCI DSS audit is to validate an organization's ability to protect cardholder data and all systems that interact with payment transactions.
Read
Cloud Security

Managing Cyber Risk in the Age of Cloud Computing

The cloud delivers game-changing capabilities but also surfaces new cyber risks requiring an evolved security perspective. However, as more sensitive data and critical systems move to the cloud, businesses must adapt their cybersecurity strategies to effectively manage emerging risks.
Mail & Fax Orders

PCI Compliance Recommendations for Mail and Fax Orders

Many orders still flow through fax or mail payment channels and, like all cardholder data, must be handled and secured by PCI DSS.
Read
Credit Card

PCI Requirements For Storing Credit Card Information

PCI-DSS requirements state that cardholder data may only be retained for a legitimate legal, regulatory, or business reason. In other words, if you don't need cardholder data, you shouldn't store it.
Read
Credit Card Over Phone Orders

How to Keep Credit Card Over Phone Orders PCI Compliant

The transaction flow for phone orders can have multiple configurations, and PCI DSS requirements must be considered in each type of configuration.
Read
Pentest

External Penetration Testing Checklist

External pen testing checklist helps system administrators identify and calibrate unused ports, additional services, headers, troubleshooting services, and configurations of firewall rules.
Read

Want to stay up to date with the latest news?

We would love to hear from you! Please fill in your details and we will stay in touch. It's that simple!

PCI DSS GUIDE's aim is to clarify the process of PCI DSS compliance as well as to provide some common sense for that process and to help people preserve their security while they move through their compliance processes.

Latest Posts

The Most Popular Cyber Risks for Students and How to Protect Yourself from Them

0
In the digital age, students sometimes become targets for cybercriminals. The reasons are manifold: from the vast amount of online personal information to the naive trust many young users place in digital platforms.

Common Cyber Threats in Ecommerce and How to Mitigate Them

0
In this article, we will delve into the issue of cybersecurity in ecommerce, describing the types of cyber threats that ecommerce businesses are confronted with and what can be done to avoid these threats.

Managing Cyber Risk in the Age of Cloud Computing

0
The cloud delivers game-changing capabilities but also surfaces new cyber risks requiring an evolved security perspective. However, as more sensitive data and critical systems move to the cloud, businesses must adapt their cybersecurity strategies to effectively manage emerging risks.

Most Popular

PCI DSS Requirements

2
The PCI DSS requirements apply to all system components, including people, processes and technologies that store, process or transmit cardholder data or sensitive authentication data, included in or connected to the cardholder data environment.

What’s New in PCI DSS v4.0?

0
PCI DSS v4.0 replaces PCI DSS version 3.2.1 to address emerging threats and technologies better and provide innovative ways to combat new threats.

Firewall Rule Configuration Best Practices

0
When it comes to securing firewall rules, firewalls have a sensible procedure to follow. Whether you're upgrading hardware or establishing a whole new environment, the order of the procedures will differ.

Fast Access

© PCI DSS GUIDE | All rights reserved