The Green Sheet Online Edition
January 1, 2020 • 20:01:02
Readers Speak: 2020 PCI checkup
A new year typically means taking stock in many areas of business, and one essential area for payment pros is data security. Meagan Elguera, Corporate Communications Manager at SecurityMetrics, sent in a note to remind us that regular PCI audits can be highly beneficial in this regard. To that end, Security Metrics offers a PCI Audit Starter Kit with helpful resources. It includes a combination of webinars, white papers, blog posts, video and case studies. Here's a sampling:
- Webinar and white paper: "How to Prepare for a PCI Audit," www.securitymetrics.com/learn/how-to-prepare-for-a-pci-audit-webinar (webinar) and www.securitymetrics.com/learn/how-to-prepare-for-a-pci-dss-audit (white paper)
- Blog post: "Make Your PCI Auditor Happy Following These Tips," www.securitymetrics.com/blog/make-your-auditor-happy-follow-pci-audit-checklist
- Blog post: "How to Prepare for a PCI Audit," www.securitymetrics.com/blog/how-prepare-pci-dss-audit
- Blog post: "How Do Merchant Levels Determine Compliance?" www.securitymetrics.com/blog/how-do-merchant-levels-determine-pci-compliance
- Case Study: "How a PCI Audit Became Positive and Educational," info.securitymetrics.com/case-study-groupize
- Video: "PCI Assessment FAQs," securitymetrics.wistia.com/medias/p127hsjvwg
- Blog post: "IT checklist for PCI compliance," www.securitymetrics.com/blog/it-checklists-pci-compliance
The company also offers penetration testing. "The most accurate way to know your organizational weaknesses is to examine your business environment the way a hacker would—through manual penetration testing, also called ethical hacking," Elguera wrote. "Our penetration testers use the most up-to-date hacking methodologies to identify vulnerabilities, minimize risk, and protect your organization against the most current hacking trends."Â
The PCI Security Standards Council also offers a wealth of resources to help payment professionals reach and maintain PCI compliance. Recent blog articles, for example, include "Online Skimming and Payment Security," "Women in Payments: Q&A with Stacy Hughes," "Increasing Industry Participation and Knowledge," "P2PE v3: What Merchants Need to Know." Read these posts and more at https://blog.pcisecuritystandards.org.
How are your security practices?
Have you done a PCI audit? If so, how effective was it? What other measures are you taking to help your merchants maintain PCI compliance this year? Let us know about this and other issues of concern to the payments community at greensheet@greensheet.com. And remember to send news of your company and professional milestones to press@greensheet.com. 
Notice to readers: These are archived articles. Contact information, links and other details may be out of date. We regret any inconvenience.
