PCI Pal’s latest eBook discusses how to maximise security in the contact centre environment. Our recent survey highlighted how high a priority security is, and with the GDPR and PCI DSS v 3.2 now in effect this is of little surprise. As businesses work harder to prevent breaches there’s also been a spike in the number of breaches being reported, which indicates threats are increasing. So, at a time where the contact centre is becoming targeted more often, what can be done to minimise the risks of a breach? Let’s examine the types of breaches and how best to prevent them in more detail:
- Phishing attacks
Attackers will pose as banks, online services and other authoritative organisations to get users to hand over sensitive information. Risks can be minimised through education, anti-malware and the use of spam filters.
This is a relatively new form of malware that attempts to encrypt your data before asking for a ransom to be paid for the data to be released, and has hit some high-profile organisations such as the NHS. Risks can be minimised through education, keeping all software and additional applications up to date and by regular, well managed backups so you can recover data if necessary.
- Data Leakage
In the contact centre space which handles a lot of sensitive data the risk is high. The use of BYOD has made it more difficult to guarantee that data is safe. Risks can be minimised through password protection, remote device wiping and encrypting stored and sensitive customer data.
Individuals from outside the business gain access to company IT systems and networks. Risk can be minimised through firewalls, strict data access security measures and only storing necessary data.
- Insider Threats
Employees, contractors, clients and other third parties steal or ‘lose’ data. Risks can be minimised through education, minimising data storage and, of course, working with a secure payment solution provider.
When it comes to sensitive card data however, the best way to prevent the data being taken is to ensure that it’s not stored within your environment in the first place. De-scoping your contact centre using solutions such as Agent Assist will ensure the data isn’t seen, heard or stored.
To discuss the benefits of de-scoping your contact centre, get in touch with one of our experts.