About Us

Read More >>

Home > Regulatory Compliance

Briefs

Strategy: PCI

 (1 ratings) | 0Comments  

The PCI Data Security Standard is costly, complex and rigged against the retailers, merchants and processors that must comply with it.

Ready to Outsmart PCI? New Techs Help IT Comply

The PCI Data Security Standard is costly, complex and rigged against the retailers, merchants and processors that must comply with it. But those very attributes may be the most potent catalyst to bring about meaningful protection of credit card data—not because of the PCI requirements themselves, but because PCI will drive merchants toward end-to-end encryption and tokenization.

Table of Contents

    3 Author’s Bio
    4 PCI Refresher
    5 PCI Positives and Negatives
    5 Figure 1: Requirements Garnering Resources
    7 Figure 2: Added Resources for Compliance Efforts
    8 Should QSAs Be Liable?
    9 Reducing the Scope
    9 Figure 3: Scope of Encryption Use
    12 Figure 4: Security Oversight
    14 Caution Signs
    14 Choosing a Vendor
    15 Figure 5: Current and Planned Encryption Use
    16 More Carrots, Fewer Sticks

About the Author

Research: E-Mail Archiving

Andrew Conry-Murray is business editor at InformationWeek. He writes about information management and compliance issues. Andrew has covered information technology topics including security and network and information management for nine years, with Network Computing and Network Magazine before joining InformationWeek. He is a co-author of The Symantec Guide to Home Internet Security.

Be the first one to comment.


Register Now Close

Making the right technology choices is a challenge for IT pros everywhere. Whether it’s sorting through vendor claims, justifying new projects or implementing new systems, there's no substitute for the help and guidance of experienced peers. InformationWeek Reports connects you with thousands of your peers. They’ll help you pick the right technologies, ask the right questions and avoid pitfalls. Registration includes:

  • Thousands of research reports that tell you why and how your peers are adopting emerging technologies. Key annual surveys track how technology use changes from year to year
  • Strategy sessions and best practice reports that help you chart a path for successful technology adoption
  • Salary surveys and professional development guides that help you find and improve your place in the market
  • All written by your most trusted source for information - your peers

Registration Already Registered? Login

Related Reports

Strategy: Compliance

Strategy: Compliance

 

When it comes to regulatory compliance, auditors consider more than how you protect your company’s covered assets from external attackers. You’ll get burned if you underestimate or, worse, ignore the security threats posed by employees and other insiders. In this Dark Reading Tech Center report, we show you how to create and implement a security program that will defend against malicious and inadvertent internal incidents and satisfy government and industry mandates.

 

Continue Reading >>

Enabling People and Organizations to Harness the Transformative Power of Technology

svn