Many websites still need PCI help
PCI compliance is not an optional set of security assurances - it is required for companies that deal with payment information. Read more [...]
PCI Compliance
Security practices still developing for mobile
The PCI Security Standards Council is in the process of developing a set of security guidelines for new e-commerce venues. Read more [...]
PCI council recommends secure solutions
Mobile commerce has become a force in retail to the extent that the PCI Security Standards Council has taken steps to ensure the safety of consumers shopping through their smartphones and tablets. Read more [...]
Small retailers lagging on PCI compliance
Reply
For small companies, the need for a robust IT risk management program is amplified given their high reliance on business data, according to a recent report from the Hartford Business Journal.Still, many of these organizations continue to struggle with complying with the PCI Data Security Standard, the industry's requirements for protecting payment card data. The news provider reported that such incidents don't stem from negligence. More often, an expert said, non-compliance is the result Read more [...]
Brand reputation takes precedence with IT risk management
When investing in data security measures to support an IT risk management program, many retailers are more concerned with reputation of their brand than with facing fines for noncompliance, according to a new report from CloudSource and TrustWave.Of the companies polled, 70 percent said the responsibility to "protect the brand" is the top priority for implementing strict data security and data loss prevention measures. Twenty-six percent said avoiding fines for failure to adhere to PCI Read more [...]
Brand reputation takes precedence with IT risk management
When investing in data security measures to support an IT risk management program, many retailers are more concerned with reputation of their brand than with facing fines for noncompliance, according to a new report from CloudSource and TrustWave.Of the companies polled, 70 percent said the responsibility to "protect the brand" is the top priority for implementing strict data security and data loss prevention measures. Twenty-six percent said avoiding fines for failure to adhere to PCI Read more [...]
PCI compliance can be used to rate data security of apps
While the PCI Data Security Standard was originally meant to protect the confidential information of consumers, one expert recently said the industry regulation can also be used to rate the data security capabilities of cloud computing services.Speaking recently with Infosecurity, Sean Bruton, senior director of client services and security with managed hosting services provider NeoSpire, said PCI compliance should also be used as a data security template. Before choosing a certain vendor, a company Read more [...]
PCI compliance can be used to rate data security of apps
While the PCI Data Security Standard was originally meant to protect the confidential information of consumers, one expert recently said the industry regulation can also be used to rate the data security capabilities of cloud computing services.Speaking recently with Infosecurity, Sean Bruton, senior director of client services and security with managed hosting services provider NeoSpire, said PCI compliance should also be used as a data security template. Before choosing a certain vendor, a company Read more [...]
Company shares PCI compliance experiences
Much confusion surrounds what must be done to achieve PCI compliance in a virtual environment. Adapt, a managed IT services provider, is currently embarking on the task and recently shared its experience with DatacenterDynamics.According to the firm, the process of achieving PCI compliance is becoming increasingly challenging as more companies that handle payment card data are embracing virtualization. In such environments, the customer and vendor should work together, Adapt argued."[I]t is Read more [...]
Company shares PCI compliance experiences
Much confusion surrounds what must be done to achieve PCI compliance in a virtual environment. Adapt, a managed IT services provider, is currently embarking on the task and recently shared its experience with DatacenterDynamics.According to the firm, the process of achieving PCI compliance is becoming increasingly challenging as more companies that handle payment card data are embracing virtualization. In such environments, the customer and vendor should work together, Adapt argued."[I]t is Read more [...]