PayFAQ: The Embedded Payments Podcast
Real-world advice and inspiration on how to navigate the embedded payments journey — and win. Hosted by Ian Hillis, Head of Strategy at Worldpay for Platforms. Learn about the latest trends in embedded payments from industry experts, Worldpay for Platforms customers, and leaders on the Worldpay for Platforms team. They’ll share their real-world insights on payment facilitation best practices, use cases, along with the possibilities of greater monetization and higher valuations that embedded payments can unleash. You’ll have everything you need to find the embedded payments solution that’s right for you — and take your vertical software company to new heights.
PayFAQ: The Embedded Payments Podcast
Episode 29 | Why information security is critical to every software business
Use Left/Right to seek, Home/End to jump to start or end. Hold shift to jump forward or backward.
Jack Tsigankov, Payrix Information Security Director, really knows how to put things in perspective when it comes to data and information security.
As our guest on this episode of the PayFAQ Embedded Payments podcast, he tells host Bob Butler that cyber threats and attacks are constantly happening across merchants and the financial industry. In 2022 alone, there were around 1,800 publicly reported data breaches, a 40% increase from 2021 and at an all-time high average cost of over $4,000,000.
“Data and information security are not just important, but absolutely critical for our partners in the payments industry,” he says. Staying vigilant and proactive and safeguarding sensitive information is imperative for all software companies with Embedded Payments.
The leading cause of data breaches often include human error, according to Tsigankov. To prevent them, it’s crucial to implement a multi-layered security approach, involving employee training and awareness programs, robust access controls, regularly software updates, strong encryption methods for databases and using applications, and continuous monitoring for suspicious activities.
He also recommends that security audits and penetration testing should be part of a software company’s robust information security policy as well as the top 10 security controls. In addition, he suggests using tools like Big Fix or Auto Mocks that help companies automatically push updates to end users’ machines.
With a company’s credibility, trust, and success on the line, the significance of information security cannot be overstated. “Follow the best industry practices. Pick one framework, like PCI DSS or NIST, and implement their best practices in your ecosystem. By sticking to those practices, you shouldn't have any data breaches or vulnerabilities in the future.”
Don’t miss this informative conversation to learn more about what you can do to protect your payments data and what Payrix does to help protect you.