What Merchants Should Know about PCI SSC’s Data Security Standard 3.1

October 7, 2015 • Published Categories PCI 101, SMB MerchantsTags , , , , ,

Merchants should ensure they are in compliance with PCI SSC’s Data Security Standard version 3.1. Guest post by Ray Moorman, Mercury Payment Systems. The PCI Security Standards Council (SSC) released its new Data Security Standard 3.1, which clarifies some points of the standards that went into effect … Read more

PCI SSC Issues New Data Breach Guidance

September 30, 2015 • Published Categories PCI 101Tags , , , ,

The PCI Security Standards Council (SSC) has issued welcome new guidance to help organizations respond to a data breach event. In its September 29 press release, the Council writes: “For any organization connected to the internet, it is not a question of if but when … Read more

PCI DSS v3.1 and SSL: What you should do NOW.

March 5, 2015 • Published Categories Best PracticesTags , , , , , , , , , ,

12/21/15 Update: The PCI SSC is extending the migration completion date to 30 June 2018 for transitioning from SSL and TLS 1.0 to a secure version of TLS (currently v1.1 or higher). Learn more here.  4/15/15 Update: The PCI SSC released PCI DSS v3.1 on its … Read more

Ready Your 3.0 SAQ Game Plan

December 17, 2014 • Published Categories Best PracticesTags , , , , , , , ,

2014 has been a year filled with news about breaches – big breaches – record breaking breaches. I have spent the majority of the year talking to many people about PCI DSS version 3.0 SAQs.  I have spoken to Merchant Banks, Processors, small businesses, IT … Read more