The Payment Card Industry Data Security Standard (PCI DSS) is the security standard for protecting payment card data. Navigating the requirements of the PCI DSS and implementing the technical security controls can be quite complicated.
Only 20 percent of payment card-accepting companies complied with the full set of international security standards in 2013, according to a new report from Verizon. The 2014 PCI Compliance Report looked at how hundreds of retailers, hospitality companies, financial service firms and other organizations followed the standards established by the PCI Security Standards Council.
The latest version of the Payment Card Industry (PCI) Data Security Standard will soon require businesses to implement and perform penetration testing, but only 41 percent of retail sector enterprises currently use penetration testing to identify security risks.
