Chris interview- review again and refine the notes.

 how would you scope on the auditor side of PCI DSS?


I need to see the inventory list. I need all your paperwork, all your policies. I believe working along with any network engineers will establish 


your environment, what is your segmentation look like.  a lot of business,


how are they goign to route all these services? any source, any destination. let's talk about. how are you securing this data? where is it at?


that is important. another that the coucil provides. you establish your levels, your milestone. all those results will come along.


what if the client does not store or process or transmit credit card data? how wold you 


or maybe they are a service provider?


who is your ASV. we need to know that to establish this assessment. the QSA will break it down. that AOC for you, we will establish, because you still have to make this extra research. we need to confirm that information.


Q: if you are the QSA

I will be soon.


If you are the QSA and the client says we don't touch credit card information. let's say they are the data center. our customer do (touch the cc data) but we don't what requirements do you see in scope?

if you are service provider, you are processing credit card holder data.

1.1.6 secure services and protocols.

you could say based on your business level, but you have to establish


Kyle: working right now with the GO group. are you 


A: internal team, in the region we don't work diffract it is a federal facility, we have a contract with immigration. occasionally we have cyber security meetings, we will implement 


Kyle: what are the biggest challenges in implementing DSS requirements?

how simple we understand PCI DSS requirements and how much system administrators don't. 


enclosed supervision and working together you will accomplish those goals. 


Q: what is your approach to the situation have you know more about this than the other people?

A: I just share my knowledge.


Q: what is your gap in knowledge when you 

A: pen test. 11.3 I want how your external pen test is coming along and how old it is. with those vulnerabilties were they remediated in the time frame it was supposed to.

it's too technical or we don't get paid for that. involve yourself more and lets talk about it. a lot of moments I see that 





Comments

Post a Comment

Popular posts from this blog

mad at today

 I wanted to throw the phone call her and yell this is not my book cover! this sucks! i hate elephants! I have to love it and then I could be proud of it forever.  but alas, what do you do. and when she said that's not a goal to my goal is 1 smoothie a day she said no a goal is lose this many pounds or get to this body fat percentage so you are saying if i dont have a scale or a body fat percentage calculator I can't have goals? Come again, you just lost one. Why do you post? i answer. She ask again, why do you post? I said, I said it already.  All the questions got me fustrated, I was irritated. Why all these questions? showed up for her this week, and Lee Smith and tomorrow wall street trapper firday cooking in the kitchen and then the hangout session I always wanted. kyle got to see my LIVE. i connected with Duke recently. But what's going on? why do i always want to help? reason i wanted to start a marketing business thing. Donnie Wiggins as all the honesty in a cup tha
Read more

Peplum

Image
       Lately I've been seeing this style everywhere.  Not only shirts:                                               but also in dresses Celebrities have caught the peplum bug as well....                   What do you think of this trend?                How would you wear it?
Read more

Hooking Up

When I was in college, there was something called 'hooking up.'  I'm not sure if people still use the term now, but back then it was an inconspicuous term. It could mean anything. When you asked your roommate, 'so what happened between you and the guy last night?'  And she would reply 'We hooked up.' It could mean anything from first base all the way up to home run.  It could mean a kiss, it could mean that they did it raw. Who knows?  You would have to ask a series of  follow-up questions to get to the bottom of what happened. I find it interesting in today's day and age the way women and men treat each other. Seems like no one wants responsibility. Where are the good men that stay until the morning and call the next day?  Where are the good women that can cook and keep a house? Does anyone know what do to after the hook up? It seems to me like our culture and hip-hop songs glamorize the temporary pleasures of sex without mentioning anything about r
Read more