Are you your own worst enemy? I am frequently heard saying that PCI compliance (and strong security) doesn’t have to be as difficult as we imagine or make it out to be. What I see out there, however, are far too many individuals treating PCI … Read more
The co-owner of three restaurants in coastal Georgia, Carla had just upgraded her old POS system to far more current technology. A driving force behind the upgrade was Carla’s belief that it would make her business PCI compliant. She would get PCI compliance right, she … Read more
If you’ve got a portfolio of small merchants, you know their greatest desire is to find the quickest and easiest way to satisfy PCI compliance requirements—a PCI shortcut, if you will. Well look no further, because the PCI Security Standards Council has released a new … Read more
Point-to-point Encryption (P2PE) is an awesome tool for securing retailers’ payment card data. ControlScan highly recommends it in every environment where it’s feasible and cost effective to do so. (We operate security infrastructure in many retail environments with integrated POS systems, where P2PE is either … Read more
An ongoing requirement of the PCI compliance process involves having your payment card environment scanned for security vulnerabilities. For most businesses, PCI scanning must be conducted by an Approved Scanning Vendor (ASV) at least quarterly, as well as following any major change to your environment. … Read more
So, you have been notified by a client, card brand, or your acquiring bank that you have to engage a third-party QSA company to perform a QSA-led PCI DSS assessment. There are some things that you need to know, or need to consider before moving … Read more