|
ControlCase Conferences - "Compliance a 360 degree view"
This year's conference theme is "Compliance a 360 degree view".
The events will provide an excellent platform for compliance officers and other technology decision makers to share their insights on how compliance solutions are enabling them to meet the challenges in their organizations.
This year's destinations are:
Washington DC, USA - October 17th - 18th
Phuket, Thailand - November 28th - 29th
If you are are interested in attending either of the events, please contact Kimberly Simon on ksimon@controlcase.com
|
 | | PCI North America, Las Vegas |
|
|
ControlCase, Official Partner at PCI Community Meeting
|
|
ControlCase was the official partner at the PCI Community Meeting, North America held at the Mandalay Bay, Las Vegas in September.
We look forward to sharing the insightful information at our conferences this year.
|
|
CONTROLCASE WEBINARS
Log Monitoring and File Integrity Monitoring
WHEN: October 24th, 11:00 AM - 11:45 AM EDT (US Time)
In this 45 minute webinar ControlCase will discuss the following
- What is log management and FIM
- PCI DSS, EI3PA, ISO 27001 requirements
- Log management and regulation requirements/mapping
- File Integrity monitoring and regulation requirements/mapping
- Challenges
- Q&A
Click here to register
PCI DSS & PA DSS Version 3.0 Changes (North America Focused)
WHEN: December 12th, 11:00 AM - 11:45 AM EDT (EST)
In this 45 minute webinar ControlCase will discuss the following changes/clarifications in the context of PCI DSS and PA DSS version 3.0
- Network Segmentation
- Card Data Discovery
- Vulnerability Scanning and Penetration Testing
- Card Data Storage in Memory
- Other Relevant Changes
- Q&A
Click here to register
PCI DSS & PA DSS Version 3.0 Changes (International Focused)
WHEN: December 12th, 6:00 AM - 6:45 AM EDT (EST)
In this 45 minute webinar ControlCase will discuss the following changes/clarifications in the context of PCI DSS and PA DSS version 3.0
- Network Segmentation
- Card Data Discovery
- Vulnerability Scanning and Penetration Testing
- Card Data Storage in Memory
- Other Relevant Changes
- Q&A
Click here to register
|
|
ControlCase Vulnerability Manager -
The Future of Integrated Compliance Management
ControlCase, a leading provider of risk management software and services, has announced the latest version of ControlCase Vulnerability Manager, set to raise the bar in integrated compliance management.
.
The enhanced features empower Information Technology, Security and Compliance Managers to prioritize remediation activities and allocate IT budgets to where they are most needed.
The new version also allows clients to effectively manage their vulnerabilities and maintain control over their network security with real-time centralized reports, false positive management, verified remedies, and remediation workflow capabilities.
Benefits of using the ControlCase Vulnerability Manager include:
- Accurate measurement, management and communication of risk
- Understanding and classification of the assets and vulnerabilities in the client's environment
- Compliance with industry-driven regulatory requirements and standards such as PCI DSS, ISO 27002 and HIPAA
For more information please click here.
|
| Enhanced PCI Scanning and PCI SAQ Processes
Based on new VISA guidance, ControlCase will be modifying its process in the following areas as part of PCI DSS certification
1> For VisaNet processors, external vulnerability scans will be extended to cover the entire network and not just the cardholder data segment IP addresses.
2> For VisaNet processors, external penetration test will be extended to cover the entire network and not just the cardholder data segment IP addresses.
3> For SAQ submissions, ControlCase QSA will now attest on the documents prior to submission.
Please send a note to ksimon@controlcase.com or to your ControlCase representative in case of any clarification on this matter.
|
LATEST PCI NEWS
- PCI DSS & PA DSS Version 3.0 Changes
The PCI Security Standards Council have given a preview of the new version of the standards to be released in November 2013.
The changes will help companies make PCI DSS part of their business-as-usual activities by introducing more flexibility, and an increased focus on education, awareness and security as a shared responsibility.
Proposed updates include:
- Recommendations on making PCI DSS business-as-usual and best practices for maintaining ongoing PCI DSS compliance
- Security policy and operational procedures built into each requirement
- Guidance for all requirements with content from Navigating PCI DSS Guide
- Increased flexibility and education around password strength and complexity
For more information on these changes please click here, or contact ksimon@controlcase.com to attend one of our conferences.
- PCI Security Standards Council Updates Standard for PIN Transaction Security
Updates provide robust criteria for payment acceptance device vendors and testing labs.
Changes introduced in version 4.0 of the PTS POI requirements focus on increasing the robustness of devices through enhanced testing procedures and streamlining the evaluation and reporting processes for both device vendors and testing labs.
For more information please click here
- PCI Security Standards Council Publish Card Production Security Requirements
New PCI Standard for card vendors to improve the secure manufacture, production and delivery of payment cards
The standard consists of two sets of requirements: PCI Card Production Physical Security Requirements and PCI Card Production Logical Security Requirements. Together, these documents provide card vendors with a comprehensive source of information describing the security requirements to follow for card production activities including card manufacture, chip embedding, magnet-stripe encoding, embossing, card personalization, chip initialization, chip personalization.
For more information please click here
|
|
Be Great in act,
as you have been in thought.
- William Shakespeare
|
