The view from the top of IT with TechWorld Editor Rohan Pearce
The Payment Card Industry (PCI) Security Standards Council today issued guidelines on how businesses storing, processing or transmitting payment-card information should look at doing an annual risk assessment.
By Ellen Messmer | 16 November, 2012 19:57
Online retailers should use a PCI-compliance payment gateway for credit card transactions, or become compliant themselves, to avoid Lush-style data breaches, says the man at Westpac tasked with securing as many as 20 million credit card accounts.
By Rodney Gedda | 17 February, 2011 12:03
A survey of 500 information technology professionals with responsibility to assure compliance with the Payment Card Industry (PCI) security standard shows just over half find it "burdensome but necessary" in their organizations and about a third see it impacting their virtualized network environments in particular in the future.
By Ellen Messmer | 13 January, 2011 02:12
X86 virtualization is often a risky proposition for highly regulated, mission-critical applications, because people and processes are not ready for virtualization and the security risks it introduces, IBM security expert Joshua Corman argued at Interop Las Vegas this week.
By Jon Brodkin | 27 May, 2009 07:43
Gaining a basic understanding of the Payment Card Industry Data Security Standard (PCI DSS) is a critical first step for PCI compliance efforts. In this paper, learn what it is, who must comply and by when, the penalties for non-compliance, and what new in version 2.0 of the PCI DSS released October 28, 2010.