Cisco: IT Leaders Feel PCI Makes Organizations More Secure

Jan. 24, 2011

Global networking giant Cisco recently unveiled the results of a survey that found 70 percent of IT decision makers feel their organizations are more secure than they would be if PCI compliance were not required. The survey—designed to uncover and qualify current sentiment on the PCI Data Security Standard (PCI DSS) five years after it emerged—polled 500 IT decision-makers involved in their organizations’ PCI-compliance programs from the education, financial services, government, health care and retail industries. In addition to the headline number, 87 percent believe that the PCI requirements are necessary for protecting cardholder data. Respondents from the retail sector felt as comfortable in their likelihood to pass an assessment of their PCI compliance as did financial services respondents, which Cisco said shows that the retail industry has made great strides in adoption and implementation efforts. “This survey demonstrates that the PCI Council is being successful in communicating and getting the active participation and increased adoption of the PCI standards among stakeholders,” said Fred Kost, director of security solutions for Cisco. “The findings also suggest that organizations are increasingly aware of the benefits of compliance.” Kost went on to emphasize, however, that PCI compliance is not a silver bullet ensuring complete data security. “Progress has been good” he said, “but there is more work to be done as we face ever-evolving threats and the emergence of new technologies.”