PCI Compliance is Vital to the Economic Engine of the World

PCI Compliance is Vital to the Economic Engine of the World

The Evolving Need for PCI DSS Compliance.

The current COVID-19 pandemic has dramatically accelerated a trend that was already on the rise — a move toward many new forms of electronic payment that involve capturing and transmitting credit card data. Businesses have moved online-only transactions during this crisis, and many consumers don’t want to handle physical money. And with so many employees working from home on their own computers, laptops, and mobile devices, the risk of a data breach is increasing at an exponential rate.

Many companies are vulnerable to breach, theft, and fraud. A single data breach can severely impact a company’s reputation as well as its ability to conduct business in the future. For merchants that process, store, and transmit credit card information, Payment Card Industry Data Security Standard (PCI DSS) compliance has never been more critical.

Read More

Remote Work Cyber Security Tips for SMB

Remote Work Security Tips for SMB

Stay-at-home orders across the country have forced millions of businesses to establish remote workforces that rely solely on internet-enabled applications and products to conduct business.

The overnight move to remote work has increased cyber security concerns for SMB owners. However, many still have not implemented remote working policies to address cyber security threats, according to a new survey from the Cyber Readiness Institute (CRI).

Read More

Is FedRAMP Mandatory?

Is FedRAMP mandatory?

FedRAMP is one of the most popular topics on our website and blogs. We get questions every day about the FedRAMP program from customers and partners alike.

Is FedRAMP really mandatory?

Yes, FedRAMP is mandatory for Federal Agency cloud deployments and service models at the low, moderate, and high-risk impact levels. According to the FedRAMP website, private cloud deployments intended for single organizations and implemented fully within federal facilities are the only exception. Additionally, Agencies must submit a quarterly report in PortfolioStat listing all existing cloud services that do not meet FedRAMP requirements with the appropriate rationale and proposed resolutions for achieving compliance.

Read More