The UK-based cybersecurity software company found out that the infrastructure of over 21% of surveyed companies has failed key PCI compliance assessments, designed to assist them to maintain high security standards when processing customer card payments. In addition, a further 29.3% said that they had no confidence in their own company’s compliance when it came to PCI DSS.
The poll, which was carried out amongst cyber security professionals, also found that there was a lack of confidence in the PCI standards within today’s hybrid working environments. More than 50% said that they either believed PCI regulations were not relevant or that they needed adjusting to suit current working models.
The PCI DSS standard mandates that organisations maintain a secure network and systems to host transactions, including a properly configured network firewall to protect cardholder data, and restrict data access to those with a genuine business need.
This is proving difficult, as the SentryBay poll found out. When asked what the biggest challenges were to ensuring compliance, 30.7% said it was too complex while 23.6% thought that that the contradictions of the process were the biggest barrier.
Every day we send out a free e-mail with the most important headlines of the last 24 hours.
Subscribe now