PCI Change Detection: Thinking Beyond the CheckboxTripwire
Passing PCI compliance can be a painful experience. According to Verizon’s 2015 PCI report, only 9% of breached organizations were compliant with Requirement 11—a fundamental requirement which ensures that an organization is prepared for a range of attack types. Does your organization have the change detection requirement under control?
Tim Erlin, Director of Security and Risk Strategist for Tripwire, and Glenn Rogers, Acting CIO for the Girl Scouts of Northern California, provide a practical discussion on:
• How GSNorCal saved time and money by changing their PCI approach
• The three most common change detection audit mistakes and how to correct them
• A sneak peek at the impact of PCi v3.2 released this year
Keep Your Guard: Stay Compliant and Be SecureTripwire
NERC CIPv6’s deadline has come and gone and yet there are many organizations still struggling to stay compliant. While maintaining continuous compliance is a daunting task, compliance does not equal security. Assuring your environment is not compromised with a security breach that brings critical infrastructure down is a top priority. Over 295 incidents on Industrial Control Systems (ICS) were cited in 2015 (ICS-CERT) and most were in energy and manufacturing sectors.
PCI Change Detection: Thinking Beyond the CheckboxTripwire
Passing PCI compliance can be a painful experience. According to Verizon’s 2015 PCI report, only 9% of breached organizations were compliant with Requirement 11—a fundamental requirement which ensures that an organization is prepared for a range of attack types. Does your organization have the change detection requirement under control?
Tim Erlin, Director of Security and Risk Strategist for Tripwire, and Glenn Rogers, Acting CIO for the Girl Scouts of Northern California, provide a practical discussion on:
• How GSNorCal saved time and money by changing their PCI approach
• The three most common change detection audit mistakes and how to correct them
• A sneak peek at the impact of PCi v3.2 released this year
Keep Your Guard: Stay Compliant and Be SecureTripwire
NERC CIPv6’s deadline has come and gone and yet there are many organizations still struggling to stay compliant. While maintaining continuous compliance is a daunting task, compliance does not equal security. Assuring your environment is not compromised with a security breach that brings critical infrastructure down is a top priority. Over 295 incidents on Industrial Control Systems (ICS) were cited in 2015 (ICS-CERT) and most were in energy and manufacturing sectors.
