Blog

Shark in Water: 5 Things to Avoid a Costly Data Breach

by Sarah Harvey / June 13, 2023

Is your organization swimming in information security concerns? Recent and startling new malicious attacks are causing organizations to re-think everything we know about our security posture – from breach prevention to response. Organizations are beginning to shift their focus on security when they have realized that sometimes, compliance isn’t enough. With this “shark in water” reality, here are 5 things your organization should be doing to avoid a data breach.…

Cyber Insurance – What Is It and What is Covered Under a Cyber Insurance Policy?

by Benjamin Wright / December 19, 2022

Cyber insurance – a hot topic in the law of data security. Many insurance companies have started issuing policies for cyber incidents and cyber breaches – But, what should be covered under a cyber insurance policy? Since there is no standard policy for cyber insurance, you are likely to find vastly different policies from a number of difference insurance companies. Enterprises looking to use insurance to manage information security risk…

Guide to PCI Compliance – Navigating PCI DSS v3.2

by KirkpatrickPrice / April 12, 2023

What is the PCI DSS? The PCI Security Standards Council was jointly developed by the payment card brands to encourage and enhance cardholder data security and facilitate the broad adoption of consistent data security measures globally. It ensures that all data that lives within the Cardholder Data Environment (CDE) is protected and secured from theft or unauthorized use. Any merchant, service provider, or sub-service provider who stores, processes, or transmits…

3 Data Security & Privacy Best Practices for Your Employees

by Benjamin Wright / December 19, 2022

Why is Data Security & Privacy Important? It is considered best practice, and often required, for organizations to develop, document, and implement an information security policy. An information security policy acts as an agreement with employees with respect to data security and privacy best practices. This set of policies is often seen in the form of a binding employee handbook, or contract, and should be updated on an annual basis,…

PCI Requirement 2.6 – Shared Hosting Providers Must Protect Each Entity’s Hosted Environment

by Randy Bartels / December 22, 2022

What is a Shared Hosting Provider? PCI Requirement 2.6 exists to protect hosting environments. When multiple clients’ data is all on the same server, the security of the server often becomes susceptible to vulnerabilities. For example, one client could create insecure functions, but because the data is under the control of a single environment, the other clients’ data would also become compromised. This is why PCI Requirement 2.6 requires that…

Shark in Water: 5 Things to Avoid a Costly Data Breach

Cyber Insurance – What Is It and What is Covered Under a Cyber Insurance Policy?

Guide to PCI Compliance – Navigating PCI DSS v3.2

3 Data Security & Privacy Best Practices for Your Employees

PCI Requirement 2.6 – Shared Hosting Providers Must Protect Each Entity’s Hosted Environment

Categories

Newsletter

Learn what you need to get started with our Audit Readiness Guide.