We notice you are visiting from a U.S. Internet provider. 
08/03/2010 -
Gathering controls data is not just useful for pre-audit preparation - it should be part of a company's year-round payment processing security policies.According to CTO Edge, automating the gathering of controls data is key to controlling and minimizing IT risk.
"For too long, generating and providing reports to auditors has been treated as a disruption for IT operations," said the news provider. "However, automation enables the production of meaningful and accurate reports specifically tailored to meet auditor queries. It also reduces the amount of time spent collecting data and reporting on IT controls, and instead allows the IT team to focus on how the organisation can make best use of its regulatory environment."
CTO Edge adds that this practice can also find risks and problems before they escalate into a more serious threat, and can alert businesses to weaknesses that must be remedied far in advance of an audit.
Maintaining the same high security standards year round does not just apply to gathering controls data - PCI Security Standards Council general manager Bob Russo has advised businesses to prioritize 24/7 security, not just pre-audit compliance.
