Security

The Compliance Trap: Avoiding Compliance for Compliance's Sake

Download Now Free registration required

Executive Summary

PCI compliance white paper explains why compliance for compliance's sake is not a best practice in protecting cardholder data. Many retailers that have completed security audits are scrambling to implement new measures as their auditors have begun insisting on full compliance with key areas of the PCI DSS. Learn why compliance is the byproduct of a well-executed information security program that focuses on risk management, minimizes the use of compensating controls, includes careful consideration of technology and service provider capabilities, and recognizes your business is responsible for the security of cardholder data.

  • Format: PDF
  • Size: 0 KB