Educause Security Discussion mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Budget for PCI DSS SAQ D for Bookstore Operations

From: John Ladwig <John.Ladwig () CSU MNSCU EDU>
Date: Fri, 5 Aug 2011 07:18:21 -0500
A 340 row Lovecraftian spreadsheet which causes those who stare into its depths to gibber in unholy madness.  We call 
it The  Beast.

The 40+ columns track a lot of things, none of which are on any SAQ; vendors, manufacturers, contracts language status, 
versions, validation types, concessionnaires, CDE segmentation status, SAQ completion dates...  About row 200 I 
realized this was a database problem, but our development staff is limited.

    -jml


-----Original Message-----
From: Doug Markiewicz - EDUCAUSE
Sent: 2011-08-05 06:48:02
To: Doug Markiewicz - EDUCAUSE;The EDUCAUSE Security Constituent Group Listserv
Cc: 
Subject: Re: [SECURITY] Budget for PCI DSS SAQ D for Bookstore Operations



We are working with Trustwave to provide an online portal to track all information, scans, provide and
track training, do external scans, fill out SAQs, etc.


I'm curious how others are organizing all their PCI compliance data, tracking training, etc. Manually?  Through a 
software package or service provider?
Previous By Date Next
Previous By Thread Next

Current thread: