5 ways PCI is will be more security-conscious in 2015
The newest Payment Card Industry Data Security Standard was released this month, PCI DSS 3.0, and it is all about security instead of compliance.
That’s according to a new report by Torsten George, vice president at Sunnyvale, CA-based security risk management vendor Agiliance, Inc.
The following are what George identifies as the top five changes in the standard:
The new standard is 24-7
The standard goes into effect on January 1. But while some of the requirements aren’t mandated until July, companies shouldn’t wait until then – or until their next audit – to start getting their house in order.
It makes no sense to have security systems in place and operational only while a company is being audited. The crooks, after all, aren’t going to be polite and wait.