Trending Compliance Testing Discussions

Are there any other alternatives to ensure compliance with organisational policies and procedures other than internal Audit activity? ‎

What is the difference between the compliance and the AML? ‎

Vulnerability vs PEN testing. Which one is required for PCI compliance? My understanding is only PCI vulnerability scan is required. Comments?‎

Is there any course for Compliance and AML apart from CAMS?‎

What is the compliance and what did they do ?‎

compliance in the insurance companies‎

 

Answer added by  ايمن محمد عاطف محمد, Director of the control and regulation unit, ACOLID
6 years ago

that whereas the typical job of the compliance officer used to consist of ensuring the smooth conduct of business matters through a mere “check-the-box” approach with lit ... See More

 

Answer added by  Malik Muhammad, Information Security Officer, Golden Chip Company
6 years ago

Both Are required, VA quarterly, and PT yearly....

 

Answer added by  ahmed reda, Information Security Engineer, Security Meter
7 years ago

The Both are required. quarterly vulnerability scanning and yearly PEN testing

 

Answer added by  Mohamed Mamdouh
7 years ago

you actually need both for PCI DSS compliance but in a different way... for PEN testing you need one internal and one external test during the year and one after any majo ... See More

 

Answer added by  Deleted user
7 years ago

According to PCI DSS 3.0 you need to perform penetration testing once a year as minimum and on every major change in the enviroment. This also makes sense as vulnerabilit ... See More