Getting PCI Compliance Right: Going Beyond the Audit Checklist
If over a third of the PCI DSS requirements target IT configuration controls that can be monitored, and companies regularly pass audits, why do data breaches still occur? Just passing the audit isn’t enough. Too many companies continue to treat PCI DSS compliance as a project focused on passing the audit—a single-point-in-time event that relies on checklists to get them into that compliant state. In spite of passing PCI audits, breaches continue to occur with great regularity. Clearly this checklist approach to securing cardholder data is not working. So how can you ensure that when customers do business with you, their credit card data is secure? In this presentation we will discuss state of cardholder data breaches today, how mechanically following the PCI checklist and passing your audit can lull you into a false sense of security, and solutions that can help you truly—and continuously—secure customer credit card data.
- Presenting
- Gavin Millard, Technical Director - International, Tripwire
- Channel
- Tripwire
- Date
- Jan 27 2010
- Duration
- 2102
- Tags
- PCI, IT Configuration, data breaches, PCI DSS
Flash is required to view this webcast/channel:
You need version 9.0.115.0 or later of the free Flash player from Adobe
to use this content.
To download and install the free player from Adobe's web site
click here.
