Data breaches targeting retailers and their third parties have dominated the news and boardroom. Additionally, PCI 3.0 and other regulatory requirements have also put a major emphasis on scaling your 3rd party risk program. Securing the retail data supply chain and managing the risks associated with access to the cardholder network is a major challenge that retailers of all size are still struggling to tackle.
Did you know:
- The Target breach was only one of many retail data breaches in 2013 and 2014 due to a third-party relationship which have impacted over 100+ million cardholders. The Target breach alone is estimated to have impacted up to 70 million cardholders.
- In August 2014, PCI published some additional guidance on managing 3rd party risks.