Compliance Standards Archives | Page 12 of 80

PCI DSS Compliance: Ensuring Secure Payment Terminal Inspections

by RSI Security November 29, 2024April 17, 2025

Achieving PCI DSS compliance involves implementing security controls across all hardware and software, including payment terminals that process card transactions. These terminals must be inventoried, regularly inspected, and supported by trained staff.

November 29, 2024April 17, 2025 0 comment

HITRUST

What is the HITRUST AI Assurance Program

by RSI Security November 27, 2024November 21, 2024

written by RSI Security

As artificial intelligence (AI) and machine learning (ML) technologies advance, businesses are increasingly integrating these tools into their operations. While AI and ML provide significant benefits, they also introduce new challenges and risks concerning trustworthiness and security. The HITRUST AI Assurance Program aims to address these challenges by providing a structured framework for evaluating and ensuring the reliability of AI systems.

November 27, 2024November 21, 2024 0 comment

PCI SSF

How PCI SSF Supports a Broader Array of Payment Software Types

by RSI Security November 25, 2024

written by RSI Security

Payment software vendors and developers need to ensure that their apps and programs protect sensitive data. The PCI SSF provides security assurance across a broader range of software than its predecessor. Understanding its full scope helps all industry stakeholders stay compliant.

Is your organization fully compliant with the PCI SSF? Schedule a consultation to find out!

November 25, 2024 0 comment

PCI SSF

Implementing PCI SSF: A Beginner’s Guide to Secure Software Development

by RSI Security November 20, 2024November 19, 2024

written by RSI Security

The Payment Card Industry Software Security Framework (PCI SSF) establishes guidelines for secure software development and maintenance, enhancing data protection for payment-related software. If you’re new to PCI SSF, this guide will introduce you to its foundational principles and provide steps to start implementation.

November 20, 2024November 19, 2024 0 comment

HITRUST

Event Recap: Introducing the HITRUST AI Assessment (with HITRUST)

by RSI Security November 15, 2024November 18, 2024

written by RSI Security

RSI Security recently partnered with HITRUST to introduce a novel assessment available from the cybersecurity organization: HITRUST AI Assessments. RSI Security Marketing Coordinator Anna-Laure Iman began with an introduction of the three primary speakers for the event:

November 15, 2024November 18, 2024 0 comment

CMMC

What are the CMMC 2.0 Certification Requirements?

by RSI Security November 13, 2024August 27, 2025

written by RSI Security

The Cybersecurity Maturity Model Certification (CMMC) is a critical requirement for any organization that wants to work with the U.S. Department of Defense (DoD). Designed to safeguard sensitive government data, the framework has evolved to address today’s growing cybersecurity threats.

With the release of CMMC 2.0, contractors must understand the updated CMMC 2.0 certification requirements to remain eligible for DoD contracts. This guide explains the major changes, outlines certification levels, and provides practical steps to help your organization prepare for compliance with confidence.

November 13, 2024August 27, 2025 0 comment

PCI DSS PCI SSF

Who is the PCI Security Standards Council (PCI SSC)?

by RSI Security November 12, 2024October 29, 2024

written by RSI Security

The Payment Card Industry Security Standards Council (PCI SSC) is a global forum established to enhance payment card security by developing and promoting data security standards. Founded in 2006 by major credit card companies—American Express, Discover, JCB, MasterCard, and Visa—the PCI SSC’s primary mission is to protect cardholder data and foster secure payment environments worldwide.

November 12, 2024October 29, 2024 0 comment

HITRUST

Can HITRUST Certification Satisfy Other Requirements?

by RSI Security November 4, 2024October 29, 2024

written by RSI Security

For healthcare organizations, maintaining compliance can be especially challenging due to the sensitive nature of the data they handle. HITRUST (Health Information Trust Alliance) certification has emerged as a comprehensive framework designed to streamline this process. Can HITRUST certification also help organizations meet other regulatory requirements? Let’s delve into the capabilities of HITRUST certification and its potential to satisfy diverse compliance obligations.

November 4, 2024October 29, 2024 0 comment

PCI SSF

A Breakdown of the Secure Software Lifecycle Standard within the PCI SSF

by RSI Security November 1, 2024October 30, 2024

written by RSI Security

The Payment Card Industry Security Standards Council (PCI SSC) is a global forum dedicated to the continuous improvement of security standards for payment account data. As part of their mission, the PCI SSC developed the Payment Card Industry Software Security Framework (PCI SSF), which introduces guidelines for securing payment software applications. This framework includes two primary standards: the Secure Software Standard and the Secure Software Lifecycle (SLC) Standard. This blog post provides a comprehensive breakdown of the Secure Software Lifecycle (SLC) Standard within the PCI SSF and its critical role in safeguarding payment software.

November 1, 2024October 30, 2024 0 comment

PCI DSS

Breakdown of the PCI Requirements: 6.4.3 and 11.6.1

by RSI Security October 31, 2024April 17, 2025

written by RSI Security

Organizations processing credit card transactions and related information must protect this data by complying with PCI DSS. Two new requirements in the most recent DSS edition can be hard to follow, but careful implementation of specialized software makes PCI compliance achievable.

Is your organization ready for seamless PCI compliance? Schedule a consultation to find out!

October 31, 2024April 17, 2025 0 comment