• Save
Key Recommendations from the Verizon 2014 PCI Compliance Report
Upcoming SlideShare
Loading in...5
×
 

Key Recommendations from the Verizon 2014 PCI Compliance Report

on

  • 2,648 views

The recently released Verizon 2014 PCI Compliance Report found that payment card breaches often result from a failure to implement compliance and security measures. Based on findings from hundreds of ...

The recently released Verizon 2014 PCI Compliance Report found that payment card breaches often result from a failure to implement compliance and security measures. Based on findings from hundreds of PCI assessments, Verizon’s team of PCI quality security assessors developed a list of recommendations to help organizations achieve and maintain PCI compliance by making it a part of everyday business operations. You may download the full report here: http://vz.to/PCIreport2014

Statistics

Views

Total Views
2,648
Views on SlideShare
2,168
Embed Views
480

Actions

Likes
2
Downloads
0
Comments
0

5 Embeds 480

http://www.verizonenterprise.com 375
https://twitter.com 77
http://www.linkedin.com 21
http://stage.vzbtest.info 4
https://www.linkedin.com 3

Accessibility

Categories

Upload Details

Uploaded via as Microsoft PowerPoint

Usage Rights

© All Rights Reserved

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Processing…
Post Comment
Edit your comment

Key Recommendations from the Verizon 2014 PCI Compliance Report Key Recommendations from the Verizon 2014 PCI Compliance Report Presentation Transcript

  • MAINTAINING PCI COMPLIANCE Key recommendations from the Verizon 2014 PCI Compliance Report Confidential and proprietary materials for authorized Verizon personnel and outside agencies only. Use, disclosure or distribution of this material is not permitted to any unauthorized persons or third parties except by written agreement.
  • 88.9% In 2013, most companies failed their Payment Card Industry Data Security Standard (PCI DSS) baseline assessment 3
  • How can you maintain PCI compliance? 4
  • Five steps 1 Allocate resources 2 Actively maintain compliance 3 Put it in a wider context 4 Leverage it as an opportunity 5 Focus on scoping 5
  • Five steps 1 2 3 4 Allocate resources PCI compliance takes time, money, and executive sponsorship. You can help manage this extra workload by outsourcing security activities or business processes. 5 6
  • Five steps 1 2 3 4 5 Actively maintain compliance There are thousands of tasks that an organization needs to do throughout the year to stay compliant. Compliance needs to be embedded in “business as usual”. 7
  • Five steps 1 2 3 4 5 Put it in a wider context Putting your PCI compliance strategy within your larger governance, risk and compliance strategy can help minimize control overlap, strengthen security and reduce your workload. 8
  • Five steps 1 2 3 4 5 Leverage it as an opportunity Many organizations measure the TCO of compliance; but not the ROI. Look for ways you can use compliance activities to drive process improvements, consolidate infrastructure, and generate additional equity. 9
  • Five steps 1 2 3 4 5 Focus on scoping Reducing the “scope” of your environment is the only way to keep compliance programs practical. First, store less cardholder data on fewer systems. Then focus on isolating systems to take them out of scope. 10
  • Business efficiency Rationalize processes, enhance internal communication and governance IT efficiency Consolidate and update infrastructure for better performance, business continuity and control of costs Greater innovation Drive adoption of cloud, end-to-end encryption, and other technologies (and finally free yourself from Windows XP) 11
  • Want to learn more? Download the full report http://vz.to/PCIreport2014 PCI Report picture 12