Profile cover photo
Profile photo
David Barnett
260 followers -
InfoSec Nerd
InfoSec Nerd

260 followers
About
David's interests
View all
David's posts

Question on internal scanning for PCI using Qualys.. Would using just the Qualys agent on a VPC in AWS be sufficient for internal PCI scans? Would you also have to run say, uncredentialed scans? Would this depend on the environment in AWS, i.e. if there are security appliance VPC's or similar systems which may not have the ability to have an agent installed?

Post has attachment

Post has attachment

Post has attachment
Love iMore - my source for Apple News. Great podcasts and useful info on new products.

question to the community - for 3.2.1 Do not store the full contents of any track ... for a CNP company, is it really expected to provide all the sampled evidence  - i.e All logs (for example, transaction, history, debugging.  Can't our merchant bank attest to that we do not conduct card present transactions. This may be a legitimate request but we have been dealing with a brain dead QSA who does not understand tech and his guidance has been limited to cut and paste from the DSS.

Post has shared content

Post has attachment
The inevitable in the race to the bottom. Samsung could only dream to be Apple. 

Post has attachment
Gantt Charts Don't Work http://umano.me/c/gr0XV #umanoapp

Post has attachment
Will people march with obnoxious signs at Phelps funeral? 

Post has shared content
Interesting thought experiment. 
Is North Korea leading by example in the fight against Climate Change?
Photo
Wait while more posts are being loaded