PCI DSS v4.0 is coming and will bring big changes. The exact nature of the changes aren’t yet available as the standard is still evolving under the PCI...
Control Gap is proud to introduce our participants for Movember 2021: Ben, Connor, Corey, and David who help us raise funds for #menshealthmonth and...
Organizations subject to PCI DSS compliance validation spend significant amounts of time, effort, and money to maintain and validate their compliance....
Microsoft support offerings are designed to provide guidance for system administrators and managers. However, details of the Microsoft “Support...
Attention Windows sysadmins: search for "LLMNR" and once you've finished panicking, then get that nonsense disabled.
Last month NIST announced they were seeking feedback on a proposed updated guidance for FPE. More formally this is SP 800-38G rev 1 "Recommendation...
Understanding PCI DSS requirements in depth can often be confusing and frustrating. The requirements covering penetration testing, PCI DSS 11.3, are...
Compliance simplification, what most people call “scope reduction”, can have huge benefits in terms of saving time, effort, headaches, and money....
Earlier this month the PCI Security Standards Council published a new document as part of the Point-to-Point Encryption (P2PE) program. This initial...