Home >Technology >Getting PCI Compliance Right: Key Findings from the Verizon 2014 PCI Compliance Report

Getting PCI Compliance Right: Key Findings from the Verizon 2014 PCI Compliance Report

Date post:15-Jan-2015
Category:
View:2,463 times
Download:3 times
Share this document with a friend
Description:
The Verizon 2014 PCI Compliance Report offers unique insights into the state of compliance with the PCI Data Security Standard. Built on casework from actual Verizon PCI assessments, the report affirms that payment card transactions remain a prime target for attackers, and that compliance should be a part of business-as-usual processes and not a one-time, annual event. Want to learn more? Download the full report here: http://vz.to/PCIreport2014
Transcript:
  • 1. GETTING PCI COMPLIANCE RIGHT Key findings from the Verizon 2014 PCI Compliance ReportConfidential and proprietary materials for authorized Verizon personnel and outside agencies only. Use, disclosure or distribution of this material is not permitted to any unauthorized persons or third parties except by written agreement.

2. Who does payment card data matter to?Source: Verizon 2014 PCI Compliance Report3 3. We use them almost everywhereTo pay for all sorts of thingsIn personLeisure and entertainmentOver the phonePlanes, trains, and gasOn the InternetInsurance and utility billsAt kiosks and vending machinesHealthcare Source: Verizon 2014 PCI Compliance Report4 4. Payment card fraud continues to increasePCI Report picture5 Source: Verizon 2014 PCI Compliance Report 5. If your organization accepts card payments, then PCI DSS compliance should matter to you.YOUR DATA BREACH $400,000NotificationWhy? Because it can help you avoid data breach risk, and financial and reputational damages.Investigation$565,000Legal/remediation $1,400,000 Lost business$3,000,000----------------Total$5.4M-----------------6 Source: Verizon 2014 PCI Compliance Report 6. 88.9%But in 2013 most companies failed their Payment Card Industry Data Security Standard (PCI DSS) baseline assessment 7 Source: Verizon 2014 PCI Compliance Report 7. There is a bright spotthe number of organizations that were mostly compliant* rose25% in 201270% in 2013* Compliant with 8199% of requirements 8 Source: Verizon 2014 PCI Compliance Report 8. Compliance varies by requirement58%had good access management policies (Requirement 7)24%met vulnerability scanning expectations (Requirement 11) 9 Source: Verizon 2014 PCI Compliance Report 9. Compliance varies by industry35% of hospitality organizations were mostly compliant*Twice as many (70%) of retailers were mostly compliantMostly compliant = met 8199% of controls/subcontrols 10 Source: Verizon 2014 PCI Compliance Report 10. and it varies by region, tooAsia/ Pacific Europe31%75%North America56% 11 Source: Verizon 2014 PCI Compliance Report 11. Want to learn more? Download the full report verizonenterprise.com/pcireport/2014PCI Report pictureSource: Verizon 2014 PCI Compliance Report 12

Popular Tags:
of 11/11
Confidential and proprietary materials for authorized Verizon personnel and outside agencies only. Use, disclosure or distribution of this material is not permitted to any unautho GETTING PCI COMPLIANCE RIGHT Key findings from the Verizon 2014 PCI Compliance Report
Embed Size (px)
Recommended