I’ve heard my firm and the others do not conduct PCI audits. 1. Is that true? Many of the big 4 are on the QSA website. 2. Why not? we do HITRUST, ISO certs.

like
Posting as :
works at
You are currently posting as works at

Unlimited Liability. It could bankrupt the firm.

like

Liability is imposed by the PCI council which consists of the credit card companies. The liability is calculated based on the fraud committed through the credit cards that were comprimised and abused. Which can be unlimited. Your engagement letter is with a client, but your liability lies with the PCI council and credit card companies.

It’s the classic risk vs. reward case.

Related Posts

What are some exit ops for a big 4 tech risk consultant into more cyber/cloud focused roles? Has Cyber experience from tech risk projects, CISA and cloud certs

like

Does anyone have a know where I can find additional study materials/practice test for the Oracle Cloud Revenue Management certification exam?

like

Hi All,
I have been working as mainframe developer for around 8 years. From last year, working on requirement analysis and team management activities. I want to move into java full stack developer profile as I am not interested in management work. I know that being 8+ YOE guy and considering my tech background, it would be difficult to transition, but I am really depressed with my work profile. Please advise how should I transition my career path to a java full stack developer.

Is it viable to move into HRIS with no HR background - more of a tech/analytics background ? I’m 6 years out of college. Will I need to start entry level?

like

What's the best study/education tool for passing the SFDC Admin cert?

like

Hi All,

I got senior specialist position in HCL. Can anyone please help me with the roles and responsibilities.

Experience : 4.5 years

Is this position good enough for this much much of experience?

like

Anyone in the Tampa Bay Area and work in Health Admin? about to graduate with my Bachelors next month and am wondering what my next steps could be, or where I could start working?

like

Is there a big difference between MM and B4 WLB? I liked the people at the MM firm better, but don't if B4 means that much I could see myself staying.

like

Has anyone taken the CISA while on lockdown and can speak to the virtual testing experience?

like

What are good roles or industries to lateral into if you have a pharmacy/pharmacist background?

like

Finance and enterprise performance - finance strategy (Deloitte) and transformation (PwC) exit ops?

Hi fishes,
I am currently working as Branch Manager (scale-2 officer) in one of the leading public sector banks and have 5 yr experience in core banking. I am having 2.5 years experience in the IT sector on vision plus as a software engineer (before joining the bank). I have knowledge of core banking as well as good knowledge of banking tools like finacle, caps, imac etc. I want to switch to private financial institutions.
Any suggestions about such institutions and the domain for I can apply

Barclays or Citibank which company is more better at AVP role?

like

What are other carrer fields for somebody looking to leave AML investigations?

like

Honest opinions please—will oil and gas trade association experience be looked down upon by future environmental law firms/ non profits/ the clean energy space? Or will it be looked as a plus? Trying to break into the energy regulatory space but been having less luck with the renewable energy space.

Can anybody please tell me What is the hierarchy level in eli lilly. Recently Received an offer for Associate consultant position

Does anyone know of anywhere that allows for weekend only security analysts? I'm leaving security engineering to become a sales engineer for security tools. I want to stay sharp on my analytics and get paid to do it.

like

Hi all i have a 3 year experience as Datascientist in industry with masters in ML im completely tiered of my current job due to politics , work env and projects .want to switch to other companies..please help me which one has good work env and proper pay nd projects

Hi All,

I got offer from Fujitsu for C++ developer i feel that it's a good opportunity to learn new skills along with C++.
I already have 9.1LPA + 35K yearly incentive and i got 12LPA Fixed in Fujitsu.

YOE: 3.6 years

I'm in process of making a decision. Please help.

Is Fujitsu good company for career development nd learn new skills?

I have been told by the HR that they have yearly two appraisal policy in Fujitsu, is this correct?

like

How do progression look like? Do we have lateral moves (SA1A, SA1B)

like

More Posts

Anyone here who is very satisfied in his or her work as a data scientist? Which organisation you are associated with? Which kind of work you are involved in?

like

Hi Fishes, I am in Android Techie YOE : 4.5 CTC : 17LPA Currently Interviewing at Google (Japan) 2 Rounds are done and 4 rounds left. They said if selected need to reallocate to Japan. What will be your suggestion and what will be better deal.

As India is best in terms of Living cost compare to other Countries.
As per research if anyone got 50 LPA Yen in Japan it's still similar to 15-16LPA ₹ in India as they have 1BHK rent is 1L Yen per month.
Should I complete Interview / search job in India?

like

Hello everyone! I am looking for referrals in Scotiabank (specifically Research Consultant). Any leads will be appreciated. Thanks in advance

like

Is anyone here in Clinical Research, as a CRA? I'm considering leaving hospital care & pivoting to Clinical Research, and would love to chat with someone in the industry.

like

Who’s feeling attacked? 👀

Post Photo
likefunny

Is there a cooking bowl?

like

Accenture(10 LPA, web development), Apisero(9 LPA, integration developer), L&T(12.2 LPA, not so good tech)
Which one should I select ?
Confusion level at peak.

like

I like sex. How’s that for a confession😈😈😈😈

like

I’m potentially moving from a senior social role to an account management position. I feel I’ve capped my growth in social and want to explore other sides of the business. Any tips to set myself up for success?

like

Hi Fishes, howz the leave policy at mphasis?? Thanks

Anyone have any area recommendations for buying a house in Houston but have regular commutes downtown? 300k max but would like a house (not a townhome/apartment).

like

I’ve been dating this guy who works in IB for 2 month now and I really like him but he’s the worse texter I’ve ever dealt with. It usually takes him 6-24 hours to respond to a simple message. Sometimes I even forget the topics of our conversations because of how long it takes for him to answer. I understand that he works long hours but is he really THAT busy or just not interested?

likefunny

Cuomo is resigning

likeupliftingfunny

Accenture lay off news?

like

100k pharma Art Sup. Launched many successful brands, commercials, and bailed teams out of failing launches. Had no raises or bonus for 2.5 years. Finally got a promo to Gr. Art Sup w/ 5% raise. FML!!

Is there a joining bonus in IBM ?

like

Ladies - Where do you shop for "real clothes"? Where do you get outfit inspiration? Like summer dresses, tshirts? Going out tanks? Idk what else there are.

31F. I have only worn sports bras, and gym outfits the last 5 years... And would like to have new set of clothes to "adult" / be more feminine in.

My style/taste is casual chic, or smart chic. I like wearing trenchcoats for outerwear, white sneakers.

like

Additional Posts in Cyber Security Bowl

Best states and countries for cyber security?

like

How many of these do y’all get a week? 😏

Post Photo
like

Is security+ a good entry cert to help transfer to cyber positions (vulnerability mgmt/threat intelligence)? I come from a IT governance and controls background. Been applying to cyber positions but no luck.. Also don't feel like studying for cissp right now. I got CISA and CISM

like

What are some exit ops for a big 4 tech risk consultant into more cyber/cloud focused roles? Has Cyber experience from tech risk projects, CISA and cloud certs

like

Anyone have any experience working in/with Deloitte USDC? Is it client facing at all? Interviewing for a cyber position that I thought was GPS but appears to be in USDC.

like

Recently graduated college and now work at a F500 company as an appsec analyst. I don’t have a strong background in tech so I’m really struggling and don’t love the job because of it. I have the opportunity to get into cyber consulting in Big4 and was wondering if that would be a smart move? I like the idea of being exposed to different areas of cyber and I would get a 15% increase in pay.

like

Upcoming interview coming with Deloitte Government & Public Services (GPS) Solution Analyst – Cyber role! Can anyone please provide me an idea of what a Solution Analyst - Cyber does at Deloitte? What is the career path looks like for this role? Any tips for the interview? Its an early career role btw.
Thank you all.

like

How & where to get CPE to meet CISM yearly CPE requirements?

like

Hi all, currently have 2 YOE in Info Assurance at a company that deals with PII and PHI daily. For the future I am torn between trying to get into a more forensics focused role or continuing this track into a security architect role. Either way I would like to move into a bigger company (possibly FAANG or somewhere like AbbVie). Any advice on which path I should take (forensics or architecture) and what my next seps should be (certs etc.). Any and all input is welcome. Thanks in advance

like

Which is a better company to work for Palo Alto networks or Crowdstrike?

like

I was in that group for 10+ years. Left in 2014. I can try to answer your question if you want

like

Coalfire - Any thoughts or feedback on the company? Contemplating taking a FedRAMP Assessor position there and want to weigh my options out. I don’t know too much about the company but seems solid.

like

Insights about capco work life balance?

like

Any Pentesters here willing to give advice on someone looking to get into Penetration Testing? Or provide some tips that best helped them in the field based on their experience. Also willing to connect too!

like

Any insight on salary offers in Cyber Risk for Deloitte in D.C.?

like

Anybody use the Boson practice exams to prep for CISSP? Is it worth it?

like

I would like to transition out of the government contracting world. I currently do Risk Management Framework work and compliance work in cybersecurity. Can anyone provide tips and referral please?

like

For folks in cloud security can you post your comp, YOE and city tier? Trying to get a good idea of what to aim for.

like

For those who have passed the CIPM exam, what is it like (and how does it compare to the CIPP/US exam)?