Companies in this sector have been targeted frequently for customer and credit card data. For example, in 2013, the customer credit card data of 110m customers was stolen from Target through a malware attack. The cost of this breach is currently estimated at over $148m. The loss of such data or the unavailability of critical IT services carries high reputational risk not to mention potential loss of sales or even compliance fines. This is evident in high profile data breaches within the sector – which in several cases was through a third party. Dealing with many external touch points, both physically in terms of number of stores and technically in terms of ecommerce, telesales, stores and corporate environments, makes the assessment of information security risks a challenge and further complicates achieving compliance to the Payment Card Industry Data Security Standard (PCI-DSS).
7Safe is well placed to help clients manage the cyber security of their IT systems through our portfolio of infrastructure, application, database and web penetration testing offerings. We are also experts at helping our clients achieving compliance with PCI-DSS.
As part of PA Consulting Group, we are also able to combine our technical cyber security expertise with deep industry knowledge and skills in management consulting, technology and innovation.