Bob Russo is general manager of the PCI Security Standards Council. He oversees training, testing and certification programs for Qualified Security Assessors (QSAs) and Approved Scanning Vendors (ASVs) Russo: “The standard is solid and addresses those “tootsie pop” network setups (hard on the outside and soft on the inside) There are enough controls in the standard to prevent something like this from happening, he says. Russo: Each one of the five major credit card brands has instituted its own compliance program.”]
Source: https://www.cuinfosecurity.com/pci-put-to-test-by-recent-breaches-a-843