Mastering Compliance: Own Your Data, Own Your Success - Episode 196 (00:25:52)
On this episode of "Compliance Unfiltered," The CU Guys dive into the intricacies of compliance management programs. They explore various implementation approaches, from manual spreadsheets to sophisticated systems, and discuss the importance of organizations owning their data. Adam shares insights on the potential pitfalls of relying solely on assessor systems and emphasizes the efficiencies gained by leveraging internal systems. Check out this episode to discover how to streamline your compliance processes and make your organization's compliance journey more efficient and effective.
The Holiday Season is Putting Hotels at Risk - Episode 195 (00:22:46)
The CU Guys dive into the heightened risks hotels face during the holiday season. They discuss the importance of maintaining cybersecurity vigilance amidst increased traffic and seasonal hiring. The conversation covers best practices for background checks, training, and physical security, emphasizing the need for diligence to prevent data breaches. Tune in to learn how to protect your organization during the busiest time of the year.Episode Transcript:Now, you know, one thing I wanted to talk about is our listeners, and we'd love to hear from them. And what I mean by that is we'd love to know, if you're listening to this, we'd love to know your feedback and input on topics that you'd like to hear about or folks that you'd think we'd enjoy having on the show, and we'd love it if you would send those inquiries to complianceunfiltered@total compliancetracking.com. Yeah, I mean, honestly, even if they've got, hey, I heard this like really, really, really funky story or whatever, you know, and anything, anything, anything that folks want to hear about, they'd be, it'd be great to kind of hear what their interests are and, and we'll be happy to, we'll be happy to oblige. No doubt. Now, speaking of the holiday season, Adam, we're going to jump right in because the holiday season is putting hotels at risk.Tell us more, Adam. Why does this time of year heighten the risk for hotels? I mean, we're right in the, you know, in the thick of the holiday season, you know, between Thanksgiving and Christmas and New Year and all that fun stuff. So, you know, we've got, it's an interesting time when, you know, there's a lot of hotels that are, you know, that have a lot more traffic than they would normally. And, you know, staff are, you know, running all over the place trying to make sure they're taking care of guest needs, you know, etc.But, you know, keep in mind that that means it's also peak season for, you know, cyber attackers and bad actors to be able to take advantage, you know, of it. I mean, they, you know, they know that now is the best time to, you know, gain access to the sensitive data because everybody's, you know, run around, distracted and all that fun stuff. So, you know, it's not if you're going to suffer an attack. It's really about more about when and how. So, you know, you don't want, as an operator of one of these types of establishments, you definitely don't want to fall victim to it and find out in the wrong way that you were subject to some type of an attack. So, it's better to be safe than sorry. That's a good shout. Now, as you're dealing with kind of an influx of new folks in an organization, right? So like seasonal hiring, how does seasonal hiring impact background checks? Well, I mean, the biggest thing is, is that, um, is for the organizations don't, don't cut corners, you know, if you've got to bring in some additional staff or, you know, for seasonal hiring, et cetera, that there's, there's certainly the possibility. Um, although I, um, you know, we'll call you, it'd be pretty ballsy to pretty ballsy to go give this one a whirl, but, you know, if you're not going to have any idea, if you don't run your background checks, so, um, could be bad actors come, you know, that are, that are coming through, uh, you know, with the seasonal hiring push, um, you know, it, uh, it may very well be, it's someone that just has a, uh, a pass that doesn't line up with the rules, regulation guidelines for your organization, but you're not going to have any idea if you're not running the, running the background checks.Um, even though you have to fill up staffing needs quickly, you know, et cetera, you know, it's not, you don't want to do it at the cost of possibly running into an issue, you know, make sure that you're maintaining your due diligence, forming thorough background checks on everybody that, you know, is going to, uh, is going to run into the hiring line.
Central Logging Sanity Checks - Episode 194 (00:27:51)
The CU Guys dive into the critical topic of central logging sanity checks. They explore the common pitfalls organizations face when they set up central logging systems and then leave them on autopilot. Adam emphasizes the importance of regular sanity checks to ensure that logging systems are functioning as expected and highlights the risks of assuming everything is working perfectly. The discussion also covers the need for compliance professionals to validate assumptions, spot-check logs, and ensure that alerts are being properly handled. Tune in to learn how to maintain a robust compliance program that truly supports organizational security.Episode Transcript:Today, we're going to talk about, you know, another central theme here, not just a central member to a band, but central logging, specifically central logging sanity checks. So a lot of companies that have mature compliance programs set up their central logging and then kind of put it on autopilot. What are the downsides there, Adam? Well, I mean, I've been for a long time, a huge fan of trust, but verify. And, you know, when the, when the companies go in and, and kind of set up their, their central logging, you know, they, they really do just kind of, okay, we're done, you know, we're done, we've, we've established all the things, you know, we've done all the checks and we've set up the system and we have all the right processes and, you know, we, the, the reviews are happening and alerts are flying and, you know, so then they just, you know, move into this mode where they just literally let her roll and, you know, and then don't tend to go back to it, you know, for, you know, for a recheck or a sanity check or, or whatnot. They just go into the guiding assumption that everything's good because it's up and it's, nothing's gone boom and, you know, blah, blah, blah.So, you know, the, the, the most important part for, for these organizations is that they, they go back in and, you know, double check, you know, is, is what I think happening, is it actually happening? You know, but, you know, they got, they got to go back in and, and just do a sanity check on, you know, on things. So, you know, that's kind of the, the, the driving force here with the, with this particular topic. Sure. Now with that in mind, what are some of the concerns that compliance professionals should be focusing on?Well, I mean, first and foremost, you know, is everything that I think is logging actually logging, you know, is it are things that I set up to, to, you know, to log, are they still logging? Did something go off the rails? Um, it's really, really easy, uh, depending on the system and the, and the structure that's set up, what checks and things that they put in place, it's really easy to, I don't know, I'm just gonna make a number up. So let's just pretend, you know, out of the gate, there were a hundred different things that were, you know, that were sending stuff to central logging. Well, you know, fast forward a couple of months or in a lot of cases, a couple of years, um, you know, the, uh, are the things that we, uh, are those hundred things still, still doing what they're doing?I mean, you know, there's, there's all sorts of possibilities for something going wrong. You know, you've got, you know, updates or patches that, you know, may go ahead and interfere with the, with the capability for those devices to push their logs. I mean, it could be something as simple as, you know, somebody was messing with a firewall rule to try to do some troubleshooting and, you know, lock down some ports so they could get some things isolated, et cetera. And then forgot to put every, put Humpty Dumpty back together, you know, back together again and blah. And in the process, you know, block the, you know, the outbound logging, you know, capability from, you know, fill in the blank device, that type of thing.
Episode 193 - Happy Thanksgiving From Compliance Unfiltered (00:25:16)
In this heartfelt episode of "Compliance Unfiltered," as the TCT Guys reflect on their journey with TCT, sharing personal stories of growth, challenges, and gratitude. Adam and Todd delve into the evolution of TCT, the invaluable input from clients, and the strong relationships built over the years. Join them as they discuss the importance of client feedback in shaping the organization's offerings and celebrate the dedicated team that makes it all possible. Tune in for an inspiring conversation about making compliance management a little less daunting and a lot more rewarding.
In this episode of "Compliance Unfiltered," the CU Guys dive into the complexities of managing multiple compliance certifications and custom request lists. They explore the challenges faced by organizations of all sizes, from small businesses to international giants, in navigating the ever-evolving compliance landscape. With insights into the common pitfalls and practical advice on streamlining processes, this episode is a must-listen for anyone involved in compliance management. Tune in to discover how to make your compliance journey less painful and more efficient.
In this episode of Compliance Unfiltered, The CU Guys dive into the challenges and strategies for retailers as they gear up for the holiday season. With cyber threats on the rise, particularly AI-driven attacks, the duo discusses the importance of proactive measures, employee training, and maintaining PCI compliance. They also explore the impact of seasonal hiring and the need for vigilance in protecting sensitive data. Tune in to learn how retailers can navigate the bustling holiday period while safeguarding their operations.
Episode 190 - Vendor B.S. in the Marketplace (00:28:30)
On this week's episode of Compliance Unfiltered, The CU guys get candid and take a dive into the world of vendor relationships and the challenges faced in the marketplace. Adam shares his personal journey from working with "boneheads" to founding his own company, emphasizing the importance of genuine customer service and the pitfalls of AI hype. With a mix of humor and insight, they explore the disconnect between vendors and clients, offering a refreshing perspective on how businesses can truly serve their customers. Tune in for an unfiltered discussion that promises to be both enlightening and entertaining!
Episode 189 - Taming HIPAA Compliance For Hospital Systems (00:30:59)
On this Episode of Compliance Unfiltered, the CU Guys delve into the complexities of HIPAA compliance for hospital systems. Adam discusses the dual nature of hospital compliance, highlighting both the advantages of early adoption and the challenges posed by the complexity of hospital systems. The conversation covers the intricacies of managing multiple compliance standards, the inefficiencies and costs associated with manual compliance processes, and the importance of maintaining control over compliance data. Adam emphasizes the need for hospital systems to regularly update their compliance controls to align with current technologies and reduce risks. All this, and more, on this week's Compliance Unfiltered!
Episode 188 - PCI Europe Community Meeting Recap (00:21:30)
On this episode of Compliance Unfiltered, The CU Guys dive into their recent experiences at the PCI European Community Meeting in Amsterdam. From the city's impressive public transportation to the vibrant conference atmosphere, they share insights and anecdotes that highlight the unique charm of Amsterdam. Discover the excitement around TCT's latest technology, EasyCert, and how it resonated with attendees. Whether it's the eclectic mix of conversations or the delightful culinary adventures, this episode captures the essence of a memorable trip. Tune in for a blend of professional insights and personal stories that make for an engaging listen.
Episode 187 - Inventory Insights: Elevating Your Compliance Game (00:20:39)
On this episode of Compliance Unfiltered, the CU Guys dive into the critical role of inventory management within large-scale engagements. They explore why inventory is central to security and compliance programs, share insights on integrating inventory into daily operations, and discuss common pitfalls organizations face. With Adam's practical tips and real-world examples, this episode is a must-listen for anyone looking to enhance their compliance strategies. Special thanks to listener Heidi for suggesting this topic! Tune in and discover how to make inventory a core element of your compliance DNA, on this week;'s Compliance Unfiltered!
Episode 186 - Introducing EZ Cert! (00:16:52)
On this week's episode of Compliance Unfiltered, The CU Guys discuss the launch of EZ Cert, a new feature in the TCT Portal, designed to simplify compliance tasks for end users. Adam explains how EZ Cert streamlines the interface, making it more accessible and efficient for users who only occasionally interact with the system. The conversation highlights the business value of EZ Cert, emphasizing its ability to reduce bottlenecks and improve the efficiency of compliance engagements. The episode also touches on the benefits of EZ Cert for assessors. All this and more on this week's Compliance Unfiltered.
Episode 185 - We're Back From Ft. Worth! PCI North American Community Meeting Wrap Up (00:19:04)
On this week's episode of Compliance Unfiltered, the CU Guys dive into their enriching experience at the PCI North American Community Meeting in Fort Worth, Texas. Discover how the conference exceeded expectations with improved organization and engaging interactions, and learn about the exciting new features like EasyCert that were unveiled. From exploring the immaculate public transportation to savoring local culinary delights, they share personal anecdotes and insights. Whether you're a compliance professional or just curious, this episode offers a unique glimpse into the vibrant world of PCI compliance. All on this week's Compliance Unfiltered.
On this episode, The CU Crew delve into the innovative approach of environment splitting to streamline compliance processes. Discover how this strategy not only enhances efficiency but also ensures adherence to regulatory standards. Join us as we explore real-world applications and expert insights that reveal the transformative power of environment splitting in today's compliance landscape. All this and more on this week's Compliance Unfiltered!
Episode 183 - The Perils of Report Writing for Assessors and How to Overcome Them (00:20:16)
On this episode of Compliance Unfiltered, the CU Guys dive into the intricate world of report writing for compliance assessors. Discover why this seemingly straightforward task is fraught with challenges, from the complexities of manual processes to the orchestration required for quality assurance. Learn how the TCT portal is revolutionizing the way assessors handle report writing, saving valuable time and enhancing efficiency. Whether you're a seasoned assessor or new to the field, this episode offers insights into overcoming the hurdles of report writing and maximizing your ROI. Tune in to explore how technology is making compliance management more manageable and effective, all on this week's Compliance Unfiltered!
Episode 182 - PCI North American Community Meeting - Will You Be There? (00:16:01)
On this week's insightful episode of Compliance Unfiltered, the CU guys delve into the 2025 PCI North American Community Meeting, happening from September 16th to 18th in Fort Worth, Texas. Adam shares why you should join TCT in attending, for the latest updates in compliance management, connect with industry experts, and explore innovative solutions that make compliance life easier. Whether you're a QSA, a compliance professional, or part of an organization serving compliant customers, this event offers something for everyone. Tune in to learn how to maximize your experience at this must-attend event on this week's Compliance Unfiltered!
Episode 181 - Why a Strong Stance on Security and Compliance is a Business Advantage for Manufacturers (00:29:48)
On this episode of Compliance Unfiltered, The CU guys delve into the critical role of cybersecurity and compliance in the manufacturing sector. As technology advances, the industry faces increasing threats and regulatory challenges. Join us as we explore how manufacturers can safeguard their operations, protect sensitive data, and ensure compliance with ever-evolving standards. Discover expert insights and practical strategies to fortify your manufacturing processes against cyber threats. Learn why cybersecurity is not just an IT issue but a vital component of modern manufacturing success, on this week's Compliance Unfiltered.
Episode 179 - Interview with Tom Fox of the Compliance Podcast Network REPOST*** (00:21:34)
*** There was some audio issues with the initial post of this interview, that have now have been corrected. (Thanks Paul!)On this episode of Compliance Unfiltered, the CU Guys are pleased to be joined by Tom Fox from the Compliance Podcast Network to delve into the intricate challenges of implementing compliance programs. They explore the common misconceptions at the executive level, the critical role of internal controls, and the necessity of integrating compliance into business operations. Tom shares his journey from law to becoming a compliance evangelist, emphasizing the importance of ethical business practices in combating global issues like bribery and corruption. All these insights and more on this week's Compliance Unfiltered!Connect with Tom and explore all the great shows on the Compliance Podcast Network, here: www.compliancepodcastnetwork.net
Episode 180 - No AI Policy? Your Company is Flirting with Disaster (00:22:20)
On this episode of Compliance Unfiltered, the CU guys delve into the critical need for AI policies within organizations. As AI technology rapidly evolves, many companies find themselves unprepared, risking exposure of sensitive data through platforms like ChatGPT. Adam emphasizes the urgency of implementing AI policies to protect against potential data breaches and compliance issues. Discover why having a robust AI policy is not just a best practice but a necessity in today's digital landscape. All this, and more, on this episode of Compliance Unfiltered.
On this episode of Compliance Unfiltered, it is that time again! You guessed it, time for all of the spicy security stories that were, and the critical security reminders for, the third quarter of 2025. Curious about learning some tips on how to impress your assessor? Wondering how you can maximize your knowledge of space, to minimize the struggles associated with your engagements? Then you're not going to want to miss this episode of Compliance Unfiltered!
Episode 177 - 7 Critical Actions to Ensure I.T. and Cybersecurity Success (00:19:21)
On this episode of Compliance Unfiltered, Adam and Todd have a heart to heart on what makes a successful operation tick, from a cybersecurity and I.T. perspective. Curious about the specialized expertise required for success? Wondering where Trust but Verify fits in? Worried about your upcoming assessment? Well, you're in luck! Answers on all these topics and more, on this week's Compliance Unfiltered!
Episode 176 - Compliance Considerations When Acquiring Hotel Properties (00:25:43)
On this episode of Compliance Unfiltered, the CU guys have a chat about the wonderful world of acquisitions, specifically in the hotel space. Adam gives a solid background on the Hotel acquisition arena and shares some key details with the listeners about where to get started from a compliance perspective. Wondering what tools folks are using in the space? Looking for ways to avoid the common pitfalls of the process? Just trying to get your footing on how to be best prepared? Well, you're in luck! All these answers and more on this week's Compliance Unfiltered.
Episode 175 - Investing in Your Compliance Program (The Year 2+ Benefits) (00:30:11)
On this episode of Compliance Unfiltered, Todd and Adam walk through the challenges faced by organizations looking to take control of their compliance management. Adam shares a bit about his journey and provides some profound advice to listeners looking to take their compliance program to the next level. All these topics, and more, on this week's Compliance Unfiltered.
Episode 174 - Data Breach in the Compliance Service Provider Space (00:28:43)
On this episode of Compliance Unfiltered, the CU guys address the proverbial elephant in the room - Why service providers to compliant organizations need to take their security seriously. Wondering why there is variability for service providers in the security arena? Curious if "trust but verify" is really that important? Trying to understand how you can get the most assurance from your vendor relationships? Well, you're in luck! All these answers and more on this week's Compliance Unfiltered.
Episode 173 - Solving Compliance Needs for the Hospitality Industry (00:40:43)
On this episode of Compliance Unfiltered, the CU guys are serving up hot, fresh takes on compliance for the Hospitality space can be a five-star experience with the plan in place. Wondering why compliance can be so tricky in the hospitality space? Curious how adopting technology can ease your pain? Just hoping to discover a better way? Well, you're in luck! All this answers and more on this week's Compliance Unfiltered!
Episode 172 - The Struggle that is Getting Service Provider Responsibility Matrices (00:24:22)
On this episode of Compliance Unfiltered, The CU Guys take on a topic suggested to us by one of our listeners! The Struggle is real when attempting to get service provider responsibility matrices, is a challenge many in the assessment world face. Have a listen and see if you relate! As a reminder, if YOU have a topic you think we should cover, please let us know. Send an email to complianceunfiltered@totalcompliancetracking.com and we will add your topic to the list for a future episode.
Side 1 av 4
Compliance Unfiltered With Adam Goslin - Gratis RSS Feed for Norsk Podcast | OpenPodMe | OpenPodMe - Åpen RSS for Norske Podcaster
