By building a balanced team to address governance, compliance, technology, and business challenges, a multi-year road map and implementation plan was born. As a result, security architectures were re-built to mitigate risk and effective security event monitoring and response services were put in place. Additionally, external PCI compliance relationships were developed to manage expectations (card brands, banks, and insurance companies), coordinate work (external auditors, QSA), and ensure third party security vendors were operating effectively and providing value.
Ultimately, exposure to cyber threats was significantly reduced and PCI compliance was achieved for the first time. This achievement reduced high risk issues by 87%, reduced the overall PCI compliance footprint by 70%, and produced an annual savings of more than $600,000.
Retailers often say 'there is no greater loss than the loss of consumer data.' Thanks to Concord, this retailer's risk has been greatly reduced!