We see a steady stream of news stories about data breaches that result in damage to company reputations, impact to share valuation, cost to implement new security measures and in many cases fines and/or penalties to cover the cost of associated fraud. In the payments and security world, we tend to focus on the IT…
Category: SECURITY+
India Drafts Policy to Reduce Influence of Large Tech Companies
The following has been re-posted from Loyalty360. The original article can be found here. The draft of a new e-commerce policy has emerged in India, one that calls for a “level playing field” between Indian businesses and global competitors. The policy, if enacted, would require tech companies like Amazon or Google to store data collected…
My Compliance Assessment Didn’t Go Well… Now What?
It’s a scary situation: after all the meetings, evidence gathering and reviews, the compliance assessment comes back with red flags. Regardless of the type of compliance assessment (PCI, SOX, SOC-2, etc.) the prospect of fines and/or business interruptions can put a dark cloud over any organization. So what do you do if it happens? There…
W. Capra and McAfee Services
The following video was created by McAfee for their MPOWER Cybersecurity Summit. Featuring W. Capra Partner Matt Beale, the video discusses the professional relationship between McAfee and W. Capra.
Unlocking Security Issues
The following article has been re-posted from Convenience Store Decisions. The original posting can be found here. A multi-faceted approach to store security—from locks and cameras to smart safes and best practices in data security—is necessary to keep c-stores safe from theft in 2017. By Ed Collupy Around-the-clock business like the retail petroleum/convenience store industry…
The Dust Has Settled On Equifax. What Now?
On September 7, Equifax, one of the “big three” U.S. credit bureaus, announced a massive data breach impacting an estimated 143 million Americans. Now that preliminary information related to the breach has been released, this CapraPLUS post reflects on what happened, the impacts of the event (both immediate and long-term), and finally important lessons to…
InfoSec: Facts vs. Feelings
Preservation of cultural integrity within an organization is often among senior leadership’s top priorities. This is understandable, given the influence that culture has on morale, efficiency, and productivity. Potential impact to the culture holds significant weight in decision making processes across all departments, particularly those that are revenue generators (aka “The Business”). In some instances,…
What Happens When the Lights Go Out?
Background Driven by the high-profile data security breaches at global retail brands (Target, Michaels, etc.) over the past 10 years, directors across all retail verticals have elevated data security to a top priority of their organizations. As a result, maintaining the confidentiality and integrity of PCI, PII, and sensitive corporate data has become a primary…
SIEM Without Limits
The following presentation from W. Capra’s Joe Piggeé Sr., along with the associated article below, has been re-posted from Information Security Solutions Review. You can find the original posting here. In this video you will: Understand what SIEM is. Learn what a SIEM can do. Know what to expect of a SIEM Learn how to…
Store Data Deserves Protection Too
The following, written by W. Capra’s Ed Collupy, has been re-posted from C-Store Decisions. As c-store retailers implement enhanced inventory-management solutions, they should also consider doing more to secure inventory data. So much of the attention on data security in the last few years has been focused on payments and many companies throughout the convenience…
Focus 2016: Measured in Seconds
Recently, Intel Security hosted its annual flagship security conference “Focus” in Las Vegas. The tone of the conference was set by Sr. Vice President of Intel Security and keynote speaker Chris Young. With Intel Security set to spin off its security unit, attention was sharply focused on the soon to be CEO of the second…
Safe & Sound
The following article, from NACS, contains contributions from Matt Beale, Partner at W. Capra Consulting Group: SAFE & SOUND — “There’s a general view that if you’re PCI compliant, you are therefore security compliant. That’s a risky perspective.”