Confessions Of A QSA: The Inside Story Of PCI Compliance

September 11th, 2008

John Kindervag

With contributors:

Simon Yates , Margaret Ryan

Summary

PCI (Payment Card Industry) compliance — a requirement for accepting credit card transactions — can be difficult. About 65% of global enterprises are still working on their PCI compliance initiatives. But PCI compliance is an ongoing effort, not a bounded IT security project. Insight into the process and the role of the qualified security assessor (QSA) can make it easier, while implementing standard security best practices upfront will ease the pain when the on-site audit begins.

Want to read the full report?

This report is available for individual purchase ($1495).

Forrester helps business and technology leaders use customer obsession to accelerate growth. That means empowering you to put the customer at the center of everything you do: your leadership strategy, and operations. Becoming a customer-obsessed organization requires change — it requires being bold. We give business and technology leaders the confidence to put bold into action, shaping and guiding how to navigate today's unprecedented change in order to succeed.