White Papers for Federal Financial Institutions Examination Council (FFIEC)

More Lessons Learned—Practical Tips for Avoiding Payment Card Industry (PCI) Audit Failure

Verisign

The expense of compliance to the Payment Card Industry Data Security Standard (PCI DSS) can be substantial, especially for “Level I” (large) companies. The penalties for noncompliance can vary from censure, to fines, to, in the worse case, revocation of card issuance and payment processing capabilities. As recent current events have shown, however, major data security breaches are on the rise—threatening merchants and service providers with far worse financial costs, including litigation and the loss of consumer confidence.
Many companies continue to struggle with the increased complexity associated with PCI DSS—including those who may have achieved compliance in the past. As corporate information technology (IT) infrastructures evolve, new vulnerabilities emerge, such as those affecting corporate wireless networks or more powerful and connected mobile communications devices.

View the White Paper

Share or bookmarklet this web page at: