A Rational Voice Among the PCI Noise
This guy, Mike Rothman, knows what he is talking about. Mike's been going through his Daily Incite's for 2007 and yesterday he landed on PCI compliance.
If only securty standards and regulations were really taken seriously.
But, as Mike points out, there's...
As Mike said, CSOs, CISOs, CIOs, and compliance officers need to focus less on what will make them compliant and a whole lot more on what will make their enterprise secure.
Oh, and a lot more public outcry is going to be needed! Until the penalties for non-compliance are as weighty as the laws themselves are to read, there's really nothing to prevent more data breaches like the TJX's of the world.
TrackBack
TrackBack URL for this entry:
http://www.typepad.com/services/trackback/6a00d834520ea169e200d8351fb66469e2
Listed below are links to weblogs that reference A Rational Voice Among the PCI Noise:
Comments
Verify your Comment
Previewing your Comment
This is only a preview. Your comment has not yet been posted.
As a final step before posting your comment, enter the letters and numbers you see in the image below. This prevents automated programs from posting comments.
Having trouble reading this image? View an alternate.
Magnificent collection of prayers - and I haven\'t begun to explore the rest of the website!
Posted by: Melissa | November 08, 2008 at 08:48 AM
i love this site.a
Posted by: Dan | August 28, 2008 at 12:43 AM
No real enforcement? How about these carrot and stick enticements to let people know about deadlines and fines?
http://pcianswers.com/2007/01/21/non-compliance-fines/
What kind of enforcement are you looking for?
Posted by: Mike | March 02, 2007 at 07:18 AM