We understand that pursuing HITRUST validation can seem daunting, but with the right approach and the right partners, it's entirely achievable.
This blog post will guide you through the intricate world of PCI compliance in a university setting, drawing insights from industry experts.
Here’s my definitive ranking of top HITRUST providers, what they offer, who they’re best for, and projected costs.
Read this blog to discover how you can use the new HITRUST Price Range Calculator to get an estimate of your HITRUST cost.
As of March 31, 2025, PCI DSS v4.0.1 is live with new, updated, and altered requirements.
Read this blog to discover which cybersecurity training course you should take in 2025 to level up your cybersecurity know-how.
A brushing scam is when you receive a package you didn’t order, because a bad actor has gotten your personal information.
Artificial intelligence (AI) is an exceptional tool for increasing productivity and innovating at work. However, if you don’t set specific parameters for how to use AI safely in the workplace, you risk your sensitive business data becoming public information.
The SecurityMetrics PCI Guide helps you reach PCI compliance with the newest stats, advice, and checklists.
Read this blog to learn what the requirement entails, how to harden your systems, and manage your system configurations.
Complying with PCI DSS Requirement 8 deals with user accounts, passwords, and password management. This requirement is all about having unique, difficult-to-discover account information.
No matter how small your business is or how daunting this task is, it’s important to ensure that you’re doing all you can to protect your data.
Complying with PCI DSS requirement 11 deals with vulnerability scanning and penetration testing, with additional requirements to scan your ecommerce sites being introduced with PCI v4.0.
PCI DSS requirement 12 deals with documentation, training, and risk assessments. This blog will cover the changes made to the documentation requirements in v4.0.
Human error remains one of the biggest threats to an organization’s security. This makes adequate security training more important than ever.
Each year, SecurityMetrics releases a blog post featuring our major cybersecurity predictions, featuring insights from our veteran team of cybersecurity, audit, and compliance staff.
Read this blog to discover what SecurityMetrics forensic analysts got right and wrong about 2024 cybersecurity breaches and what we can learn from this past year.
Recently two requirements that were part of SAQ A were removed, namely PCI DSS 6.4.3 and 11.6.1.
Security Academy is a beginner-level, free course that you can return to if you have cybersecurity questions.
Find out about the latest about PCI DSS v4.0.1 requirement 6.4.2, which mandates that ecommerce merchants implement a Web Application Firewall (WAF) or equivalent security measures to protect their online payment environments.
This year’s HIPAA guide includes an easy-to-understand introduction that covers how to read the guide, an executive summary, and an overview of this year’s new trends and stats.
Read this blog to learn how 2024 compared to 2023 regarding HIPAA Security, Breach Notification, and Privacy Rules trends.
The PCI Council just announced a big change for merchants that use SAQ A, regarding specific PCI requirements.
Complying with the 12 requirements of PCI can be complicated for those who must meet PCI compliance. Read this blog to get an in-depth description of each requirement, tips for achieving requirements, and answers to frequently asked PCI questions.
.svg)
