"Is my PCI compliance good enough to serve as a network cybersecurity audit?"
We often get asked if an organization has passed their PCI compliance requirements for accepting credit cards; is there really a need for more security and compliance? It's very possible you do. Keep in mind that PCI is focused on protecting credit card data specifically, and most organizations touch sensitive data that goes beyond credit cards. Was that considered when you did your PCI review?
The PCI regulations have gone a long way toward making every business that accepts credit cards become more secure – it’s a threat to the payment industry to have unsecured businesses responsible for millions in fraudulent charges. But part of a good assessment should be to evaluate ALL of the potentially sensitive data you work with, and determine if you are doing the right things to protect it, regardless of PCI rules.
Reach out to us to discuss your security and risk management concerns today!