PCI DSS Incident Response: The Legal Perspective #PCI

July 9, 2009 | Comments (0) | Trackbacks (0)

The SANS Institute InfoSec Reading Room recently published an article by Christian J. Moldes entitled PCI DSS and Incident Handling: What is required before, during and after an incident. Moldes’ whitepaper is a good starting point for developing an incident response plan to address payment card security breaches. The paper hits upon the key aspects of payment card security breach handling from an information security professional’s point of view. The paper, however, speaks little of the legal implications of a payment card security breach, and the incident response considerations that arise out of those implications.

via InfoSecCompliance.com – Technology, Privacy and Security Law & Risk Management » Blog Archive » PCI DSS Incident Response: The Legal Perspective.

Did you enjoy this post? Why not leave a comment below and continue the conversation, or subscribe to my feed and get articles like this delivered automatically each day to your feed reader. If you don't have a feed reader, you can always have these articles delivered to your email inbox every day. Click here to sign up.

Tags: breach, card, compliance, management, payment, PCI, privacy, risk, risk management, security
Topics: PCI

No comments yet.

Line and paragraph breaks automatic, e-mail address never displayed, HTML allowed: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

PCI DSS Incident Response: The Legal Perspective #PCI

Related posts

Leave a comment

Subscribe via RSS

Subscribe via Email

Ads