If you’ve ever taken a grueling hike up a mountain, you know that feeling of relief and that sense of achievement once you reach the top. But ask any seasoned hiker, and they’ll tell you that the descent is hard work, too. The same goes for achieving and maintaining PCI-DSS compliance. For many organizations, achieving […]
Compliance Unfiltered is TCT’s tell-it-like-it is podcast, dedicated to making compliance suck less. It’s a fresh, raw, uncut alternative for anyone who needs honest, reliable, compliance expertise with a sprinkling of personality. Show Notes: Why a Strong Stance on Security and Compliance is a Business Advantage for Manufacturers Quick Take On this episode of Compliance […]
Waaay back in the day, several decades ago, I worked in a manufacturing setting for several years. The facility built tools for other companies, and my role was to learn, then run a rapid prototyping machine. Back then, there was zero semblance of anything related to security and compliance. I frequently sat in on leadership […]
There’s a reason that organizations get nervous when the annual PCI DSS compliance cycle comes around every year. It isn’t fun to be on the hot seat with your Qualified Security Assessor (QSA) — and if you don’t have your act together, that’s exactly what will happen. Many organizations find themselves on the hot seat […]
Compliance Unfiltered is TCT’s tell-it-like-it is podcast, dedicated to making compliance suck less. It’s a fresh, raw, uncut alternative for anyone who needs honest, reliable, compliance expertise with a sprinkling of personality. Show Notes: No AI Policy? Your Company is Flirting with Disaster Quick Take On this episode of Compliance Unfiltered, the CU guys delve […]
Google is now indexing your shared ChatGPT conversations, potentially exposing your company’s sensitive data. Anyone in the world can see the ChatGPT conversations your employees have shared with colleagues. It’s imperative to have a policy in place for using artificial intelligence. Artificial intelligence has the potential to get organizations of all types into a heap […]
Compliance Unfiltered is TCT’s tell-it-like-it is podcast, dedicated to making compliance suck less. It’s a fresh, raw, uncut alternative for anyone who needs honest, reliable, compliance expertise with a sprinkling of personality. Show Notes: Interview with Tom Fox of the Compliance Podcast Network Quick Take On this episode of Compliance Unfiltered, the CU Guys are […]
Hiring the right CMMC Third Party Assessor Organization (C3PAO) to audit your CMMC compliance isn’t like choosing a phone plan. It’s much more like hiring an employee in a key role. You wouldn’t make any hiring decision lightly, and you shouldn’t make this one lightly either. Your C3PAO isn’t a commodity, and it’s very important […]
A client asked me to help them onboard an organization that they were acquiring. Due diligence had been performed by another third party, which influenced the decision to acquire, but I quickly found all sorts of issues that weren’t discovered during due diligence (but should have been). Multiple compliance items that should have been in […]