Week 6 discussion 1 cis 542 | CIS 542 Web Application Security | Strayer University
“Compliance and Regulations”
Many recent breaches have involved payment card systems, otherwise known as point of sales (POS) terminals. The regulations and standards for POS systems is called the Payment Card Industry Data Security Standard (PCI DSS).
- Research recent POS breaches, (find examples from within the last three years) and explain based on your reading in class what occurred. Explain why or why not you think the breach was preventable, as well as the overall impact the breach had on the business. In your opinion, if the breach was preventable and the company is found responsible should they be given a monetary penalty or should stricter legal action be taken, such as jail time? Justify your answer. Suggest or recommend any tool that could help to maintain compliance. Share examples with your classmates and provide links to any useful resources you find.
- After reading a few classmate postings, reply to the ones where you learned something new, or have something to add. Get in early to post your initial feedback and keep the discussion going.
Additional post option: How often is reporting required to maintain compliance status with PCI Data Security Standard? Do you agree with this requirement and why or why not?