Channel Strategies for the CIOEmail Alerts
-
PCI compliance guide: A resource for solution providers
This PCI compliance guide covers everything PCI DSS, from a brief overview to more advanced PCI offerings. Learning Guide
-
HITECH Act and HIPAA: Guidelines for data security compliance
Value-added resellers and security consultants can help healthcare practitioners comply with HIPAA by educating these SMBs during product sales, and by implementing risk analysis and management processes. This HIPAA Compliance Guide will help you get... Learning Guide
-
Access control compliance and corporate governance considerations
As regulatory compliance obligations play a more prominent role in client businesses, solution providers need to focus more on access control compliance considerations. Learn about these access control compliance regulations and how to help your clie... Feature
-
PCI compliance services FAQ
The PCI compliance standard must be met by every company who accepts credit cards as a form of payment. But what exactly does it mean to be PCI-compliant? Andrew Plato, president and principal consultant of Anitian Enterprise Security, answers questi... Project FAQs
-
PCI compliance checklist: Top five channel mistakes and how to avoid them
Regulatory compliance can make or break your customer's business. Learn about the top five PCI mistakes made by solution providers and how you can help your customer avoid making them, from oversimplification to not logging enough data. Channel Checklist
-
What are your regulatory compliance requirements for email security?
Before deploying an email security project, you must ask your client the right questions. Find out why it's important to know your clients' regulatory compliance requirements before implementing email security. FAQ
-
Payment Card Industry Data Security Standard (PCI-DSS)
You may have heard about the Payment Card Industry Data Security Standard (PCI-DSS), but what does it entail? In this IT Channel Explained article, we clarify what PCI-DSS means through an explanation of 12-item PCI-DSS requirements list for credit c... IT Channel Explained
-
Myth 3: Encryption is scary
Encryption is helpful for both companies and consumers. Data is stored more safely when encryption is used according to government regulations, relieving companies of liability and consumers of worry. Learn why you shouldn't be afraid of encryption. Top 5 Myths
-
Myth 1: PCI is hard
PCI compliance is not nearly as difficult as some believe. Learn why making a company PCI compliant is easier than many realize. Top 5 Myths
-
Myth 4: "I don't take enough credit cards..."
If a company takes credit cards at all, in any volume, it is required to be PCI compliant. While validation, which is determined by the number of credit cards, might be different, compliance is a constant for any company that takes credit cards as pa... Top 5 Myths
- See more Essential Knowledge on Regulatory Compliance
-
Stable PCI compliance standard to have little effect on opportunities
The PCI DSS will not be changed for the next three years. Will security solution providers see a drop-off in PCI opportunities during this time? News | 14 Mar 2011
-
Visa issues payment application security best practices for integrators, resellers
New guidance helps avoid configuration issues, improve secure software development and help merchants securely install payment system software. Article | 26 Aug 2010
-
HITRUST Alliance product certification could be a boon for VARs
The HITRUST Alliance is developing a product certification that will simplify the choice of products to support HIPAA compliance, as well as other regulations and audit requirements specific to healthcare organizations. Learn why HITRUST saw the need... Article | 14 Dec 2009
-
HITRUST CSF offers path through healthcare security maze
The HITRUST Common Security Framework (CSF) seeks to assist solution providers in dealing with customers who need to be in compliance with HIPAA. Find out what the HITRUST CSF entails, as well as how it can benefit your solution provider company. Article | 07 Dec 2009
-
Application security expertise a plus when offering WAF services
Web application firewalls (WAF) are fast becoming a way of life for customers interested in creating effective data protection programs. Security solution providers who specialize in application security are in a good position to help customers with ... Article | 02 Nov 2009
-
HITECH Act incentives translate to opportunities for VARs
Healthcare organizations are moving quickly to grab a piece of the $19.2 billion in incentives earmarked by the Health Information Technology for Economic and Clinical Health (HITECH) Act to convert to digital medical records. The channel must move q... Article | 28 Sep 2009
-
New HITRUST certification offered for solution providers
The Health Information Trust Alliance (HITRUST) has announced a new certification aimed at making it easier for security solution providers to help customers with HIPAA compliance. Article | 16 Sep 2009
-
Compliance drives opportunities for security integrators
At the 2009 RSA Conference, new regulations and initiatives such as NERC, HITRUST and CNCI could signal some opportunities in healthcare and energy verticals. Article | 23 Apr 2009
-
Data protection services offer revenue for security solution providers
Data protection services present a hot opportunity for security solution providers, according to a recent TechTarget survey of security professionals. Find out which areas of data protection will be the biggest revenue drivers in 2009. Article | 27 Feb 2009
-
Agiliance and McAfee partner for better governance, risk and compliance services
Agiliance and McAfee have partnered in an attempt to bolster their governance, risk and complianc services. Article | 18 Feb 2009
- See more News on Regulatory Compliance
-
HIPAA security checklist: 10 services your customers need
HIPAA compliance services can lead to solid business growth for solution providers. Kevin McDonald's HIPAA security checklist has 10 ways to begin. Tip
-
Regulatory compliance requirements for security solutions providers
Customers aren’t the only firms that need to comply with regulations. In many cases, solution providers need to be compliant, too. Tip
-
Opportunities abound for providing HIPAA compliance services
Recent HIPAA updates mean many firms -- not just health care firms -- must now become HIPAA compliant. Kevin McDonald explains where to find them. Tip
-
Guide to PCI documents: PCI levels, assessments and reports
There are a myriad of different documents for understanding, assessing and reporting PCI DSS compliance. This guide explains which documents to use and where to find them. Tip
-
PCI guide: PCI DSS documentation, resources for solution providers
Beyond basic PCI DSS assessments and reporting, solution providers may need to access PCI DSS documents for emerging technologies and other standards, as detailed in this guide. Tip
-
Security product specialization key for Oracle VAR success
Considering adding an Oracle security product to your line card? This article will guide your choice based on your current skill set. Tip
-
Opportunities from SOX compliance requirements are limited, risky
Expert Kevin McDonald concedes that security solution providers’ opportunities from SOX compliance requirements are limited and the risks are disproportionately high. Tip
-
PCI and virtualization: Enabling VMs with PCI compliance services
The new PCI DSS security standard allows merchants to run a virtualized environment and still be compliant. David Jacobs explains they will need your help with tools and processes. Tip
-
A security integrator's checklist for evaluating customer security
These 10 things will enable security integrators and resellers to determine which security threats are applicable to a customer's business. Tip
-
Data encryption methods: Lay out the options for your customer
Rich Mogull of Securosis explains why partners need to live up their name and team up with customers on encryption implemenation and integration. Tip
- See more Tips on Regulatory Compliance
-
Can enterprises place too much emphasis on security regulatory compliance?
Learn why companies that place too much emphasis on security regulatory compliance run the risk of neglecting a full-orbed structured assessment methodology that takes business impact into consideration. Discover how you can help your clients to avoi... Ask the Expert
-
How will the planned changes in PCI-DSS affect the channel?
Learn why the upcoming changes to the Payment Card Industry Data Security Standard (PCI-DSS), designed to prevent further corporate data breaches, still represents only a minimal security standard. Security consultants performing due diligence will w... Ask the Expert
-
How to ensure PCI-compliant firewall configurations
Learn how to ensure that your client's firewalls are compliant with PCI firewall configuration standards. Ask the Expert
-
PCI DSS compliance: All or nothing?
Learn whether a company with two distinct e-commerce brands must get them both compliant with the Payment Card Industry's Data Security Standard (PCI DSS). Ask the Expert
-
Vulnerability mitigation for PCI compliance
The PCI Security Standards Council identifies five levels of network security vulnerabilities, ranging from low to urgent. Ask the Expert
-
Avoiding conflicts of interest in PCI security assessments
Network security audits should not be performed by the same individual who later patches the network security holes found by that network security audit. Ask the Expert
-
Value-adds for PCI auditors
Network security professionals make the best network security auditors because they not only know how to diagnose network security problems, but they can also provide solutions for remediation. Ask the Expert
-
Complying with the Federal Information Security Management Act (FISMA)
Simply changing names or identifiers for personal data in databases and applications is not enough to be FISMA-compliant. Learn about a common mistake to avoid. Ask the Expert
-
Understanding ISO 27001 and ISO 17799
Help your customers develop a security posture capable of achieving external certification by understanding how ISO 27001 and ISO 17799 work together. Ask the Expert
-
Maintaining HIPAA compliance
It's been several years since Covered Entities were first required to comply with HIPAA. Learn how you can ensure your customers' ongoing compliance in this Ask the Expert Q&A. Ask the Expert
-
Speed up a HIPAA IT compliance or PCI compliance project
Compliance projects can be hard, and vendors don’t always help. In this podcast, expert Andrew Plato explains how to make clients compliant quickly. Podcast
-
Debunking MA 201 CMR 17 compliance myths
John Moynihan, president of Minuteman Governance, reviews how to help your customers get over common misconceptions related to the Massachusetts state data protection law. Video
-
Web application security best practices: Tips on implementation
The demand for Web application security tools continues to grow, thanks in part to PCI DSS compliance. In this video, learn some Web application security best practices. Video
-
The impact of PCI compliance on the channel
Did you know that PCI outlines some requirements that are specific to solution providers? Ed Moyle outlines how to approach PCI compliance for your own business, as well as your customers' businesses. Video
-
Channel Chat: IBM Sun acquisition signals consolidating market
The potential IBM Sun acquisition is a sign of what's to come in a consolidating IT buying market. But customers and partners alike are concerned about the possible fallout. Podcast
-
Building a framework-based compliance program
Richard Mackey offers expert advice on how to construct a framework that can help enterprises meet compliance and regulatory requirements. Video
-
HIPAA security checklist: 10 services your customers need
HIPAA compliance services can lead to solid business growth for solution providers. Kevin McDonald's HIPAA security checklist has 10 ways to begin. Tip
-
Regulatory compliance requirements for security solutions providers
Customers aren’t the only firms that need to comply with regulations. In many cases, solution providers need to be compliant, too. Tip
-
Opportunities abound for providing HIPAA compliance services
Recent HIPAA updates mean many firms -- not just health care firms -- must now become HIPAA compliant. Kevin McDonald explains where to find them. Tip
-
Speed up a HIPAA IT compliance or PCI compliance project
Compliance projects can be hard, and vendors don’t always help. In this podcast, expert Andrew Plato explains how to make clients compliant quickly. Podcast
-
PCI compliance guide: A resource for solution providers
This PCI compliance guide covers everything PCI DSS, from a brief overview to more advanced PCI offerings. Learning Guide
-
Guide to PCI documents: PCI levels, assessments and reports
There are a myriad of different documents for understanding, assessing and reporting PCI DSS compliance. This guide explains which documents to use and where to find them. Tip
-
PCI guide: PCI DSS documentation, resources for solution providers
Beyond basic PCI DSS assessments and reporting, solution providers may need to access PCI DSS documents for emerging technologies and other standards, as detailed in this guide. Tip
-
Security product specialization key for Oracle VAR success
Considering adding an Oracle security product to your line card? This article will guide your choice based on your current skill set. Tip
-
Opportunities from SOX compliance requirements are limited, risky
Expert Kevin McDonald concedes that security solution providers’ opportunities from SOX compliance requirements are limited and the risks are disproportionately high. Tip
-
Stable PCI compliance standard to have little effect on opportunities
The PCI DSS will not be changed for the next three years. Will security solution providers see a drop-off in PCI opportunities during this time? News
- See more All on Regulatory Compliance
About Regulatory Compliance
Read regulatory compliance news, tips and expert advice for security service providers, value-added resellers (VARs) and consultants who help customers comply with Sarbanes-Oxley (SOX), HIPAA, PCI DSS and other security regulations and requirements. You'll find best practices, tutorials and how-tos to ensure that clients are compliant with security regulations and to help you take advantage of regulatory compliance opportunities for resellers. Learn about the consultant's role in compliance, how to make the case for cost avoidance, how to develop a compliance framework and other regulatory compliance security issues.