Browse archive

Latest news

Fighting cybercrime is on the right track

Google set to upgrade its SSL certs

IT security pros have trouble communicating with executives

Zeus variants are back with a vengeance

Facebook phishers target Fan Pages owners

Killer apps: The performance of networked applications

Is it time to professionalize information security?

Google researcher reveals another Windows 0-day

Twitter finally offers 2-factor authentication

DHS employees' info possibly compromised due to system flaw

Teens are into online sharing, but are also more privacy-aware

The dangers of downloading software from unofficial sites

Microsoft decrypts Skype comms to detect malicious links

Review: Logging and Log Management

Hacking charge stations for electric cars

PCI DSS is working, but there are challenges to overcome

by Jeremy King - European Director, PCI Security Standards Council - Monday, 12 December 2011.

Make security part of your DNA - Again, this goes to a previous bullet: think security rather than compliance. The PCI DSS is a fantastic foundation for establishing a core group of best practices that can serve as the foundation for your security efforts. Remember, the DSS is the floor, not the ceiling; you should always be looking to build additional layers of security on top of it. This layered approach will allow you to focus on the security part of your business, building it into every business project or activity you commence, and allow you to move beyond a compliance sideshow to one where you are an increasingly difficult target for the bad guys. All it takes is some concerted effort. The more difficult you make it for the bad guys, the more quickly they are likely to look elsewhere.

Remember, PCI DSS is a solid foundation for you to develop and maintain security practices that help enable the entire business. Get the basics sorted by following these tips and then build your layers on top for a more secure business.