HALOCK Presenting on PCI Compliance at The Payments Academy Annual Conference
Viviana Wesley of HALOCK Security Labs and Justin Evans of the University of Iowa will be presenting at The Payments Academy Annual Conference, held May 7-10, 2023, in Indianapolis, Indiana. Registration details are available on the website.
SAQ Comparison Summaries Webinar
We’ve compared the version 3.2.1 to version 4.0 Self-Assessment Questionnaires.
Join Viviana Wesley to learn about the differences in SAQ types, A, A-EP, B, B-IP, C, C-VT and P2PE.
How to do Targeted Risk Analysis using a Duty of Care Risk Analysis Method Webinar
In version 4.0, all periodic cadence requirements must be justified with a targeted risk analysis. Also, if the customized approach is used to validate compliance with a requirement, a targeted risk analysis must be performed.
Webinar: A Deep Dive into the New 4.0 DSS Requirements Applicable Immediately
There are 14 new requirements that are effective immediately for any PCI DSS 4.0 validation. Join Viviana Wesley for a deep dive into these requirements so your organization can start working on these right away.
Webinar: A Deep Dive into the Emerging New 4.0 DSS Requirements that are Due by March 2025
There are 51 requirements that are best practices until March of 2025. Some will be process related and some will require technology or program changes.
Preparing for Your Transition to PCI DSS v4.0 Webinar
PCI DSS v3.2.1 expires on March 31, 2024. Organizations should now be planning their transition to PCI DSS v4.0. With 64 new requirements in PCI DSS v4.0, companies have a lot to consider in preparation for the coming deadline. In our 5-part PCI Webinar Series, learn about the general changes to 4.0, new requirements, best practices, and how an increased focus on risk evaluations in (more…)
What is “Reasonable Data Security”?
In Archive360’s Podcast Episode 29: What is “Reasonable Data Security”?, Bill Tolson and Chris Cronin, Partner, Governance and Engineering Practice at HALOCK Security Labs try and define “reasonable data security” – a term that continually appears in every states’ privacy law or proposed legislation. But what is “reasonable data security”? Today, there is no prescriptive definition for “reasonable data security”. (more…)
CIS RAM v2.1 for Implementation Group 3 (IG3) Workshop
Join us today Tuesday, June 21, 2022 at 1:00 PM ET for the CIS RAM v2.1 workshop. HALOCK partner Chris Cronin will be presenting the latest release which includes Implementation Group 3 (IG3).
