October 30, 2008

Is PCI Compliance Enough? No.

Bad things still happen to PCI compliant companies – constant vigilance is the key to maintaining security standards

According to the recent article, “Why do Bad Things Happen to PCI-Compliant Companies?” you can’t assume your data is perfectly safe and secure just because you have PCI compliance.

This hard lesson was recently learned by retail clothing company Forever 21, as they suffered a breach involving 98,000 credit cards at the time they were PCI compliant.

So what can you do to better ensure the safety of your data? According to industry experts, IT professions and employees need to maintain constant vigilance of their compliance status. A company can be PCI compliant today but fall out of compliance the next week.

That means to consistently test and re-test applications to know which ones are most vulnerable to hacker attacks.

by
Mandeep Khera, CMO
Mandeep@cenzic.com


	Why Do Bad Things Happen to PCI-Compliant Companies?
	PCI DSS compliance does not equal security
	http://linuxinsider.com/story/security/64926.html

by Erin Swanson

↑top

link to this

Post a Comment

Title:

Summary:

Comment:

Links:

Your info:

Name:		Required; will be displayed with comment.
E-mail:		Required (in case we need to contact you); will NOT be displayed with comment.
Web:		Optional; will use to hyperlink your name in the comment.
Twitter:		Optional; allows visitors to follow you on Twitter.
Save this in my browser

Verification:

Type the characters you see in the picture above.

Letters are case sensitive.

Notice: Your thoughtful opinions are valued and encouraged, but all comments are moderated so there will be a delay between the time you post your comment and when it appears in this site. Please don't be offended if your comment is edited for clarity or to avoid questionable matters. Offensive or off-topic comments will be deleted.