It's as if they took the words right out of my mouth. The new guidelines in the Payment Card Industry Data Security Standards (PCI DSS) encourage organizations to focus on security rather than compliance. Hallelujah!

For years I've been saying it: "Compliance does not equal security, but when you focus on security, compliance becomes an easy byproduct."

The new requirements, based on feedback PCI DSS received from the PCI Security Standards Council and payment brand subject matter experts, focuses on mitigating some of the most frequently seen risks that have precipitated cardholder-data compromise.

Complete your profile to continue reading and get FREE access to, part of your ALM digital membership.

  • Critical information including comprehensive product and service provider listings via the Marketplace Directory, CU Careers, resources from industry leaders, webcasts, and breaking news, analysis and more with our informative Newsletters.
  • Exclusive discounts on ALM and CU Times events.
  • Access to other award-winning ALM websites including and

© 2024 ALM Global, LLC, All Rights Reserved. Request academic re-use from All other uses, submit a request to [email protected]. For more information visit Asset & Logo Licensing.