SecurityMetrics Blog

The 2023 SecurityMetrics Guide to PCI DSS Compliance Has Launched

In the face of current cybersecurity challenges, PCI DSS compliance is more important for merchants than ever.
View Post

Auditor Tips: Requirement 4: Sending Data Over Open And...

Know exactly where CHD is coming from and being sent to, inside and outside of your organization.

Auditor Tips: Requirement 3: Protect Cardholder Data

It is important to know what data you actually store, process, and/or transmit.

Auditor Tips: PCI DSS Responsibilities and Challenges

As you implement your cybersecurity program, make sure you understand why a security control is required so you can structure tools and processes...

Auditor Tips: Requirement 2: System Configuration

You are required to use industry-accepted configuration and hardening standards when setting up systems that are part of your PCI scope.

Requirement 1: Establish Secure Firewall Rules

Make sure to choose firewalls that support the necessary configuration options to protect critical systems and provide segmentation between the...

Performing an SAQ B-IP version 4.0 Self-Assessment

The Self-Assessment Questionnaire (SAQ) B-IP is intended for payment channels where cardholder data is processed using IP-connected PTS-approved...

The SecurityMetrics Guide to PCI DSS Compliance

What you need to know about the SecurityMetrics Guide to PCI DSS Compliance

5 Steps to Secure Your Healthcare Organization

Securing your healthcare organization should be a priority. Healthcare organizations are especially vulnerable to attacks because they cannot...

Everything You Need to Know About How to Manage PHI

Fully understanding all the PHI you have, where it is stored, what processes touch it, and how it is used in your organization is critical to...

HIPAA Compliance Best Practices

With over 20 years in the industry, we have found that these HIPAA compliance best practices are most helpful in securing your organization.

2023 Forensic Predictions

In 2023, we've got three predictions of cyber attacks that we think will be the most prevalent this year

What is the HIPAA Privacy Rule?

The HIPAA Privacy Rule establishes standards to protect an individual’s medical records and other protected health information (PHI). It concerns...

Performing an SAQ P2PE version 4.0 Self-Assessment

This blog will discuss changes made to the SAQ P2PE version 4.0 and will review the process of performing a self-assessment using the SAQ P2PE.

Performing an SAQ D Service Provider version 4.0 Self-Assessment

Performing an SAQ D Service Provider version 4.0 Self-Assessment: Updates and changes in the new 4.0 standard

Never have a false sense of security.

Talk to a specialist