PCI Compliance News

Sword & Shield Enterprise Security’s PCI compliance experts provide information about PCI compliance news, trends, and best practices.

Learn how to know if you have to be PCI compliant, how managed services can help you achieve PCI compliance, and how to prepare for a ROC.


Apr 2019

5 Steps to Recovering from a Failed PCI ROC

A Payment Card Industry (PCI) Report on Compliance (ROC) is designed to test the effectiveness of the security controls that merchants implement to protect cardholder data. Organizations that process more than six million card transactions a year are required to undergo a ROC assessment. Other companies may be required to complete a ROC at the discretion of the card company. Failing a PCI ROC assessment...

Read More


Mar 2019

Are You Ready for a ROC?

We recently answered the question, “How do I know if I have to be PCI compliant?”. That post is a good way for those new to the Payment Card Industry (PCI) world to learn some of the basics. Now, are you ready for a ROC? In this second installment of our three-part PCI compliance series, we will go more in depth to explain the PCI Report...

Read More


Feb 2019

How Do I Know If I Have to Be PCI Compliant?

Payment Card Industry compliance is intended to make credit and debit card transactions more secure and to protect cardholders against misuse of their personal information. This article explains who must be PCI compliant, the levels of compliance, the role of PCI experts, and the types of reporting that must be completed. What is the PCI DSS Standard? The PCI Data Security Standard (PCI DSS) is a...

Read More


Jan 2019

How Managed Security Can Help Reach PCI Compliance

The PCI DSS standard is designed to ensure the security of credit card data. Any organization that stores, transmits, or processes credit card information must comply with the requirements of the PCI DSS standard. The organization must pass third-party audits designed to test this compliance. What Do I Need to Do for PCI Compliance? In order to be compliant with PCI DSS, an organization needs...

Read More


Nov 2018

The Importance of Configuration Standards for Regulatory Compliance

Developing and implementing strong configuration standards for regulatory compliance is an important aspect of an organization’s cybersecurity strategy. Privacy regulations commonly require configuration standards. Therefore, knowing how to create strong ones is an important part of achieving and maintaining regulatory compliance for frameworks such as HIPAA/HITECH, PCI DSS, and NIST. What Are Regulatory Compliance Configuration Standards? All technology comes with a default configuration and, in...

Read More


Sep 2018

New PCI SSC Payment Security Tool Helps Small Merchants

The Verizon Data Breach Investigations Report found that small businesses made up 61% of the organizations surveyed. These highly-targeted businesses often do not have the technical expertise on staff necessary to effectively thwart or manage security attacks. PCI Payment Security Tool Purpose To assist small merchants in fighting cyber crime, the PCI Security Standards Council (PCI SSC) recently announced the launch of the PCI Data...

Read More


Aug 2018

Making PCI DSS Business as Usual

Learn how to achieve PCI DSS Business as Usual as part of your compliance. The PCI DSS standards are designed to ensure that companies processing, transmitting or storing customer credit card information are protecting it appropriately. The process for becoming PCI certified includes passing a yearly audit where security controls are evaluated, meaning that the minimum requirement for certification is ensuring that systems are compliant at...

Read More


May 2018

Sword & Shield Enterprise Security Contributes to PCI DSS

Award winning national cybersecurity firm garners acknowledgement from PCI Council. Knoxville, Tenn. May 10, 2018 – Sword & Shield Enterprise Security, a leading national cybersecurity firm headquartered in Knoxville, Tennessee, announced today the company has been acknowledged for its contributions to the April 2018 PCI SSC Cloud Computing Guidelines Information Supplement. This is the third time Sword & Shield has been credited with contribution to...

Read More


Aug 2017

PCI DSS Changes to Be Enforced in 2018: Are you ready?

The Payment Card Industry Data Security Standard (PCI DSS) is a security standard for merchants and service providers that process, store or transmit credit card information. Forward dated PCI DSS changes in Version 3.2 of the DSS requiring increased network security will be enforced in 2018. Are you ready? The most important change to the standards will be enforced beginning July 1, 2018. That’s when...

Read More


Jan 2017

From 1999 to 2017: PCI Continues to Evolve

The origins of the Payment Card Industry Data Security Standard (PCI DSS) go back to the late 1990s – the dawn of the Internet era, but despite its humble beginnings, the PCI DSS has come a long way. What began as a customer security program at VISA is now a regulatory body for nearly all retailers who want to use credit cards. Sword & Shield Enterprise...

Read More

Page 1 of 212