PCI Pal’s latest eBook discusses how to maximise security in the contact centre environment. Our recent survey highlighted how high a priority security is, and with the GDPR and PCI DSS v 3.2 now in effect this is of little surprise. As businesses work harder to prevent breaches there’s also been a spike in the number of breaches being reported, which indicates threats are increasing. So, at a time where the contact centre is becoming targeted more often, what can be done to minimise the risks of a breach? Let’s examine the types of breaches and how best to prevent them in more detail:

 

  • Phishing attacks

Attackers will pose as banks, online services and other authoritative organisations to get users to hand over sensitive information. Risks can be minimised through education, anti-malware and the use of  spam filters.

  • Ransomware

This is a relatively new form of malware that attempts to encrypt your data before asking for a ransom to be paid for the data to be released, and has hit some high-profile organisations such as the NHS. Risks can be minimised through education, keeping all software and additional applications up to date and by regular, well managed backups so you can recover data if necessary.

  • Data Leakage

In the contact centre space which handles a lot of sensitive data the risk is high. The use of BYOD has made it more difficult to guarantee that data is safe. Risks can be minimised through password protection, remote device wiping and encrypting stored and sensitive customer data.

  • Hacking

Individuals from outside the business gain access to company IT systems and networks. Risk can be minimised through firewalls, strict data access security measures and only storing necessary data.

  • Insider Threats

Employees, contractors, clients and other third parties steal or ‘lose’ data. Risks can be minimised through education, minimising data storage and, of course,  working with a secure payment solution provider.

 

When it comes to sensitive card data however, the best way to prevent the data being taken is to ensure that it’s not stored within your environment in the first place. De-scoping your contact centre using solutions such as Agent Assist will ensure the data isn’t seen, heard or stored.

 

To discuss the benefits of de-scoping your contact centre, get in touch with one of our experts.