When you maintain compliance with the Payment Card Industry Data Security Standard (PCI DSS), you are employing a model framework and best practices for the security of your card holder data environment that includes annual risk assessments. There are a number of considerations to keep in mind for integrating that model with the security framework and assessment process for your broader organizational assets.
This white paper examines:
- Common risk assessment frameworks and what's emerging as a framework of choice
- Evolving best practices and why
- How the PCI DSS fits in
- Key considerations for every organization in risk assessment planning