Saturday, January 30, 2010

Why PCI compliance goes beyond - and is more important than - the PCI audit

When it comes to payment processing security, many organisations focus on passing the PCI compliance audit. Once that certificate is signed, their focus on payment processing security falls to the wayside.

This is a dangerous mindset, said Walt Conway, a Qualified Security Assessor and payment processing technology expert.

"CIOs and merchants who focus only on their annual PCI validation may actually find that they unintentionally make themselves more vulnerable to a costly data breach," Conway wrote in an article on "They also make their PCI revalidation the following year more difficult, and possibly more expensive, than it has to be." pivotalpayments

No comments:

Post a Comment