PCI DSS: Important Updates Due February 2018

by Sarah Harvey / December 19, 2022

Effective February 1, 2018, there are new PCI DSS requirements that could have a significant impact on your PCI compliance. If you haven’t started working to meet these new requirements, you should make plans to speak with your auditor about how to start implementing these changes. The nine new PCI DSS requirements will be considered best practice until February 1st. These requirements are: New PCI DSS Requirements for Everyone Requirement…

Top 5 Cyber Security Awareness Tips for Employees

by Sarah Harvey / June 14, 2023

Employee Training and Cyber Crime Human error is one of the greatest threats to organizational security – after all, you’re only as strong as your weakest link, and people are your first line of defense. The best way to ensure that your entire workforce is prepared to thwart malicious cyberattacks is to implement annual employee cyber security awareness training. The cyber-crime landscape is constantly changing, so business owners and stakeholders…

Penetration Testing for HIPAA Compliance

by Sarah Harvey / October 6, 2023

What is Penetration Testing? Penetration testing is a critical line of defense when protecting your organization’s sensitive assets from malicious outsiders. Penetration testing is the process of performing authorized security testing of an environment to identify and exploit weaknesses associated with the targeted systems, networks, and applications before those weaknesses can be exploited by a real attacker. When performed in support of HIPAA compliance, the goal is to identify issues…

Everything You Need to Know About SOC 1 Audits

by Sarah Harvey / April 12, 2023

Are you being asked by a top client for a SOC 1 audit report? What is a SOC 1 report? Do you need a SOC 1 audit? Below, you’ll find answers to frequently asked questions about SOC 1 audit reports and learn how your organization can benefit from having a SOC 1 report and what you can expect from your SOC 1 audit process. What is a SOC report? Developed…

Equifax Breach: Five Takeaways to Avoid a Cyberattack

by Sarah Harvey / December 19, 2022

Equifax, one of the three largest consumer credit reporting agencies in the U.S., announced last week that a web application flaw exposed 143 million customer records to malicious hackers. Although not the largest breach in size, the Equifax breach may be the largest to date in severity considering the type of PII that was exposed. While mixed reports are speculating over the cause of the breach, criticisms are rising over…