Re: PCI

[Steve Lovaas <steven.lovaas () COLOSTATE EDU>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Kevin,

We almost lost credit card processing rights. It was just after I was
hired, and in the interim between when my predecessor left and when I
started nobody followed up on one of our department merchants that had
been deemed out of compliance. They were way past deadline, having been
warned, and the bank was out of patience (first I'd heard of it).

So... no, we didn't *actually* lose credit card rights, but everyone up
and down the chain of command was very convinced that we would in very
short order. So I got them compliant QUICKLY.


Steve

Mclaughlin, Kevin L (mclaugkl) wrote:
> Hi Brad:
> So can anyone cite any cases where Universities have lost the right to
> process credit cards?
>
> Btw - I am in the initial stages of this work and I do appreciate all of
> the insights everyone has provided I am trying to get some quantitative
> data on real dollar impacts Universities have been hit with in regards
> to PCI non-compliance.  I view this as an integral part of an initial
> risk assessment.
>
> -Kevin
>
>
> Kevin L. McLaughlin
> CISSP, PMP, ITIL Master Certified
> Director, Information Security
> University of Cincinnati
> 513-556-9177 (w)
> 513-703-3211 (m)
> mclaugkl () ucmail uc edu

- --
==============================================================
Steven Lovaas, MSIA, CISSP
Network & Security Resource Manager
Academic Computing & Network Services
Colorado State University
970-297-3707
Steven.Lovaas () ColoState EDU
==============================================================
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFFJRJk2E9pSXAHWcsRAmkzAKCCtn7U9z88RCs97kOV3YB4l0xCqwCgmBGs
aAMkSJ/oHlmOANe3sEuGsh0=
=SDwe
-----END PGP SIGNATURE-----