What are the 4 Levels of PCI Compliance?

by Sarah Harvey / June 13, 2023

Does your business collect, use, store, process, or transmit payment cardholder information? If so, it’s likely that you’ve heard of the Payment Card Industry Data Security Standard, or PCI DSS. If you haven’t, the PCI DSS is a standard created by major credit card companies, such as Visa, Mastercard, Discovery, American Express, and JCB to establish specific requirements that merchants and service providers must adhere to in order to protect…

Staying Secure While Working from Home

by Sarah Harvey / June 15, 2023

When your employees begin working from a remote workplace, there’s a number of new security threats they can face. While you may already have thorough information security policies and procedures implemented in the workplace, these detailed security controls don’t always transfer to remote work. To mitigate vulnerabilities and protect your remote employees from malicious attacks, make sure you’re following these five tips for remote employees and remote workplaces. 5 Work…

5 Common Cloud Security Misconfigurations for AWS

by Sarah Harvey / December 15, 2022

Security incidents caused by misconfigurations in the cloud happen every single day. In fact, DivvyCloud reports that over the last two years, 33 billion records have been exposed because enterprises struggle to implement proper cloud security. When you take that number and consider Ponemon’s research, which estimates the average cost per compromised record is $150, that means cloud security misconfigurations have cost companies worldwide nearly $5 trillion since 2018. Misconfigurations…

5 Key Areas of Cloud Security

by Sarah Harvey / December 15, 2022

Data breaches are on the rise worldwide and across cloud platforms – which is why we talk about cloud security within AWS, Azure, and Google Cloud so often. As more and more organizations migrate sensitive information and services to cloud environments, it should drive customers to consider how the cloud will impact their privacy, security, and compliance efforts. In cloud security audits at KirkpatrickPrice, controls will be tested against our…

Vendor Due Diligence During a Crisis

by Sarah Harvey / June 15, 2023

For years, businesses have relied on third-party vendors to provide critical business functions, and this especially true today as the surge of remote workers continues and third-party vendors work tirelessly to meet the influx in demand. Third-party vendors are also doing what they can to help offset the impact of the health crisis - they’re banding together to offer free products and services. As we all adjust to social distancing…