The formation of the PCI Security Vendor Alliance is a positive step towards educating firms about the best practices of the Payment Card Industry data security standard (PCI DSS).
However, with the deadline for compliance looming (30 June) forfinancial institutions, their merchants and service providers, I urgethem to look at their implementation and management.
In order to comply with the PCI standard, firms need to address everyelement of the standard. To ensure easier audits, it is key thatorganisations have the software in place to record all integrity checksand detect violations so that they can provide the proof required toverify compliance with intenal policies and external regulations.
As cash becomes obsolete, the effective compliance and management of thestringent standards set by the PCI Security Standards Council is vitalto improving the security of payment transactions.
Paul Gostick, EMEA marketing manager, Tripwire.