Getting Ready for PCI
Other content in this Stream
TLS v1.1 Deprecation
IETF has released RFC 8996 which deprecates use of TLS v1.1 - Schellman PCI Manager Jeff Lasker provides an overview
PCI Secure SLC v1.1 - Updates and Benefits to SSF
Schellman's Joe O'Donnell provides an overview of the newly released PCI SSLC Standard 1.1
Schellman Now a PCI ASV
Schellman expands services and becomes Payment Card Industry (PCI) Approved Scanning Vendor (ASV)
Preparing for the PCI DSS Customized Approach
Schellman's Eric Sampson outlines PCI DSS v4.0 and what you should know before considering the customized approach framework
Making PCI DSS Compliance Cloud-Native
Schellman's David Baca provides an in-depth look at how organizations can use cloud-native tools to meet compliance requirements for PCI DSS
Release Timeline of PCI DSS 4.0
Socially Distant PCI DSS Assessments
The PCI SSC has published blogs and guidelines for when remote work is necessary, including the Remote Assessments and the Coronavirus blog that focuses on conducting remote PCI Assessments.
Schellman listed as one of the first PCI Software Security Framework Assessors
Schellman & Company has become one of the first firms in the industry to offer PCI Software Security Framework (SSF) assessments as a Secure Software and a Secure SLC Assessor.
Overview of the PCI SSF
The SSF provides an objectives-based approach to assessing...
A SOC-like Approach to PCI: PCI DSS v4.0
The 2019 PCI North America Community Meeting was held in beautiful Vancouver, British Columbia, Canada. The conference provided takeaways for PCI standards plus sneak peeks info PCI DSS v40.
Changes Coming to PCI DSS in Version 4.0
The PCI SSC is preparing to issue a draft version of PCI DSS v4.0. It was apparent early in the presentation that the update to the PCI DSS is going to be the largest change since v3.0 in 2013.
Valuable PCI Compliance Tips: Our Response
Security Boulevard recently published a list of valuable PCI DSS compliance tips which Schellman's team of QSAs reviewed and have offered insight and commentary on.
Schellman Becomes PCI Qualified PIN Assessor
Schellman & Company has become a Qualified PIN Assessor (QPA) for the PCI PIN Security Program.
Introduction to the New PCI Software Security Framework
Full Sail Ahead: Navigating PCI Compliance on Kubernetes - Part 1, Networking
Introduction Welcome! In the upcoming series of articles (this is Part 1), I’ll be discussing some things to consider if you want to use Kubernetes to host an application that is...
PCI in 3…2…1
A fresh new release of the PCI SSC's flagship security standard PCI-DSS v 3.2.1
Schellman to Join PCI Global Executive Assessor Roundtable (GEAR)
Schellman is pleased to announce that it will join the newly founded Global Executive Assessor Roundtable, the advisory group of senior executives at assessor companies for the payment...
Schellman Joins PCI 3DS Assessors
Schellman & Company, LLC, a leading provider of attestation and compliance services, has become an assessor in the PCI Security Standards Council’s new 3-D Secure (3DS) program, and can...
Payment Security Insights
There are some important PCI DSS deadlines coming up. Let’s start with the SSL/early TLS migration. Why is it important for organizations to migrate away from SSL/TLS?
Getting started with your PCI DSS Charter
Well over a year ago, the PCI Standards Council announced, in addition to other requirements, that a PCI charter would now be required for service providers after January 31, 2018. Few...