When did you last have a light-bulb moment? For me, it was very recent. I was working with a client, supporting them in their latest Payment Card Industry Data Security Standard (PCI DSS) annual compliance assessment, and, in discussion with the Qualified Security Assessor (QSA), I had a sudden urge to challenge something we’ve all, always, believed to be a fundamental tenet of managing information security – the need for annual policy reviews. There were a number of policy documents being relied upon for evidence, but they did not have a current date. Given that there was nothing fundamental…
This article has been indexed from HelpSystems Blog
Read the original article: