Compliance franchise or real security

admin
October 23, 2008

I’ve been saying for a long time now that compliance standards like PCI DSS 1.2 have created a marketing franchise for auditors instead of improving security.
Empirical evidence of the past 2 years suggests that compliance focuses on meeting auditor requirements instead of assuring actual security of your systems and customer data assets.    Here’s an interesting interview with Chris Nickerson who is billed by SearchSecurity.com as “your worst nightmare. He’s the guy you never see coming, the one who can slip into your data center, install malware on any server he chooses and ease back out without so much as a shadow on your security cameras”.
Newspaper hype aside – Nick had an important insight on PCI compliance:

You might be compliant, but if your system is compromised, you’re going home without a paycheck. People err on the side of compliance versus security.

More Articles

Understanding Withdrawal Speeds and Limits at Dolfwin Casino In this article, we will delve into the crucial aspects of withdrawal speeds and limits at Dolfwin

Read More »

Explora la experiencia móvil que ofrece Spin Casino MX a sus usuarios En la era digital actual, los casinos en línea han evolucionado para ofrecer

Read More »

Descubre cómo contactar a Spin Casino: El número de contacto que necesitas En este artículo, te proporcionaremos toda la información necesaria para contactar a Spin

Read More »

SG Casino Erfahrungen: Was sagen die Spieler über die Vielfalt der Boni und Aktionen? In diesem Artikel beleuchten wir die Erfahrungen von Spielern mit den

Read More »