Continuous Compliance: Constant And Total Oversight Of The PCI Process — A Best Practice For All Retailers

Compliance with the PCI Data Security Standard is still a work in progress at many retailers. Retailers have encountered a number of obstacles as they strive for compliance and are still evolving their strategies as they come to understand the full scale of the requirements. One of these realizations is of the permanent and uncompromising process-discipline that must be instituted across the data security domain in order to achieve consistent, effective protection for sensitive data, now and on into the future.

New management tools are available to help retailers create and oversee a corporate program of data security excellence and PCI compliance. Centralized, automated IT-GRC solutions are now used by leading organizations to integrate the relationship of Governance, Risk Management, and Compliance for many regulatory mandates, e.g., SOX, GLB, COBIT, and HIPAA, and are now available to be applied to the requirements of PCI compliance.