ZenGRC

Simply Powerful GRC

Home » Resource Center » Blog

Blog

Found 1521 Results
Page 31 of 153

What Is SOX Reporting?


In the early 2000s, corporate titans Enron, WorldCom, and Tyco became household names — thanks to huge accounting scandals at each one, ruining inventors and employees alike and souring public trust in Corporate America.  In response to those scandals (and others), in 2002 the U.S. Congress enacted the Sarbanes-Oxley Act (SOX). The law introduced new […]

wordcloud with emphasis on Sarbanes Oxley, Compliance wordcloud with emphasis on Sarbanes Oxley, Compliance

Tags:

November 21, 2023

Embracing Risk for a Brighter Tomorrow


Once upon a time in the world of business, risk was seen as something to be feared, a looming specter of potential failure. However, in a time of rapid change and innovation, a new perspective emerged, one that recognizes the positive potential of risk as a catalyst for growth and transformation. If you missed our […]

November 15, 2023

Say Goodbye to Boring: 6 Innovative Ways to Boost Your Cybersecurity Training


Introduction Think cybersecurity training is just a snore fest of jargon and compliance checkboxes? Think again. Welcome to the new era of Cybersecurity training, where ‘boring’ is a forbidden word and engagement is the name of the game. This guide is all about flipping the script—from just ticking off ‘compliance’ boxes to actually being ‘competent,’ […]

Businessman Gives Report/ Presentation to His Business Colleagues, Pointing at the Results Showing Statistics, Pie Charts and Company's Growth On Wall TV Screen

November 9, 2023

Unlocking Growth: Building a Business Case for GRC Applications


In the ever-evolving landscape of modern business, staying ahead of the curve has become synonymous with survival. Governance, risk, and compliance (GRC) applications have emerged as the guardians of stability, security, and sustainable growth. So how can you assure your organization invests wisely in these essential tools?  If you’re like me, you’ve struggled in the […]

digital transformation

November 8, 2023

What Is the PCI DSS Attestation of Compliance?


Compliance with the Payment Card Industry Data Security Standard (PCI DSS) can be challenging for many retailers and other businesses that process payment card transactions. So sometimes the cynical question arises: how bad could non-compliance with PCI-DSS be?  Pretty bad, actually.  Any company that processes, stores, or transmits credit card information must comply with the […]

female swiping credit card at a store checkout

November 7, 2023

What Is a SOC 2 Type 2 Audit?


A System and Organization Controls for Service Organizations 2 (SOC 2) audit assesses how well a service provider’s internal controls and practices safeguard customer data’s privacy and security. Service providers include those providing Software-as-a-Service (SaaS) or cloud computing services, as well as other professional services such as consulting that third-party vendors routinely offer. The common […]

man and woman holding SOC 2 and ISO27001 puzzle pieces

Tags:

November 6, 2023

Do Banks Need to be PCI Compliant?


Financial institutions are one of the most heavily regulated industries around, and for good reason. Access to the personal information and funds of their customers makes banks a popular target with hackers and a dangerous location for a cybersecurity breach. With all the regulations a bank needs to obey, you may have overlooked the Payment […]

closeup view of chip-enabled credit cards

Tags: ,

What Are the PCI Audit Log Retention Requirements?


Generating an audit trail is not just good practice but is also integral to achieving PCI compliance, which stands for Payment Card Industry Data Security Standard (PCI DSS). This standard is what retailers and banks rely on to safeguard consumers’ sensitive credit card information. In particular, when striving for PCI compliance, audit logs, log management, […]

The concept of credit card theft. Hackers with credit cards on laptops use these data for unauthorized shopping.

Tags:

What is PCI Compliance Level 2?


The Payment Card Industry Data Security Standard (PCI DSS) Level 2 merchants process between 1 and 6 million Visa, Mastercard, and Discover transactions yearly, 50,000 to 2 million American Express sales, and fewer than 1 million JCB International credit card transactions.  Service providers–entities that process credit card payments for merchants and their financial institutions (also […]

closeup view of blue credit card

Tags: ,

What is PCI Compliance Level 3?


The Payment Card Industry Data Security Standard’s (PCI DSS) compliance Level 3 applies to mid-size merchants that, generally speaking, process between 20,000 and 1 million credit card transactions per year. As is the case with all the PCI compliance levels, however, the exact number of transactions qualifying a merchant for Level 3 depends mainly on […]

female inserting credit card into card reader

Tags: ,

Page 31 of 153

Ready to Experience Simply Powerful GRC?

×