My Photo

My Online Status

How To Contact Us

Cobia Users Who Blog - Email Mitchell to Join

Blog powered by Typepad

« Cobia Community Podcast, Episode 3 | Main | We still like you, Chris »

June 04, 2007

Comments

Mike

My original concept was that simply complying once with a standard, provides momentary security. What companies need to do is maintain the ongoing operational management and security of their systems. There are a number of different things that companies need to do just to maintain the level of security required for compliance. This maintenance is what I believe you refer to by "a lot of extra safeguards".

Martin McKeay

No, I meant that PCI will take you a certain distance towards having a secure enterprise, but it's only aimed at keeping credit card information secure. There are any number of additional areas that have to be addresed to have a secure enterprise, from mail servers to the company forums to blogging. PCI doesn't cover everything, and it doesn't address your concerns about continuous security. That's what I meant by needing extra safeguards.

Martin

The comments to this entry are closed.

Upcoming Cobia Events

  • 7/28-8/2: Black Hat Las Vegas
  • 8/6-8/9: LinuxWorld SF

Cobia Announcements

  • New Cobia partner programs coming
  • Cobia blog has moved
  • Visit Cobia at Interop Las Vegas