1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

A CISO reveals why the cloud is your secret weapon for faster, better, and cheaper PCI audits

Discussion in 'CSO' started by RSS, Apr 7, 2015.

  1. RSS

    RSS New Member Member

    How do you feel about PCI? Or the security of the cloud?

    What happens when you need to attain PCI certification for your cloud-based service?

    That’s precisely the challenge that Joan Pepin, CISO of SumoLogic, faced. Her results might surprise you.

    Her approach to obtain PCI level 1 merchant certification took a fraction of the time, roughly 10% of the typical cost, and provided a quality clients accept.

    As Joan explained, she did this, “Not in spite of the cloud, because of the cloud.”

    The adoption of PCI 3.0 in January modified the approach to vendor management. Basically, if a vendor affects the controls, then the vendor must be PCI compliant. Joan saw this as an opportunity to give her company -- a cloud-based company, serving business-to-business clients -- a competitive advantage.

    To read this article in full or to leave a comment, please click here

    Continue reading...

Share This Page