66 episodes

CyberSecurity Sense is LBMC Information Security's podcast that provides insight and updates on such information security topics as: IPS Monitoring and Managed IDS Services, Security Information Event Management, Digital Forensic Analysis, Electronic Discovery and Litigation Support, Computer Security Incident Response, Penetration Testing, Risk Assessments, Security Program Planning, Web Application Security Assessments, ACAB LADMF Certification Assessments, CMS Information Security, FedRAMP, FISMA Compliance, HIPAA Compliance, HITRUST CSF Certifications, NIST 800-171 Certifications, PCI Data Security Standards, SOC Reporting and SOX Compliance.

Cybersecurity Sense LBMC Information Security

    • Technology
    • 4.8 • 13 Ratings

CyberSecurity Sense is LBMC Information Security's podcast that provides insight and updates on such information security topics as: IPS Monitoring and Managed IDS Services, Security Information Event Management, Digital Forensic Analysis, Electronic Discovery and Litigation Support, Computer Security Incident Response, Penetration Testing, Risk Assessments, Security Program Planning, Web Application Security Assessments, ACAB LADMF Certification Assessments, CMS Information Security, FedRAMP, FISMA Compliance, HIPAA Compliance, HITRUST CSF Certifications, NIST 800-171 Certifications, PCI Data Security Standards, SOC Reporting and SOX Compliance.

    PCI Monthly Update: Latest PCI News, Requirement 11 Overview, and QSA Insights

    PCI Monthly Update: Latest PCI News, Requirement 11 Overview, and QSA Insights

    Join us for the latest episode of our PCI Monthly Update podcast, where we explore the latest developments in the world of payment card industry security.
    We begin with a news segment covering the launch of PCI v4.0 and the ins and outs of the new INFI (Items Noted For Improvement) Worksheet.
    Next up, we'll cover Requirement 11 - Test security of systems and networks regularly. This requirement can either be the easiest or hardest for organizations depending on their setup. Our QSA experts provide their insights on best practices and what has changed in v4.0.
    This episode is a must-listen for professionals seeking to stay informed and improve their organization's payment security and compliance.

    • 33 min
    PCI Monthly Update: Version 4.0 Countdown, Requirement 10, and QSA Insights

    PCI Monthly Update: Version 4.0 Countdown, Requirement 10, and QSA Insights

    In this edition of the PCI Monthly Update, we’re counting down to the launch of PCI 4.0! We start this month's podcast with a reminder that v4.0 goes into full effect on March 31.
    Our focus then shifts to Requirement 10 covering logging and monitoring all access to system components and card holder data and what is changing with v4.0.
    This podcast is your monthly briefing on PCI standards - an indispensable listen for anyone tasked with safeguarding payment card data.

    • 27 min
    PCI Monthly Update: Gearing Up for Version 4.0, Mastering Requirement 9, and QSA Insights

    PCI Monthly Update: Gearing Up for Version 4.0, Mastering Requirement 9, and QSA Insights

    In this January edition of the PCI Monthly Update, we’re on the brink of exciting changes with version 4.0 just around the corner! We start with a spotlight on the ongoing Request for Comments (RFC) period for PCI DSS v4.0, inviting insights from industry experts. Plus, we discuss the Global Content Library, showcasing insights from the 2023 Community Meetings.
    Our focus then shifts to Requirement 9, where we break down the critical protocols for restricting physical access to cardholder data. We'll cover everything from documenting security policies to managing visitor access, ensuring secure storage and destruction of media with cardholder data, and protecting Point of Interaction (POI) devices from security threats.
    Wrap up with us as we consolidate today's takeaways and prepare you for what these updates mean for your compliance strategy.
    This podcast is your monthly briefing on PCI standards - an indispensable listen for anyone tasked with safeguarding payment card data.

    • 29 min
    PCI Monthly Update: December News, Deep Dive into Requirement 8, and QSA Q&A

    PCI Monthly Update: December News, Deep Dive into Requirement 8, and QSA Q&A

    Join us for the latest episode of our PCI Monthly Update podcast, where we explore the latest developments in the world of payment card industry security.
    We begin with a news segment highlighting the PCI SSC's TRA Guidance. Next, we delve into Requirement 8 of the PCI DSS, dedicated to identifying users and authenticating access to system components. We'll explore the intricate details of this requirement, covering sub-requirements 8.1 to 8.6. These discussions will include processes for user identification, strict management of user and administrator accounts, strong authentication methods, and the implementation of multi-factor authentication (MFA) to ensure the security of cardholder data environments (CDE).
    Our QSA Q&A segment then addresses a critical question: Do all accounts need to comply with these requirements? We'll provide clarity on the scope, applicability, and exceptions, helping listeners understand the nuances of compliance.
    Tune in for a comprehensive review of December's PCI updates, an in-depth analysis of Requirement 8, and valuable insights from our QSA experts. This episode is a must-listen for professionals seeking to stay informed and improve their organization's payment security and compliance.

    • 35 min
    PCI Monthly Update: October - New SAQ Review, Focused Look at Requirement 7, and Expert QSA Insights

    PCI Monthly Update: October - New SAQ Review, Focused Look at Requirement 7, and Expert QSA Insights

    Dive into the latest in the PCI landscape with our October update. We kick off with a news segment spotlighting the new SAQ SPOC (Software PIN Entry on COTS) which includes portions of PCI DSS Requirements 3, 8, 9, and 12.
    Transitioning to Requirement 7, we discuss restricting access to system components and cardholder data based on business necessity, delving into sub-requirements 7.1 to 7.3, and discussing the principles of 'need to know' and 'least privileges.'
    Our QSA Q&A segment addresses the applicability of Requirement 7 to customer/cardholder accounts, clarifying the scope and the specific entities impacted by this requirement.
    Join us for a comprehensive exploration of this month's PCI developments, an in-depth look at Requirement 7, and expert insights in our QSA dialogue, paving your way towards enhanced compliance and security.

    • 29 min
    PCI Monthly Update: September Highlights & Requirement 6 Deep Dive

    PCI Monthly Update: September Highlights & Requirement 6 Deep Dive

    Catch the latest news in our September "PCI Monthly Update" from Tuesday, September 26, 2023. We kick things off with key insights from the recent PCI Community Meeting. Next, we dive into Requirement 6, discussing the essence of secure software development, from processes to security vulnerabilities, web application protection, and change management.
    Our QSA Q&A segment addresses a vital question: What documentation should you expect from PCI DSS compliant service providers?
    Join us for a succinct roundup of September's essential PCI updates and insights. Perfect for both newcomers and seasoned PCI professionals.

    • 31 min

Customer Reviews

4.8 out of 5
13 Ratings

13 Ratings

Top Podcasts In Technology

Acquired
Ben Gilbert and David Rosenthal
All-In with Chamath, Jason, Sacks & Friedberg
All-In Podcast, LLC
Lex Fridman Podcast
Lex Fridman
Hard Fork
The New York Times
TED Radio Hour
NPR
Darknet Diaries
Jack Rhysider

You Might Also Like