response to discussion below

Anonymous
account_balance_wallet $5

Question Description

Timothy,

Using credit cards and debt cards releases some of the obstacles around having the ability to pay individual bills. Having the ability to pickup the phone and call to pay bills or go online to the organizations website to pay a bill is convenient. With this convenient method of personal transactions comes rules and guidelines to protect Personal Identifiable Information (PII). These rule and guidelines protect the consumers and the organization by standardizing the PCI-DSS protection requirements. Failure to meet PCI-DSS requirements may result in fines or termination of credit card processing privileges (Rouse, 2012).

The Security Standard Council breaks down the requirements in to categories and consists of common sense steps that mirror security best practices (Security Standard Council, 2010). To protect cardholders data Red Clay must make secure to build and maintain a secure network with updated firewall protection. Red Clay must maintain a vulnerability management program to ensure anti-virus software is up to date and to ensure system and applications are maintained. Restricting access to cardholder information while implementing strong access controls measures helps guard PII internally and its a requirement in PCI-DSS protection.

With the implementation of the required protection guidelines Red Clay can expect the protection of cardholders data like personal account numbers (PAN), cardholders names, cardholder security codes and cardholders expiration dates. Sensitive authentication data that will be protected is the full magnetic strip data and pin blocks. Will the implementation of these requirement be enough to protect PII? The short answer is yes, PCI- DSS requirements are enough to protect cardholder data if the organization leverage proven technologies and processes to effectively ensure standards are met (Carroll, 2016).

References

Carroll, C. (2016, December). PCI DSS 3.2: Is It Enough to Protect Cardholder Data. In CIO.Retrieved from https://www.cio.com/article/3147082/pci-dss-3-2-is...

PCI-DSS Quick reference Guide, Understanding the Payment Card Industry Data security Standard version. (2010, October). In Security Standard Council (Vol. 2.0).

Rouse, M. (2012, April). PCI-DSS 12 Requirements. In TechTarget. Retrieved from https://searchsecurity.techtarget.com/definition/P...

Tutor Answer

DKirathe
School: UIUC

Attached.

Running Head: RESPONSE

1

Response to Timothy on PCI-DSS

Name

Institution

RESPONSE

2

Hello Timothy? It is always fare to congratulate you for the good job that...

flag Report DMCA
Review

Anonymous
Top quality work from this guy! I'll be back!

Similar Questions
Related Tags

Brown University





1271 Tutors

California Institute of Technology




2131 Tutors

Carnegie Mellon University




982 Tutors

Columbia University





1256 Tutors

Dartmouth University





2113 Tutors

Emory University





2279 Tutors

Harvard University





599 Tutors

Massachusetts Institute of Technology



2319 Tutors

New York University





1645 Tutors

Notre Dam University





1911 Tutors

Oklahoma University





2122 Tutors

Pennsylvania State University





932 Tutors

Princeton University





1211 Tutors

Stanford University





983 Tutors

University of California





1282 Tutors

Oxford University





123 Tutors

Yale University





2325 Tutors