PCI SSC has laid down a firm set of rules for the organizations that store the sensitive authentication data in their networks. As per PCI DSS v3.2.1, sensitive authentication data must not be stored by the companies in the form of plain text, the data must either be masked or deleted.
This case study describes how one of the largest insurance companies in the world, located in Singapore with the help of the SISA Radar – Data Discovery Tool, identified the scattered sensitive data across a wide range of networks and simplified its path towards PCI DSS Compliance certification.
Read the complete case study to know more.