Please create an account to participate in the Slashdot moderation system

 



Forgot your password?
typodupeerror
Trust the World's Fastest VPN with Your Internet Security & Freedom - A Lifetime Subscription of PureVPN at 88% off. Also, Slashdot's Facebook page has a chat bot now. Message it for stories and more. ×
Security

Submission + - Should Auditors Be Liable for Certifications? (channelinsider.com)

dasButcher writes: "Enterprises and mid-size business rely on auditors and service providers to certify their systems as compliant with such security regs and standards as PCI-DSS or SOX. But, as Larry Walsh speculates, a lawsuit filed by a bank against an auditor/managed service provider could change that (http://blogs.channelinsider.com/secure_channel/content/data_security/breach_lawsuit_could_reset_security_liabilities_to_service_providers.html). The bank wants to hold the auditor liable for a breach at its credit card processor because the auditor certified the processor as PCI compliant. If the bank wins, it could change the standards and liabilities of auditors and service providers in the delivery of security services."
This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Should Auditors Be Liable for Certifications?

Comments Filter:

You might have mail.

Working...