PCI DSS Compliance and Security: Harmony or Discord?
The Payment Card Industry Data Security Standard (PCI DSS) provides data protection requirements for organizations that process card payments. These requirements evolve over time and have even become adopted by some US states, including Minnesota, Nevada, and Washington. While organizations that fully comply with PCI DSS are considered secure credit-card processors, compliance and security are not one in the same. An organization can be compliant and still experience a security breach – look no further than Heartland Payment Systems and RBS WorldPay. Both had achieved PCI DSS compliance at one point, only to suffer massive data breaches that cost tens of millions of dollars. So what good is compliance? What is the difference between compliance and security? And how can organizations effectively move beyond PCI DSS compliance to ensure the security of all their critical information? In this roundtable discussion, with Michael Rasmussen of Corporate Integrity, EC Suite’s Director of Security, William Bell and Lumension’s Director of Solution Marketing, Chris Merritt, we will examine: • The evolving threat and compliance landscape • How to use compliance as a catalyst for developing and implementing an effective security program • The six critical elements to achieving effective and economical PCI DSS compliance • How one organization is going beyond PCI DSS compliance and further enhancing its security of information
- Presenting
- Michael Rasmussen, Corporate Integrity; William Bell, EC Suite; Chris Merritt, Lumension
- Channel
- Endpoint Management and Security
- Date
- Sep 02 2010
- Duration
- 3649
- Tags
- PCI, DSS, compliance, security, protect, data, PII
Flash is required to view this webcast/channel:
You need version 9.0.115.0 or later of the free Flash player from Adobe
to use this content.
To download and install the free player from Adobe's web site
click here.
