The Payment Card Industry Security Standards Council on has released updated standards on ways to promote company-wide security awareness.
The Wakefield, Mass., group published a series of best practices for educating staff on protecting payment information.
Recommendations include assembling a security awareness team and developing a checklist for employee trainings.
"This guidance can help businesses focus on the people part of the equation and build a greater culture of security awareness and vigilance across their organizations," said Troy Leach, the PCI's chief technology officer, in an Oct. 30 press release.
The council, which maintains the PCI data security standards, last month released guidance for merchants on ways to protect against card skimming. The group is also expected to release a new set of standards next year to give retailers better protection against hackers.