Following multiple data breaches at "PCI Compliant" organizations, there has arisen a chorus of voices who are discovering that complying with PCI does not make an organization secure. This, while not a surprise to anyone who has either looked at PCI or worked in security, is evidently news enough to begin to call into question the utility of PCI, and of complying with its dictates.
Listen as Jack Danahy, Founder and CTO of Ounce Labs, discusses the ways in which the PCI Data Security Standard and PCI compliance can form an important track of a solid security strategy, can provide cautions about common pitfalls, and can engender some critical thinking needed to secure critical data. PCI compliance alone is not a security strategy, but it is certainly a useful step along the way.
Watch the webcast here, or at www.brighttalk.com
