Retail Cyber Security

No other sector is as in the public eye as the retail sector.  Last year, 38% more security incidents were reported than in 2014, but the increase in the retail sector was an enormous 154%. The retail sector provides a unique store of information for cybercriminals from credit card information to PII.  Retailers find themselves in an environment where they must compete to keep customers while defending themselves against ever-evolving cyber attacks.  These cybercriminals seek to obtain financial and other customer data that they can monetize; they target point-of-sale (PoS) systems, or customer databases to obtain stored financial data, stored personally identifiable information (PII), and the like.  Additionally, Advanced Persistent Threat (APT) actors aiming to gain a competitive edge over their competition. These threat actors may seek to understand supply chains and manufacturing processes in order to copy processes or identify weaknesses.  The type of cyber attacks used to perpetrate crimes against the retail sector fall into various categories such as hacking (use of stolen credit cards), malware, and phishing.

Regulatory Obligations and Industry Standards for the Retail Sector 

The Payment Card Industry Data Security Standard (PCI DSS) was developed jointly by American Express, Visa, MasterCard, Discover and JCB. It requires the use of firewalls, data encryption, monitoring and other controls to ensure confidential information stays safe. While meeting PCI DSS standards is essential, organizations today must adopt more flexible and forward-thinking SIEM solutions if they wish to avoid liability and manage risk — particularly when working in the cloud.

retail cyber security

Fortalice’s Expertise in the Retail Sector

A wide breadth of retail companies across the country entrust the Fortalice team to provide their cyber security services. Our expertise is relied upon by grocery stores and department stores. Our steadfast support for these retail companies ranges from providing penetration testing, risk assessments, cyber intelligence assessments, forensics, incident response, and the design of secure technology infrastructures. While our cyber risk client engagements are short, once the relationship is established, our customers come back to us as long-term trusted advisors on the myriad of emerging cyber security issues that they face.

retail cyber security

Latest from the Wall