Sign In
Sign In
Explore
AWS
Azure
GCP
Information Security Policy
PCI Assessment
Risk Assessment
SOC 2 Audit
Audit
Start A Scan
Information Security Policy Review
PCI Report Analysis
Risk Assessment Review
SOC 2 Report Analysis
Learn
Contact
Pricing
Sign In
Autoprovisioning of Microsoft Defender for Containers Components.mov
Copy Link
Related Videos
5 Focus Areas for AWS Compliance
Copy Link
AWS Incident Response Playbook
Copy Link
AWS Incident Response Playbook for Credential compromise
Copy Link
AWS Incident Response Playbook for Ransomware
Copy Link
AWS Incident Response Playbook for S3 Buckets
Copy Link
AWS Security Needs a Growth Mindset
Copy Link
Activate Azure Key Rotation Reminders.mov
Copy Link
Activate Microsoft Defender for Azure SQL Databases
Copy Link
Allow Azure Services Access to Storage Accounts
Copy Link
Antivirus Solutions on EC2 Instances
Copy Link
Deploying Security Patches on EC2 Instances
Copy Link
Enable Autoprovisioning of Vulnerability Assessment for Machines
Copy Link
Enable Microsoft Defender for DNS
Copy Link
Enable Microsoft Defender for IoT
Copy Link
Enable Microsoft Defender for Open Source Relationship Databases
Copy Link
Enable Microsoft Defender for SQL Server on Machines
Copy Link
Enable Microsoft Defender for Servers
Copy Link
Ensure Autoprovisioning of the Log Analytics Agent Is Enabled for Azure VMs
Copy Link
Ensure Microsoft Defender Is Enabled for Storage Accounts
Copy Link
Ensure Microsoft Defender Is Enabled for the Azure Resource Manager
Copy Link
Ensure Microsoft Defender for Key Vaults Is Enabled
Copy Link
Ensure the Minimum TLS Version for Storage Accounts Is Set to 1.2
Copy Link
Evaluate Public IP Addresses Regularly
Copy Link
Identifying and Ranking Vulnerabilities in AWS
Copy Link
Learn from an Azure Expert
Copy Link
PCI Requirement 11.1.2 – Unauthorized Wireless Access Points Detection
Copy Link
PCI Requirement 11.2 – Quarterly Internal & External Vulnerability Scans
Copy Link
PCI Requirement 11.2.1 – Perform Quarterly Internal Vulnerability Scans
Copy Link
PCI Requirement 11.2.2 – Perform Quarterly External Vulnerability Scans
Copy Link
PCI Requirement 11.2.3 – Perform Internal and External Scans and Rescans as Needed
Copy Link
PCI Requirement 11.4 – Use Intrusion-Detection and/or Intrusion-Prevention Techniques
Copy Link
PCI Requirement 11.5 – Deploy a Change-Detection Mechanisms to Alert Personnel
Copy Link
PCI Requirement 5.1 – Deploy Anti-Virus Software on all Commonly Affected Systems
Copy Link
PCI Requirement 5.1.1 – Ensure Anti-Virus Programs Detect, Remove and Protect Against Malware
Copy Link
PCI Requirement 5.1.2 – Perform Evaluations to Identify & Evaluate Evolving Malware Threats
Copy Link
PCI Requirement 5.2 – Ensure Anti-Virus Mechanisms are Current, Perform Scans, & Generate Audit Logs
Copy Link
PCI Requirement 5.3 – Ensure Anti-Virus Mechanisms are Active and Can’t be Altered
Copy Link
PCI Requirement 6.1 – Establish a Process to Identify Security Vulnerabilities
Copy Link
PCI Requirement 6.5.6 – All “High Risk” Vulnerabilities
Copy Link
PCI Requirement 6.6 – Address Threats & Vulnerabilities Regularly for Public-Facing Web Applications
Copy Link
PCI v4.0 - 11.1.1: Requirement 11 Polices and Procedures Are In Place
Copy Link
PCI v4.0 - 11.1.2: Requirement 11 Roles and Responsibilities Are In Place
Copy Link
PCI v4.0 - 11.2.1: Wireless Access Points Are Properly Managed
Copy Link
PCI v4.0 - 11.2.2: Maintain Inventory of All Authorized Wireless Access Points
Copy Link
PCI v4.0 - 11.3.1.1: Manage Non-High Risk and Non-Critical Vulnerabilities Appropriately
Copy Link
PCI v4.0 - 11.3.1.2: Use Authenticated Vulnerability Scanning Tools for Internal Scans
Copy Link
PCI v4.0 - 11.3.1.3: Perform Internal Scans After Significant Changes
Copy Link
PCI v4.0 - 11.3.1: Perform Internal Vulnerability Scans Frequently
Copy Link
PCI v4.0 - 11.3.2.1: Perform External Scans After Significant Changes
Copy Link
PCI v4.0 - 11.3.2: Perform External Vulnerability Scans Frequently
Copy Link
PCI v4.0 - 11.5.1.1: Detect Alert and Address Covert Malware Communication Channels
Copy Link
PCI v4.0 - 11.5.2: Deploy a Change-Detection Mechanism
Copy Link
PCI v4.0 - 11.6.1: Change-Detection or Tamper-Detection Mechanisms Are Deployed on Payment Pages
Copy Link
PCI v4.0 - 5.1.1: Have Requirement 5 Policies and Procedures In Place
Copy Link
PCI v4.0 - 5.1.2: Have Requirement 5 Roles and Responsibilities In Place
Copy Link
PCI v4.0 - 5.2.1: Deploy Anti-Malware Solutions on All System Components
Copy Link
PCI v4.0 - 5.2.2: Utilize Sufficient Anti-Malware Solutions
Copy Link
PCI v4.0 - 5.2.3.1: Define Frequency of Periodic Evaluations of Systems in the Targeted Risk Analysis
Copy Link
PCI v4.0 - 5.2.3: Periodically Review Systems Not Protected by Anti-Malware Solutions
Copy Link
PCI v4.0 - 5.3.1: Keep Anti-Malware Solutions Up to Date
Copy Link
PCI v4.0 - 5.3.2.1: Define Frequency of Anti-Malware Scans in Targeted Risk Analysis
Copy Link
PCI v4.0 - 5.3.2: Ensure Anti-Malware Solution Performs Scans or Continuous Behavior Analyses
Copy Link
PCI v4.0 - 5.3.3: Utilize Anti-Malware Solutions for Removable Media
Copy Link
PCI v4.0 - 5.3.4: Enable and Retain Audit Logs for Anti-Malware Solutions
Copy Link
PCI v4.0 - 5.3.5: Do Not Allow Anti-Malware Solutions to Be Altered or Disabled
Copy Link
PCI v4.0 - 5.4.1: Have Protections in Place to Prevent Phishing Attacks
Copy Link
PCI v4.0 - 6.1.1: Requirement 6 Policies and Procedures Are In Place
Copy Link
PCI v4.0 - 6.1.2: Requirement 6 Roles and Responsibilities Are In Place
Copy Link
PCI v4.0 - 6.2.1: Bespoke and Custom Software Are Developed Securely
Copy Link
PCI v4.0 - 6.2.2: Train Personnel Developing Custom Software in Secure Software Practices
Copy Link
PCI v4.0 - 6.2.3 & 6.2.3.1: Bespoke and Custom Software Is Reviewed Before Being Released
Copy Link
PCI v4.0 - 6.2.4: Utilize Software Engineering Techniques to Secure Bespoke and Custom Software
Copy Link
PCI v4.0 - 6.3.1: Identify Security Vulnerabilities in Software
Copy Link
PCI v4.0 - 6.3.2: Maintain a List of Bespoke and Custom and Third-Party Software
Copy Link
PCI v4.0 - 6.3.3: Remediate Known Vulnerabilities Through Security Patches
Copy Link
PCI v4.0 - 6.4.1: Protect Public-Facing Web Applications
Copy Link
PCI v4.0 - 6.4.2: Use an Automated Solution to Protect Public-Facing Web Applications
Copy Link
PCI v4.0 - 6.4.3: Payment Page Scripts Are Managed Properly
Copy Link
PCI v4.0 - 6.5.1: Have a Documented Change Process for All System Components
Copy Link
PCI v4.0 - 6.5.2: Ensure Applicable PCI DSS Requirements Are In Place After Significant Changes
Copy Link
PCI v4.0 - 6.5.3: Pre-Production and Production Environments Are Separated
Copy Link
PCI v4.0 - 6.5.4: Separate Duties Between Production and Pre-Production Environments
Copy Link
PCI v4.0 - 6.5.5: Live Primary Account Numbers Are Not Used In Pre-Production Environments
Copy Link
PCI v4.0 - 6.5.6: Ensure Test Data and Accounts Are Removed Before Going into Production
Copy Link
Perform Your Azure Scan
Copy Link
Prevent Bad Passwords in Azure
Copy Link
Running Vulnerability Scans After a Significant Change
Copy Link
SOC 2 Academy: Performing Daily Log Reviews
Copy Link
Shared Responsibility Matrix in PCI
Copy Link
Testing for Unauthorized Wireless Access Points
Copy Link
The Value of Quarterly Internal Vulnerability Scans
Copy Link
Using Systems Manager from a Service-Linked Role
Copy Link
Using VPC Endpoints to Access Systems Manager
Copy Link
Utilize Microsoft Defender for Azure Cosmos DB
Copy Link
Verify that Microsoft Defender is Enabled for Containers
Copy Link