When it comes to doubters of the PCI data security standard, A. Bryan Sartin of Cybertrust says one statistic speaks for itself: No organization that has been completely compliant with PCI has been compromised. Sartin, a computer forensic investigator, says he is only “slightly biased” by the fact he teaches PCI compliance. “PCI is a very good thing,” he insists, adding that “If you are a person who performs security assessments, it’s not a burden.