Encrypt All The Things – PCI DSS and Cryptography

Encrypt All The Things – PCI DSS and Cryptography

In a recent post, we discussed what the Payment Card Industry Data Security Standard (PCI DSS) is and some common issues we see in how organizations interpret or implement specific required controls. See “Common Misconceptions around the Payment Card Industry Data Security Standard (PCI DSS)” for more information. In this post, we’ll discuss issues we often see around encryption.…

Read More

CFTC Issues New, but Familiar, Cyber-Security Guidelines

Recently the Commodities Futures Trading Commission published a set of guidance, outlining its expectations with regards to cyber-security programs.  In contrast to regulating bodies in other regulated industries and sectors, the CFTC tends to take a principles-based approach to regulation, which is reflected in the relative generality (some would say ambiguity) of the published...

Read More

Why obscurity is not your cyber security plan

Last week, the CME Group confirmed that ClearPort, the system it uses to clear privately negotiated block trades in the over-the-counter energy and metals markets, had been hacked in July.  While few details have been released on this incident, coming off recent incidents at NYSE and several large banks, this release should still be a reminder to all IT leaders.…

Read More
Phone: 312-602-4000
Email: marketing@westmonroepartners.com
222 W. Adams
Chicago, IL 60606
Show Buttons
Share On Facebook
Share On Twitter
Share on LinkedIn
Hide Buttons