PCI DSS Compliance and Security: Harmony or Discord?

Presented by

Michael Rasmussen, Corporate Integrity; William Bell, EC Suite; Chris Merritt, Lumension

About this talk

The Payment Card Industry Data Security Standard (PCI DSS) provides data protection requirements for organizations that process card payments. These requirements evolve over time and have even become adopted by some US states, including Minnesota, Nevada, and Washington. While organizations that fully comply with PCI DSS are considered secure credit-card processors, compliance and security are not one in the same. An organization can be compliant and still experience a security breach – look no further than Heartland Payment Systems and RBS WorldPay. Both had achieved PCI DSS compliance at one point, only to suffer massive data breaches that cost tens of millions of dollars. So what good is compliance? What is the difference between compliance and security? And how can organizations effectively move beyond PCI DSS compliance to ensure the security of all their critical information? In this roundtable discussion, with Michael Rasmussen of Corporate Integrity, EC Suite’s Director of Security, William Bell and Lumension’s Director of Solution Marketing, Chris Merritt, we will examine: • The evolving threat and compliance landscape • How to use compliance as a catalyst for developing and implementing an effective security program • The six critical elements to achieving effective and economical PCI DSS compliance • How one organization is going beyond PCI DSS compliance and further enhancing its security of information

Related topics:

More from this channel

Upcoming talks (0)
On-demand talks (50)
Subscribers (8004)
This channel provides live and on-demand webcasts on a range of Endpoint Management and Security topics, including: identifying the latest trends and best practices for minimizing insider risks, reducing your threat exposure, managing Web 2.0 threats, reducing your cost of compliance and taking control of your endpoints, from both an operational and security perspective.