Here http://www.gss.co.uk/news/?&id=5098 is an interesting article about the difference between PCI compliance and security. The point of the article is that purchasing compliant products doesn’t necessarily make you secure. This reminds me of a related point: that much of compliance is about human processes and procedures. Even if your equipment is compliant, you still need to follow procedures (such an approval process for requests to change firewall rules). If you ignore the human side, your compliance and security will be compromised.
No Responsed To This Post
Subscribes to this post comment rss or trackback urlResponse To This Topic
Search
Recent Posts
-
- MURTEC – a point of reflection and excitement
- Support Penalty of the Legacy Enterprise Software Model
- Show me don’t tell me – Customers want demonstrated results & ROI
- Video Surveillance Breakout Session from FSTEC
- Kudos to Envysion Sales team at FSTEC
- Feedback from the frontlines
- Envysion creates custom exception reports and alerts
- Envysion Video adds Firefox and Windows 7 support
About
Archives
-
- March 2010
- February 2010
- January 2010
- December 2009
- November 2009
- October 2009
- September 2009
- August 2009
- July 2009
- June 2009
- May 2009
- April 2009
- March 2009
- February 2009
- January 2009
- December 2008
- November 2008
- October 2008
- September 2008
- August 2008
- July 2008
- June 2008
- May 2008
- April 2008
- March 2008