Data Security Compliance Takes 12-18 Months, Says Survey

The average time to meet the PCI DSS (Payment Card Industry Data Security Standard) requirements was consistently estimated at between 12 and 18 months, independent of whether or not compliance had already been reported, according to a new report from Aberdeen Group.

BOSTON — The average time to meet the PCI DSS (Payment Card Industry Data Security Standard) requirements was consistently estimated at between 12 and 18 months, independent of whether or not compliance had already been reported, according to a new report from Aberdeen Group here. Over the past 12 months, the report said, best-in-class companies have made the greatest strides in improving their performance in protecting cardholder data through encrypted transmission of cardholder data across open, public networks (89% year-over-year performance improvement), and in protection of stored cardholder data (79% year-over-year performance improvement). In addition, said the report, over the past 12 months, best-in-class companies have achieved 70% year-over-year improvement in developing and maintaining secure systems and applications. Moreover, 84% of best-in-class companies responded that they have not experienced any breach, loss or disclosure of cardholder data in the last 12 months.

Read More [2] of Today's Headlines