Wired: How do you avoid becoming the Next Big Retail Breach Target? There are plenty of points — and counterpoints — on the topic. As a cybersecurity professional who has specialized in compliance with the Payment Card Industry (PCI) Data Security Standard for more than a decade, I have a great deal of thoughts to share. So consider this the first of a five-part blog in which I’ll lend my perspective about the state of systems protection in the retail industry — and how to safeguard your business.
In all that I’ve read, there’s too much emphasis on whether a breached retailer was certified as PCI compliant. Is this important? Of course, it is. But a “yes/no” reading on certification fails to address a general attitude of merchants toward the whole PCI process.