Blog

Simplifying PCI compliance for merchant services

February 9, 2012

Implementing the simplest strategies can help businesses complete complicated tasks like meeting PCI compliance standards.

Implementing the simplest strategies can help businesses complete complicated tasks like meeting PCI compliance standards. Some ideas include recruiting the help of a security solutions-provider, forming a security and IT-based community group that shares information or using computer software that presents security standards in the form of a to-do list.

“One of the risks in data security is the end-user not being thoughtful about PCI compliance,” Doug Klotnia, executive president Trustwave told ISO&Agent Weekly. “We are trying to present a process that is not intimidating and we think the to-do list overcomes a lot of apprehension.”

The computer software allows merchants to work through standards in the form of a checklist, which walks them through the process so they understand and complete all of the steps necessary to become PCI DSS compliant, according to ISO & Agent Weekly.

Wendy Nather, an analyst for 451 Security, recommends that small and larger businesses who don’t have the budget to support a complete staff for IT and security operations should adopt methods, such as community groups or security providers to avoid compromising standards. Companies that fall beneath what she calls the “security poverty line” put themselves and their customers at risk for fraud and identity theft. 

Back To Blog