Events , Video

PCI: Retailer Security Failures

Council Working to Educate Merchants, Congress on Threats
PCI: Retailer Security Failures

Troy Leach of the PCI Security Standards Council says data security standards are not failing; they just aren't being applied continuously. And conformance with the Payment Card Industry Data Security Standard is just one piece of the puzzle.

See Also: Are Security Tools Slowing Your Response?

Merchants, in particular, need to spend more time focusing on end-to-end protections, facilitated through encryption and tokenization, Leach says. To that end, the PCI Council is focusing more of its attention on merchant education, and is working to enhance information sharing about emerging malware trends.

During this video interview with Information Security Media Group at RSA 2014, Leach discusses:

  • The limitations of chip card technology;
  • Why PCI data security standards do not cover all aspects of card-fraud prevention;
  • Steps the PCI Council is taking to ensure consumers and businesses continue to have faith in the payments system.

In his role as lead security standards architect for the PCI Security Standards Council, Leach has developed and implemented a comprehensive quality assurance program to promote consistency within the council's QSA, ASV, PA-DSS and PED programs. Before joining the council, Leach led the incident-response program at American Express, where he reviewed more than 300 cases of account data compromises. Over the past 18 years, he has held positions in systems administration, network engineering, IT management, security assessment and forensic analytics.

Additional Summit Insight:
Hear from more industry influencers, earn CPE credits, and network with leaders of technology at our global events. Learn more at our Fraud & Breach Prevention Events site.


About the Author

Tracy Kitten

Tracy Kitten

Former Director of Global Events Content and Executive Editor, BankInfoSecurity & CUInfoSecurity

Kitten was director of global events content and an executive editor at ISMG. A veteran journalist with more than 20 years of experience, she covered the financial sector for over 10 years. Before joining Information Security Media Group in 2010, she covered the financial self-service industry as the senior editor of ATMmarketplace, part of Networld Media. Kitten has been a regular speaker at domestic and international conferences, and was the keynote at ATMIA's U.S. and Canadian conferences in 2009. She has been quoted by CNN.com, ABC News, Bankrate.com and MSN Money.




Around the Network

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing inforisktoday.co.uk, you agree to our use of cookies.