Stay Classy, San Diego!

Stay Classy, San Diego!

What was popular in August? I personally closed out the month with a huge milestone, corrective surgery that should hopefully remove my requirement for glasses and contacts. I am in recovery, and can SORTA see this post, so I disclaim any responsibility for the content herein.  Actually, should probably do that for the whole blog.

Here are the five most popular posts from last month:

  1. Why QSAs Should Not Be Your Security Partner. That’s right, folks. It’s time to separate your consultants from your assessors. Do you know what motivates QSAs?  Here is an inside scoop on what goes on inside your QSAs head, and why he doesn’t have your best interests in mind.
  2. Where’s the Breach? Is this the new way to deal with a breach? Just find someone who has fallen victim in the past and blame him? Maybe.
  3. The Council is such a Tease with PCI DSS 2.0. With no payoff, I might add. The Council released a preview of PCI DSS 2.0, but without any real meat to the announcement.  It’s good to see where things are moving, but ultimately, we need to see the exact language to understand the impact.  Read this post to find out why.
  4. PCI Security Standards go to Three Year Lifecycle. Still on the top five one month later, this post details some of the pros and cons to the new three year lifecycle that all of the standards will adopt starting with the pending release.
  5. 2010 Verizon Business Data Breach Report Released. Amidst the flurry of BlackHat and Defcon last month, Verizon released an updated version of their data breach report. This post outlines some key takeaways.  It’s made buzz in the industry mainly due to the trends (which should not have been reported as is).

Thanks for stopping by, San Diego!

This post originally appeared on BrandenWilliams.com.