IT Governance, the global cyber security services provider and PCI QSA company, has published an infographic that highlights some of the issues associated with PCI DSS compliance.
Based on the findings of the recent Verizon 2015 PCI Compliance Report, the infographic can be viewed here:
www.itgovernance.co.uk/pci-infographic.aspx.
The
Verizon 2015 PCI Compliance Report revealed that 80% of tested companies failed their interim PCI DSS compliance assessment. Moreover, of all the data breaches investigated over the last ten years not a single company was found to be compliant at the time of the breach. None of the breached organisations complied with requirement 6 or requirement 10 of the PCI DSS.
With the publication of version 3.1 of the
Payment Card Industry Data Security Standard (PCI DSS) in April 2015, which introduced changes related to the use of Secure Sockets Layer (SSL) or early Transport Layer Security (TLS) cryptographic protocols, merchants and service providers may experience even greater difficulties meeting the requirements of the Standard.
Geraint Williams, QSA and head of technical services at IT Governance, says, “While planning to address the PCI DSS v3.1 changes, organisations are also under pressure to comply with evolving requirements, introduced in version 3.0, by 30 June 2015. These include requirements 6.5.10, 8.5.1, 9.9, 11.3 and 12.9. Organisations should be acting now to ensure they are fully prepared to meet these requirements to pass their next assessment or audit.”
As an approved QSA company, IT Governance is ideally positioned to help organisations transition to PCI DSS v3.1 or comply with the Standard for the first time.
Find out more at:
www.itgovernance.co.uk/pci_dss.aspx.
For further inquiries, call +44 (0)845 070 1750 or send
an email to the IT Governance customer service team.