How e-commerce retailers are managing cybersecurity
February 17, 2020There is an inherent risk to doing business online. In order to function, businesses need to be able to collect personal information, such as addresses, credit card numbers or bank account information and potentially social security numbers. Customers expect a level of security when shopping online, leading e-commerce retailers to prioritize cybersecurity efforts.
In an article for Forbes, Dan Pitman outlined the methods that e-commerce retailers have been using—and should be using—to protect secure data.
One of the easiest ways retailers manage cybersecurity, says Pitman, is by making it a priority. Online retailers need to ensure they are up to date on the latest security concerns and have the latest technology in place. However, with e-commerce security may take a back seat to the customer experience.
“Revenue directly impacts retailer’s perception of cyber-attacks; crypto mining malware on servers can be perceived as “costing” less than the actions to remove it,” stated Pitman. “Taking longer to release new features because of security testing may be perceived as a threat to the bottom line, but ultimately this demonstrates short term thinking and risks longer term damage.”
Pitman also shared that following current standards, such as the Payment Card Industry Data Security Standard (PCI DSS), is a key management tactic. Retailers that meet PCI standards show they have control over payment information and have evaluated their system to ensure steps are in place to address data theft and fraud.
E-commerce retailers often have various components that are talking to each other and exchanging data. Retailers should sanitize data so that only those required elements that need to be shared are shared. “Letting the remote application deal with interpretation hugely increases the likelihood of remote compromise,” says Pitman.
Last, but certainly not least, is that e-commerce retailers take every step available to authenticate users. By doing this, the retailer can confirm that the individual accessing the site has an appropriate level of access and is acting in an expected manner.
Capitol students studying cybersecurity take classes in secure coding, scripting languages, secure data communications and cryptography, malware analysis/reverse engineering and digital forensics to prepare them to protect all businesses, including e-commerce retailers.
Want to learn about cybersecurity? Capitol Tech offers bachelor's, master's and doctorate degrees in cyber and information security. Many courses are available both on campus and online. To learn more about Capitol Tech’s degree programs, contact admissions@captechu.edu.