Cost of Regulatory Security Compliance? On Average, $3.5M
According to a new Ponemon Institute study sponsored by Tripwire, 46 multinational companies spend an average of $3.5 million to achieve compliance with various legal and industry mandates. The survey respondents said the Payment Card Industry Data Security Standard (PCI DSS) was both the "most important" and "the most difficult to comply with." The categories with the biggest compliance expenses included specialized technologies, incident management, and audit and assessment.