Demonstrating compliance with PCI DSS is far from a trivial exercise. The 12 requirements of PCI DSS often translate into a lot of time and effort to access the necessary data and reports from many different systems and tools. And, after an audit is complete many teams struggle to maintain compliance.
In this webcast, you'll hear from Jacques Lucas, a Qualified Security Assessor (QSA) with Terra Verde, and Sanjay Ramnath, VP of Product Marketing at AlienVault, sharing best practices to help you simplify implementation of PCI DSS security controls and reporting.
Join us for this webcast to learn:
- The most common challenges in meeting and maintaining compliance with PCI DSS
- Best practices to help you plan and prepare for an audit
- The core security capabilities you need to demonstrate compliance
- How AlienVault Unified Security Management can simplify the compliance process
VP of Product Marketing at AlienVault
Qualified Security Assessor (QSA) with Terra Verde
Sales Engineer at AlienVault
Meeting the global challenge of evolving corporate compliance.
Issues to be discussed include:
1.An overview of the Compliance Complexity Index 2018 (CCI 2018) - Key global trends and the most and least complex countries.
2. Insights about the main challenges in Latin America:
- Which are the most complex countries in the Americas (from CCI 2018)
- Compliance and main regulatory developments in Latin America
3. How companies should prepare to meet these challenges
Symantec Control & Compliance Suite – Automatisieren Sie Compliance-Abläufe, schaffen Sie Transparenz und sparen Sie wertvolle Zeit
Symantec Control Compliance Suite liefert geschäftsrelevante Sicherheits- und Risikoinformationen, mit denen Sie Prioritäten für die Bereiche Sicherheit, IT-Betrieb und Compliance effektiv abstimmen können. Bewertungen erfolgen fortlaufend und automatisiert. Sie erhalten damit eine Gesamtübersicht über Sicherheitskontrollen und Sicherheitslücken. Auf diese Weise sind Sie in der Lage, das Rechenzentrum zu härten, die Behebung von Sicherheitsvorfällen zu priorisieren, sicher auf ein Software-Defined Data Center umzustellen sowie kontinuierliche Bewertungen für die Cyber-Sicherheit und die fortlaufende Überwachung zu unterstützen
In our uncertain regulatory climate, it’s essential for compliance to remain flexible. One way to achieve this is by implementing a harmonized controls framework. In this webinar, Lockpath and Unified Compliance will explore the growing need for harmonized controls and how this type of controls framework can bring agility to compliance--a necessity in a time of regulatory uncertainty.
Attendees will learn:
• The concept and reasons for using a single controls framework
• How one organization quickly addressed updated regulatory guidance using a harmonized controls framework
• How to achieve compliance agility with harmonized controls and an integrated risk management platform
In our uncertain regulatory climate, complying with regulations and managing policies demand that organizations be adaptable. For firms that are still using office tools like word processors, spreadsheets and emails, the challenge to adapt is even greater. In this live webinar, Lockpath’s Sam Abadir will share a roadmap to smarter compliance and policy management.
Attendees will learn:
• What compliance and policy management encompasses
• Communication strategies for working with cross-functional teams
• How organizations are bringing automation to manual processes
• Low-hanging fruit for quick wins and ideas for sustained growth
The road ahead is uncertain and demands that organizations adapt. Why stop there? Keep going to reach a better place with your compliance and policy management program. Explore what you need to know in this educational webinar.
The GDPR, or General Data Privacy Regulation, will come into force on 25 May 2018 and requires organizations to maintain a plan to detect data breaches, regularly evaluate the effectiveness of security practices, and document evidence of compliance. If you don’t already have the required security tools and controls in place, your organization will need to start planning now to achieve compliance and mitigate the risk of high fines for failing to comply.
That's where AlienVault can help. In this webcast, AlienVault CISO John McLeod will provide insights into how AlienVault has approached the GDPR compliance process internally, along with how our Unified Security Management (USM) platform can help accelerate and simplify your path to compliance.
Join this webcast to learn:
- Best practices for approaching GDPR compliance
- How to assess your level of readiness and build your roadmap to compliance
- How a unified security toolset can both expedite and simplify this process
We'll also provide a brief demo of the USM platform to illustrate some of the technical controls you need in place TODAY for compliance.
AlienVault Principal Product Marketing Manager
Sacha joined AlienVault in Feb 2017, where he is responsible for the technical marketing of the AlienVault Unified Security Management (USM) family of solutions. He brings multiple years of experience from product management, product marketing and business management roles at Microsoft, NetIQ, Gemalto and Schlumberger where he has delivered both SaaS-delivered and boxed-product solutions that address the IT security, identity and management space. Originally from the UK, Sacha is based in Austin, TX.
We want to help answer your toughest PCI compliance questions. Our experienced Qualified Security Assessors (QSAs) will be hosting monthly Q&A sessions, where we’ll give you the opportunity to learn from peers, hear important use cases, and most importantly, get your questions answered.Read more >
Grant Burst, Cybersecurity Engineer | PAM Expert, Wallix
Chad Carter, VP of Products for North America, Wallix
Cloud technology offers a host of benefits, including flexibility and accessibility. But it also brings new compliance challenges and security risks. Although cloud providers claim that their technology is mature enough to handle any security-related issues, ensuring data integrity in the cloud and proving it to compliance auditors are still top concerns for most organizations.
Join us to get deep insight on:
•How you can share responsibility for IT security with cloud providers
•How to protect the sensitive data you store in the cloud
•How to meet compliance requirements for data in the cloud
Without the right tools and resources, monitoring your PCI compliance can be complex and involve lots of time and costs.
Join us as we share the three best practices for monitoring PCI compliance. Alert Logic’s automated security controls streamline assessment and detection of vulnerabilities and suspicious behavior that could jeopardize your compliance status.
We’ll demo product features and show you:
- What data to monitor for PCI compliance
- How to constantly scan for issues related to PCI compliance
- What logs to review and make available for auditors
Hear from our experts about these capabilities and more in this staying ahead of PCI compliance webinar.
Risk management in banks has gone through a silent revolution. Banks had to solve the problems and questions asked post-crisis and then rationalize and move to more enterprise wide models. Today, a three pronged revolution of regulation, technology and new sources of risk mean banks must re-imagine risk and compliance. With platformification, increases in computing power and cloud come the opportunities to deliver more agile processes, more real-time insights and more accurate predictions. But data quality remains king. What are CIOs top considerations when deploying more open api driven risk platforms? Can risk management securely live in the cloud? How can banks move the needle by collaborating with the fintech ecosystem?Read more >
Hear how the Keylight GRC Platform has significantly reduce Zynga's audit time.Read more >
Hear how Zynga documented their risk management processes before adopting the Keylight GRC Platform.Read more >
Join us on to hear about our exciting new features and functionalities in 5.0. Features requested by you, our customers! Our senior project management team, Jeff Michael and Hal Hearst will cover the latest features and leave plenty of time to answer your questions. In this webinar, we will discuss:
-Black Duck Binary Analysis
-Enhanced component management
-Operational risk policy rules
Waterford Technologies are experts in Compliance Technology and Unstructured Data (Email & File) Management. We enable organisations to achieve a clear overview of their data, enabling informed business decisions to prepare for legislation such as GDPR and MiFID II. We simplify data oversight by providing cutting edge technology and unlimited unrivalled support.Read more >
Steps 1 & 2: Training & Teams
Steps 3 & 4: Audit & Data Retention
Steps 5 & 6: Data Requests & Breaches
Steps 7 & 8: International & Sensitive Data
Steps 9 & 10: Privacy by Design & DPOs
Steps 11 & 12: Project Planning & Optimisation
Modern applications are constructed using open source components. Most organizations understand they’re using open source. What they likely underestimate is its prevalence in their homegrown applications and the potential security and license compliance risks they assume if they’re not continuously monitoring those libraries. When companies merge or are acquired, that unknown risk is transferred, potentially to organizations with greater regulatory exposure. Join Daniel Kennedy, Research Director, Information Security, and Phil Odence, GM, Black Duck On-Demand, for a discussion of these risks and how to address them.Read more >
Hear the reactions to the Keylight GRC Platform implementation at CNO Financial.Read more >
Hear how CNO Financial handled it's audit process before adopting the Keylight GRC Platform.Read more >
Hear how CNO Financial has benefited from implementing the Keylight GRC Platform for their Compliance and Policy Management program.Read more >
The PCI Dream is back for another Q&A round on all things PCI.
Join this interactive session with some of the top PCI QSA’s in the country with decades of combined PCI and card processing experiences. They’ve seen it all: the good, bad and ugly; and lived to tell the tale.
Ben Rothke, David Mundhenk, Arthur Cooper, and Jeff Hall will discuss how to achieve PCI compliance in the cloud. Get answers to your most vexing PCI questions. No PCI question is out of bounds.
- Ben Rothke, Senior Security Consultant at Nettitude
- David Mundhenk, Senior Security Consultant at Herjavec Group
- Jeff Hall, Principal Security Consultant at Optiv Security
- Arthur Cooper "Coop", Senior Security Consultant at NuArx
This is Part 5 of The PCI Dream Team Q&A on BrightTALK.
The audience is highly encouraged to ask the team your toughest PCI questions.