Agiliance Payment Card Industry (PCI) Data Security Standard (DSS) 3.1 Content Pack has been released. Based on the new PCI DSS 3.1 information security standard, this new content pack provides organizations that handle cardholder information for major debit, credit, prepaid, e-purse, ATM, and point-of-sales cards, with packaged intelligence and best practices to tighten controls and reduce the risk of data breaches and fraud.
In light of several recent and severe server-side vulnerabilities (e.g., Heartbleed, GNU Bourne-Again Shell, and POODLE), the National Institute of Standards and Technology (NIST) determined that SSL and early versions of TLS are no longer acceptable methods to secure communications over a computer network. Following NIST’s recommendations, the PCI Council responded by revising the DSS framework and issuing PCI DSS 3.1. It encourages organizations that handle cardholder information to discontinue the use of these outdated protocols, or prior to the deadline of June 30, 2016 establish a formal risk mitigation and migration plan.
The Agiliance PCI DSS 3.1 Content Pack provides organizations that are regulated by the PCI Security Standards Council with a framework to implement and maintain effective information security processes and internal controls. It minimizes the risk of failing to conform to the PCI DSS 3.1 standards, which can result in hefty fines, class-actions lawsuits, and reputational damages.
Using RiskVision®, organizations can gather, score, and review their data- and survey-driven control assessment results to identify and remediate control gaps that can be exploited by hackers. RiskVision provides a comprehensive view of an organization’s PCI compliance posture to minimize the risk of data breaches. Its data automation and correlation capabilities enable organizations to more quickly and easily conduct continuous compliance assessments and cover a far broader scope of their infrastructure without adding additional staff.
The Agiliance PCI DSS 3.1 Content Pack is available immediately and is included with all RiskVision subscriptions.
For data, background and forecasts on PCI DSS: Search CardWeb.com’s CardFlash® Library of more than 58,000 archived articles; Access CardWeb.com’s CardData® for current and historical Performance, Portfolios, Profiles, etc. Visit RAM Research® (ramresearch.com) for quarterly and annual forecasts covering more than 150 metrics. [complimentary or deeply discounted access to CardWeb.com subscribers].
Additional database resources include CardWeb.com’s CardExecs® – comings & goings of payments movers & shakers; CardWeb.com’s CardWatch® – ears & eyes on marketing globally (57K items); and CardWeb.com’s CardPixes® – form & function of card design (7K items).