None of the companies in a soon-to-be released Verizon report that experienced a data breach “were fully PCI [Payment Card Industry Data Security Standard] compliant at the time of breach,” according to Roldophe Simonetti, managing director of compliance consulting at Verizon Enterprise Solutions, who participated in a company-hosted Jan. 12 evening panel discussion on securing mobile and online retail payments.
In a preview of Verizon’s “2015 PCI Compliance Report,” Simonetti told SCMagazine.com in a phone interview that only “28.6 percent of companies were PCI compliant after one year,” indicating that many organizations “are seeing compliance as a standalone exercise.”
PCI 3.0 was released in November 2013 and all organizations were required to start using it Jan. 1 of this year.
Cyber Security World Conference 2015 New York City, July 10, brings together information security experts and senior executives focused on protecting today’s enterprises from internal and external cyber attacks; the list of firms just keeps growing: Adobe, ADP, Citigroup, E*Trade, Fidelity, Home Depot, HSBC, JPMorgan Chase, Nasdaq, Neiman Marcus, Target and Wal-mart. Our experts will discuss strategies to strengthen corporate defenses, the cybersecurity framework, risks brought by mobile computing, lessons for the boardroom and protecting national infrastructure against foreign attacks. More information at http://cybersecurityworldconference.com.