Keeping customer data safe key for ecommerce businesses
While PCI compliance is an important part of protecting customers at any business, Tracy Kitten writes on Gov Info Security that following PCI DSS does not create security on its own. Businesses need to take extra steps toward defending customers.
"If you don't have enough money for IT, your security is going to suffer in a lot of different ways, because there's really no finish line," Wendy Nather of 451 Reserach told the news source, adding that the realization has been difficult for many companies. "Security: It's sort of a moving target."
Nather said there is a "Security Poverty Line" that refers to companies that can't afford new security or even to keep up with regulatory compliance. This could happen if a company can't afford multiple servers and companies who are below the lines can suffer serious consequences, Nather told the website.
On its website, 451 Research says organizations without security resources need more than a yearly compliance check; they need help from other vendors on making sure data security is strong.