Pci Dss Incident Response: The Legal Perspective

Entities Mentioned

• David Navetta

1. The SANS Institute InfoSec Reading Room recently published an article by Christian J. Moldes entitled PCI DSS and Incident Handling: What is required before, during and after an incident. Moldes' whitepaper is a good starting point for developing an incident response plan to address payment card security breaches. The paper hits upon the key aspects of payment card security breach handling from an information security professional's point of view. The paper, however, speaks little of the legal implications of a payment card security breach, and the incident response considerations that arise out of those implications. This post borrows in part ... (Read Full Article)

   Bookmark or Share this article

   
   

   Related Articles

   • Protect Your Identity Week
   • also categorized in Corporate
   • Sponsors Logos & Links
   • also categorized in Corporate
   • Ruiz v. Gap: Increased Risk of ID Theft Not Damages
   • also written by David Navetta
   • Security Assessor Sued in CardSystems Breach: Merrick Bank v. Savvis
   • also written by David Navetta
   • The TJX Case: It Lives! With a New Theory of Liability: “Unfairness”
   • also written by David Navetta

   • Hannaford’s Motion to Dismiss: Victory for Merchants (Part 2)
   • also written by David Navetta
   • Corporate Overview Introduction Page
   • also categorized in Corporate
   • Identity Theft Awareness Day 2008
   • also categorized in Corporate
   • Hannaford’s Motion to Dismiss: Victory for Merchants…
   • also written by David Navetta
   • Breach Letter Blues
   • also categorized in Corporate

Login to comment.