The Future of PCI BankInfoSecurity (09/12/14) Kitten, Tracy Incoming Payment Card Industry (PCI) Security Standards Council General Manager Stephen Orfei emphasized greater global compliance and a concentration on merchant security as essential elements for combating future and sometimes unanticipated threats at the recent North American PCI Community Meeting to discuss the future of the PCI payment security standard. We really need to have a risk-based dialogue versus a compliance-based approach, he says. My message to the marketplace right now is we are here to collaborate and truly be a merchant organization. Orfei stresses merchants and the payments industrys necessary commitment to long-range security planning. He believes future hackers will target e-commerce and mobile payments, which is why the industry must be forward-looking. Meanwhile, PCI Council CTO Troy Leach notes that an organizations perception of security challenges its ongoing compliance with the PCI Data Security Standard. He cites the importance of organizations regularly monitoring, measuring, and adjusting their securitys effectiveness, which inevitably declines over time. Qualified security assessor Jacob Ansari warns of the persistence of basic security flaws such as weak passwords and lack of security patches, which stems from many organizations failure to appreciate the need for continuous assessment and quantification.
Posted on: Wed, 17 Sep 2014 20:10:04 +0000
Trending Topics
Recently Viewed Topics
© 2015