Lewis: PCI DSS Compliance Lagging
DATA PROTECTION—AUSTRALIAApril 15, 2011
The director of a payment solutions company says that Australian organisations are struggling to become compliant with Payment Card Industry Data Security Standards (PCI DSS), CIO reports. IP Payments Director Mark Lewis says that CIOs and CFOs are not up to speed. "It's a big challenge because some CIOs need to become familiar with the meaning of PCI, the ongoing costs and the ramifications of acquiring those skills in-house versus bringing in an external provider to run compliance as a managed service," Lewis said. Nonetheless, the banks "are becoming much more diligent in enforcing the standards...therefore, any fines that are the result of a breach will be handed down to these organisations."