| ControlCase is empanelled by CERT-In |
ControlCase is empanelled by CERT-In for providing information Security Auditing Service. CERT-In (Indian Computer Emergency Response Team) is the National Incident Response Centre for major computer security incidents in its constituency.
CERT-In also enlightens its constituents about the security awareness and best practices for various systems & networks by publishing advisories, guidelines and other technical documents. |
| Moving Privacy from 'In Place' to 'Enhanced' |
 Privacy has become one of the most demanding business issues faced by organizations today. Most organizations who have addressed privacy to date have at least put Privacy GRC In Place; that is, most have done something to manage privacy.
Investment in Privacy GRC should be focused on evolving from In Place to Enhanced. This is even more critical for organizations with multiple business units, in multiple countries or jurisdictions, or with multiple regulators. [Whitepaper] |
| PCI DSS 2.0 and PA-DSS 2.0 Summary of Changes |
The PCI Standards Council has released a summary of changes of what's to come in October, when the next major releases, versions 2.0 of PCI DSS and PA-DSS is to be released. Changes to PCI DSS 2.0 and PA-DSS 2.0 are relatively straightforward and do not introduce significant changes. The new specifications will feature more clarification than change.
The updated standards are to be issued in final form on October 28, 2010, after they have been discussed at the Council's European Community Meeting in Barcelona and are to be in effect from January 1, 2011. [Summary of Changes] |
This is a notification to reiterate that it is mandatory to have four quarterly internal and external (ASV) scans for PCI DSS recertifications. If the scans are not done on schedule, this will cause delay in recertification till all four scans are completed on quarterly basis for the annual cycle.
