Jason Chavarría
Understanding 51 new PCI DSS requirements made easy
PCI DSS v4.0 brings 51 new requirements that are best practices until March 2025. We share a classification that may help take it all in.
Jason Chavarría
Comply with the new requirements due for March 2024
Companies that store, handle or transfer account data must comply with PCI DSS v4.0 from March 31. We summarize its 13 new requirements to be met on that date.
Jason Chavarría
Six main items in an AI policy for software development
Your company should have a policy about generative AI usage for software development. Read our suggestions on the most important items to include.
Jason Chavarría
Smart devices are to be more secure for consumers
Following the steps of some in Europe, the U.S. advances in its cybersecurity labeling program to help consumers choose IoT devices more resistant to attacks.
Jason Chavarría
Now we follow all best practices required by OpenSSF
After evidencing statement and branch coverages above 90% and other high-level best practices, our open-source project Universe got the rare OpenSSF gold badge.
Felipe Ruiz
A brief overview of this recent EU draft regulation
Learn about the draft Cyber Resilience Act, including its purposes, obligations and penalties, before its final version comes.
Felipe Ruiz
Soon it will be a must in cybersecurity due to NIS2
We briefly introduce the NIS 2 Directive and pay special attention to its cybersecurity training requirement for organizations' boards of directors.
Felipe Ruiz
Keep tabs on this proposal from the Biden-Harris Admin
Learn about the cybersecurity strategy announced by the Biden-Harris Administration, specifically, the issues it aims to address and the pillars it is based on.
Jason Chavarría
For which security standards is pentesting a must-have?
We present whether penetration testing is required for compliance with these security standards: GDPR, GLBA, HIPAA, ISO 27001, PCI DSS, SOC 2 and SWIFT CSCF.