PCI-DSS applies to any company that stores, processes or transmits cardholder information.
Learn the requirements and gives specific protections that must be in place for PCI compliance
The Payment Card Industry Data Security Standard (PCI DSS) focuses on protecting cardholder data.
PCI DSS standards established four levels of PCI compliance surrounding information security.
SOC 1 reports differ from SOC 2 reports in their use by the organization and their levels of detail.
SSAE 18 incorporated four changes that intended to make the SOC 1 reports more useful.
SSAE 18 reports follow standards by AICPA.
In 1946, representatives from 25 countries gathered to discuss formalizing industrial standards to govern emerging
To be ISO certified, a 3rd-party assessor must provide an independent opinion that a company met the requirements.
Cardholder data must be stored, transmitted, and processed in a secure environment to protect from data breaches.
A risk assessment matrix is an important part of the risk management decision making process.
A risk management plan is a written document that details the organization’s risk management process.