Gartner Blog Network

Category: 'pci-dss' Blog Posts

from the Gartner Blog Network

The M&M theory of PCI DSS

by Jonathan Care  |  October 10, 2018

There's a great story about Van Halen. In their contract rider they insisted that they get a bowl of M&M candy with all of the brown ones removed before the...

Read more »

Best Practices in PCI DSS 3.1 are now required

by Jonathan Care  |  August 13, 2015

PCI DSS 3.1 became effective April 15, 2015, and impacted organizations were given some "Best Practices", with a clear indicator that on July 1st, 2015 these would become required. So...

Read more »

Highlights From Verizon PCI Report 2014

by Anton Chuvakin  |  February 13, 2014

Separate from the Data Breach Investigations Report (latest was in 2013), Verizon PCI report is another awesome resource for security practitioners. Grab your copy here [PDF]! Here are some of...

Read more »

Briefly On PCI DSS 3.0

by Anton Chuvakin  |  November 8, 2013

So I’ve been sleeping on my copy of PCI DSS 3.0 for a few weeks already and now that it is finally public, I am ready to comment on it...

Read more »

Finally, PCI DSS In The Cloud Guidance

by Anton Chuvakin  |  February 12, 2013

As all of you already know, PCI Council has finally released an official  “Information Supplement: PCI DSS Cloud Computing Guidelines” [PDF] aka “PCI DSS in the cloud.” Here are some...

Read more »

On PCI DSS and Scanning

by Anton Chuvakin  |  December 16, 2011

PCI DSS and vulnerability scanning are maybe not brothers, but definitely close relatives. PCI DSS mandates that scanning actually happens on schedule, while vulnerability assessment helps find the holes  that...

Read more »

My First Gartner Research Piece Published!!!

by Anton Chuvakin  |  November 16, 2011

It is with great pleasure that I announce my first published  Gartner research piece. Ladies and gentlemen, please welcome “Maintaining PCI Compliance: Assess the Impact of Changes in Business, Technology,...

Read more »

PCI Report 2011 and PCI Community Meeting 2011

by Anton Chuvakin  |  October 11, 2011

Everybody who has any relation to PCI DSS and payment data security has probably already read the “2011 PCI Compliance Report” report. You have not?! Well, you have a fine...

Read more »

On Encryption and PCI DSS Challenges

by Anton Chuvakin  |  September 14, 2011

Here is an interesting piece of research just published by another member of SRMS team, Mario Boer: “Comparing Endpoint Encryption Technologies.” The document “provides an overview of the various technologies...

Read more »

On PCI DSS Tokens

by Anton Chuvakin  |  September 9, 2011

Welcome, Gartner Blog Network readers! This is my first post here after joining Gartner on August 1, 2011. As a matter of quick introduction, I am now part of SRMS...

Read more »