The 2011 PCI DSS Compliance Trends Study surveyed 670 US and multinational IT security practitioners on how efforts to comply with PCI-DSS affect an organization’s data protection and security. This report is essential for any organization attempting to comply PCI and wants to benchmark their efforts with their peers.
This year's report shows that:
- - The majority of PCI compliant organizations suffer fewer or no breaches, most practitioners still do not perceive the mandate to have a positive impact on data security.
- - About 64 percent of PCI-DSS compliant organizations reported suffering no data breaches involving credit card data over the past two years, while only 38 percent of non-compliant organizations reported suffering no breaches involving credit card data over the same period.
- - Certain technologies are adopted more quickly than others to comply with PCI. For example, code review saw the biggest decline in adoption.
PCI's Impact on Security Quantified