Partners

Accellion
Secure File Sharing

Assuria
Log Management

Becrypt
Software Encryption

Boldon James Information Classification

Imation
Secure Storage Devices

LiveEnsure
Mobile Authentication Security

Quipa
End to End Encryption

Rapid7
Threat Profile Assessment

Sapior
Data Sharing/Pseudonymisation

New Compliance
Data Protection E-Training

WatchDox
Leak-Proof Document Sharing

Welcome To Our Data Security Blog


	Compliance Standards

	Author:Barry Seward	Date: 26th March 2012	Read full article
	PCI-DSS The PCI DSS, a set of comprehensive requirements for enhancing payment account data security, was developed by the founding payment brands of the PCI Security Standards Council, including American Express, Discover Financial Services, JCB International, MasterCard Worldwide and Visa Inc. Inc. International, to help facilitate the broad adoption of consistent data security measures on a global basis.


	PCI-DSS

	Author:Barry Seward	Date: 1st January 2011	Read full article
	The PCI DSS, a set of comprehensive requirements for enhancing payment account data security, was developed by the founding payment brands of the PCI Security Standards Council, including American Express, Discover Financial Services, JCB International, MasterCard Worldwide and Visa Inc. Inc. International, to help facilitate the broad adoption of consistent data security measures on a global basis. The PCI DSS is a multifaceted security standard that includes requirements for security management, policies, procedures, network architecture, software design and other critical protective measures. This comprehensive standard is intended to help organisations proactively protect customer account data. The PCI DSS must be met by all organisations (merchants and service providers) that transmit, process or store payment card data. The PCI DSS (sometimes referred to as a compliance standard) is not a law. It is a contractual obligation applied and enforced - by means of fines or other restrictions - directly by the payment providers themselves. PCI DSS Core Principles The core of the PCI DSS is a group of principles and accompanying requirements, around which the specific elements of the DSS are organised: BUILD AND MAINTAIN A SECURE NETWORK Requirement 1: Install and maintain a firewall configuration to protect cardholder data Requirement 2: Do not use vendor-supplied defaults for system passwords and other security parameters PROTECT CARDHOLDER DATA Requirement 3: Protect stored cardholder data Requirement 4: Encrypt transmission of cardholder data across open, public networks MAINTAIN A VULNERABILITY MANAGEMENT PROGRAM Requirement 5: Use and regularly update anti-virus software Requirement 6: Develop and maintain secure systems and applications IMPLEMENT STRONG ACCESS CONTROL MEASURES Requirement 7: Restrict access to cardholder data by business need-to-know Requirement 8: Assign a unique ID to each person with computer access Requirement 9: Restrict physical access to cardholder data REGULARLY MONITOR AND TEST NETWORKS Requirement 10: Track and monitor all access to network resources and cardholder data Requirement 11: Regularly test security systems and processes MAINTAIN AN INFORMATION SECURITY POLICY Requirement 12: Maintain a policy that addresses information security

Tags

android - Apple - audit - audit trail - blackberry - cloud - compliance - configuration - Crack - Crooks - Cyber-crime - cyberthreats - Data loss - Disclosure - DPA - DRM - email - Enforcement Notice - EU - Fraud - GPG - Hackers - ICO - IGT Governance - Insider - iPad - iPhone - IP V6 - ISO 27001 - laptop - lost - Lulz - Metasploit - method - Mobile - Monetary Penalty - News - NHS - patch - PCI - Phone - Police - policy - Press Release - Prosecution - Rapid 7 - RIPA - risk - secure documents - security - Sharepoint - Silver Tail - strategy - Undertaking - USB - Virus - vulnerability - Watchdox - Wi-Fi - Zeus

Archive

November, 2012 (1)

October, 2012 (3)

September, 2012 (2)

August, 2012 (3)

April, 2012 (10)

March, 2012 (19)

February, 2012 (12)

January, 2012 (8)

December, 2011 (6)

November, 2011 (10)

October, 2011 (9)

September, 2011 (10)

August, 2011 (7)

July, 2011 (12)

April, 2011 (12)

March, 2011 (2)

February, 2011 (23)

January, 2011 (27)

November, 2010 (10)

Search

Accellion	Rapid 7	Becrypt	Boldon James	Imation	Live Ensure	WatchDox
Archival Satellite Automated Solution Deployment Options DLP - Satellite Enterprise Plug-ins Kitedrive Mobile Mobile Apps Secure Collaboration Secure File Transfer Solutions	Downloads Metasploit News NeXpose Health Check Metasploit Demo Strong Password	Adanced Port Control Connect Protect Disk Protect Enterprise Manager Media Client Removable Media Tablet Encryption Trusted Client	Email Classifier File Classifier Mobile Filter Office Classifier OWA Classifier Sharepoint Classifier	Biometric Hard Drive Defender Flash Drives defender Pivot Encrypted Hard Drive Ironkey Basic Ironkey Enterprise Ironkey Personal Optical Media Stealth Zone	Website Authentication App Authentication Identify Multi-Factor Authentication Fingerprint recognition SSO Authenticates Users	Enterprise Document Exchange Secure Investor Sharepoint Virtual Data Room ICO Fines Delete Data Mobile App Secure iphone Secure Blackberry Secure Android Secure Outlook Windows Plugin Secure Documents Sample Trial Videos Publisher

New Compliance			Sapior	Quipa	Assuria
Online Security Awareness Training Online Compliance Training E-learning Data Protection Training Information Security Awareness Training			Data Harvesting Privacy Audit Pseudonymisation	GCSx Loop News Quipa Loop	Auditor Auditor RA Log Manager Solutions

Professional Services

Copyright DLP Assured Feb 2011 All rights reserved
Website designed by Limelight Graphics