Monthly Archives: December 2012

Which Visa Europe Agent Are You?

Or, where do I register with Visa Europe once I’ve received my completed ROC? So you’re a service provider, you’ve been assessed by a QSA, and now you want some recognition in the form of a public listing on Visa Europe’s list of compliant service providers, or on the new Visa merchant agent listing web site. But which… Read more »

8 Recurring Themes Within The PCI DSS

The PCI DSS is a security standard that embodies a number of underlying principles. What are these principles? As with all PCI compliance questions, the answers usually lie in understanding the intent behind the requirements of the standard. Although there are many individual requirements detailed within in the PCI DSS, collectively they are based upon… Read more »

7 Security Warning Signals

2011 featured plenty of news about high-profile data loss and cybercriminal activity. And so did 2012. Any guesses for 2013? Some common causes emerge in all of these cases. Poorly managed infrastructure, insecure web applications, and a lack of attention to security procedures are often cited. But how do these conditions arise? How is it… Read more »

PCI E-Learning Courses

Announcing the availability of PCI Tutor – comprehensive e-learning for PCI DSS. It consists of a number of courses and is ideal for all levels of interest in the subject. This ranges from technical training for database and system administrators, project driven considerations for managers and non-technical, practical advice for payment operators. The creation of… Read more »

PA DSS Process Change

We’ve just been reading the monthly assessor newsletter as sent from the PCI SSC, and there’s an update in there that will affect a number of our PA DSS clients. It’s a process change relating to payment of the SSC’s invoice. To quote: “As soon as a ROV is submitted, we will invoice the application… Read more »