RSS Alerts

Share

More services

Related Links

Related Stories

  • Comment: Conforming to PCI DSS
    Organisations that transmit, store or process payment card details and that fail to comply with the Payment Card Industry Data Security Standard (PCI DSS) face serious penalties and potential fines of £50K+, damage to brand reputation, loss of business and the risk of closure, says Mike Gillespie, director at independent protective security consultancy, Advent IM. It’s an issue of great concern to many businesses and a topic much debated on business forums.
  • PCI-DSS compliance does not always guarantee security
    Newswire reports that some of the firms who have experienced data breaches in recent months were PCI-DSS-compliant highlights the fact that - even if a company has passed the standard on the regulatory front - this does not guarantee the integrity of their IT security systems, says Tufin Technologies, the security lifecycle management specialist.
  • PCI-DSS failure could hit brands, gaming firms told
    The potential damage to a brand justifies the high cost of Payment Card Industry Data Security Standard (PCI-DSS) security compliance work, a major payment card operator told a gambling conference.
  • PCI: here to stay
    As retailers face the costs and changes involved in complying with the Payment Card Industry Data Security Standard, its worth and necessity are up for debate, with some arguing it gives a raw deal to retailers. Dan Ilett investigates
  • Security Education: A Lesson Learned?
    Despite users being the most integral part of information security, only one to two percent of security budgets are being spent on awareness and education. Stephen Pritchard reports
    Members' Content

Top 5 Stories

News

Aberdeen report shows firms using PCI-DSS can halve costs

30 December 2009

The Aberdeen group's third annual study into Payment Card Industry Data Security Standard (PCI-DSS) issues claims to show that a growing number of companies are saving up to 55% on maintaining their compliance by adopting best practices.

The report - which is offered free until the end of January - also says that companies adopting PCI-DSS compliance can save up to 45% on their costs by adopting a best practice strategy.

The study, which is billed as providing year-over-year insights into the progress that affected organisations have made in achieving and sustaining compliance with PCI-DSS, found that adopting a best-in-class approach can halve a company's compliance costs.

On top of this, the report notes that best-in-class companies can divert the PCI-DSS compliance savings into other areas, such as sustainable programmes and continuous improvement.

According to the research firm, best-in-class companies were found to have reduced their deficiencies related to PCI-DSS compliance by 7.5% on a year-over-year basis, when compared to `laggards.'

The conclusions of the security analysis show how companies can reduce the scope of their PCI-DSS compliance, as well as `map and adapt' to better security practices.

One of the most interesting conclusions of the report is the need for managers to assign clear ownership of the PCI-DSS issues and so achieve better PCI-DSS efficiencies.

This article is featured in:
Compliance and Policy

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

Terms & Conditions |Privacy |Website Design|Reed Exhibitions. All rights reserved. Copyright © 2012