Listen to learn actionable advice for your PCI compliance support needs, whether you're starting your PCI compliance journey or looking to improve your existing processes.

Get a break down the 2026 certification timeline, DFARS 7021 changes, and why self-attestation is no longer an option.
.png)
First time filling out an SAQ? Get advice from people who do this scoping every day.

Passwords could easily be your biggest security gap. FIDO Alliance's CTO breaks down passkeys and a simple SMB action plan to go passwordless this week.

One year after PCI DSS v4.0.1 requirements 6.4.3 and 11.6.1 were supposed to be in place, we now have data-backed reality on how these rules are actually playing out in the field.

90% of your cyber risk comes from just 2 vectors. See why AI has made social engineering more dangerous and how phishing-resistant MFA can stop it.

For small business owners, an incident doesn't just mean calling IT, it means operations shut down for days, VoIP phones go dark, and the cash flow stops.
.avif)
In this episode, QSAs Jen Stone and Michael Simpson break down the requirements that often catch even seasoned security teams off guard, specifically the new scrutiny on third-party scripts.

From understanding the three different levels of HITRUST to mastering the "storytelling" required for evidence, our experts break down how to move past the frustration and build a solid security foundation.

Matt "Heff" Heffelfinger explains the practical cybersecurity fundamentals every small business needs to reduce risk, strengthen defenses, and protect against today's evolving threats.
.avif)
Find out the dangerous difference between a gap analysis and a true Security Risk Analysis (SRA).

Listen to learn about the new NIST CSF 2.0 Small Business Quick Start Guide and identify the five fundamentals that actually move the needle on your security.

Host Jen Stone talks with Curt Dukes from the Center for Internet Security (CIS) to discuss how businesses can implement good enough security without unlimited resources.

Listen to learn actionable advice for your PCI compliance support needs, whether you're starting your PCI compliance journey or looking to improve your existing processes.

With the deadline for PCI 4.0 rapidly approaching, understanding the new requirements for e-commerce is crucial.

Listen to learn about real-world impact of cyberattacks on patient care and the strategies organizations can implement to protect their sensitive data.

Listen to get a break down for each available SAQ type, including the newly introduced SAQ SPoC for PCI DSS 4.0.

Listen to learn about the importance of automation and documentation in building secure and efficient cloud environments.

Listen to learn how to get more from your penetration test

Listen to learn more about how Managed Service Providers (MSPs) can empower healthcare organizations to achieve HIPAA compliance.

Listen to learn about the myth of automation being a complex "one size fits all" solution.

Listen to learn why automation is essential for effective data security.

Listen to learn the possible paths of education to start your penetration testing career.

Listen to learn more about the cybersecurity skills gap and how to bridge it.

Listen to learn how to effectively communicate cybersecurity risk to a board of directors.