Managing Risk

At the beginning of last week I got an email from my credit card company, but put off reading it until Friday. In the meantime my boss had scheduled a meeting about how we were going to implement PCI standards on our network and servers at work. We talked a lot about how we could secure our computers and protect credit card numbers that passed through our network.

So when I finally got back to the email I found out that my credit card number had been stolen and a number of purchases had been flagged as suspecious. It wasn’t a large amount, not quite one hundred dollars, but I was thankful that the company was treating the risk seriously enough to watch for transactions originating in foreign countries for example and letting me know in time to dispute the charge so I didn’t have to pay.