As the online frontier continues to pose unique challenges for merchants tasked with protecting sensitive data supplied by their customers, the PCI Security Standards Council has released a set of supplementary guidelines covering ecommerce activity. The impetus for this report was primarily commun...

Data breach scenarios are the stuff of nightmares among IT security professionals, but logic tells them that it may only be a matter of time before their organizations fall victim to an external attack or internal mistake. When disaster strikes, the degree of damage is often dependent on how teams h...

Compliance is a common pain point for many organizations, particularly as regulations evolve. Payment Card Industry standards are policed by the major card brands, and each organization has slightly different requirements for following best practices.To help navigate the somewhat nebulous mandates u...

Numerous warnings have gone out to companies in highly regulated industries such as retail, finance and healthcare. Despite the growing threat of potential breaches, a recent study found lapses in data security that could put companies and their customers at risk. A recent Security Info Watch articl...

It may not be easy to go back and closely look at what went wrong following a data breach. No one wants to be the employee that lost a flash drive or failed to meet a compliance requirement. However, acting within an effective information security framework requires organizations to do exactly that ...