PCI Compliance: Implementing Effective PCI Data Security Standards

Frequently Asked Questions

The following Frequently Asked Questions, answered by the authors of this book, are designed to both measure your understanding of the concepts presented in this chapter and to assist you with real-life implementation of these concepts. To have your questions about this chapter answered by the author, browse to www.syngress.com/solutions and click on the Ask the Author form.

  • Q: Can t I just buy some device that will make me secure?

  • A: No. There s no silver bullet out there that will magically make you secure. Security is a process, not an event or a piece of technology. You must be constantly keeping up with new risks and doing what you can to stop them on your network.

  • Q: Should I perform network scans even if I can t get management to sign off on it.

  • A: No way! You should never run any security tests on any system without permission from the owner.

  • Q: Can t I just run some scanners on my system and assume that I m secure.

  • A: Many of these scanners work well but they re not 100 percent accurate and they definitely won t assess every problem. For example, untrained employees can cause huge security risks to your environment. While it s important to run these scans, it s also important to regularly check configurations and run other tests as well. It s also very important to be regularly educating your users.

UNLIMITED FREE
ACCESS
TO THE WORLD'S BEST IDEAS

SUBMIT
Already a GlobalSpec user? Log in.

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

Customize Your GlobalSpec Experience

Category: Access Control Systems
Finish!
Privacy Policy

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.