PCI and the Next Generation of Payment Security

Posted by Laura K. Gray on 26 Oct, 2017 in Community Meetings and 3DS and Multi-Factor Authentication and Software and QIR and PCI DSS and Third Party Risk
PCI SSC Chief Technology Officer Troy Leach talked with PCI Europe Community Meeting attendees in Ba... READ MORE

Payment Security Insights with EUCM Speaker Gary Glover

Posted by Lindsay Goodspeed on 25 Oct, 2017 in Interview and Community Meetings and PCI DSS and QIR and QSA and Remote Access
  In this post, we get insights from Gary Glover, CISSP, QSA, PA-QSA, CISA, Vice President of Assess... READ MORE

PCI in Japan: Training for Merchants and Assessors Supports PCI DSS Adoption

Posted by Laura K. Gray on 19 Sep, 2017 in PCI DSS and Training and APAC and QSA
The PCI Security Standards Council continues to work with stakeholders in Japan to help support PCI ... READ MORE

Feedback Period: PCI DSS and PA-DSS

Posted by PCI Security Standards Council on 8 Sep, 2017 in Participation and PCI DSS and PA-DSS and Request for Comments
From 6 September to 15 November, PCI SSC stakeholders have the opportunity to provide feedback on th... READ MORE

Keeping up to Date with PCI DSS Dates

Posted by Gill Woodcock on 25 Aug, 2017 in PCI DSS and TLS/SSL and Multi-Factor Authentication and Scoping and Segmentation
In our previous post, we highlighted recommendations for preparing for the 30 June 2018 PCI Data Sec... READ MORE

FAQ: Is Two-Step Authentication Acceptable for PCI DSS Requirement 8.3?

Posted by Laura K. Gray on 11 Aug, 2017 in FAQ and PCI DSS and Multi-Factor Authentication and Remote Access and Passwords
  Did you know that the Frequently Asked Questions (FAQ) resource on the PCI SSC website is updated ... READ MORE

Navigating your Path to Payment Security with the Prioritized Approach to PCI DSS

Posted by Lauren Holloway on 8 Aug, 2017 in PCI DSS and Prioritized Approach
  Director of Data Security Standards Lauren Holloway discusses a roadmap organizations can use to m... READ MORE

What’s Next for PCI DSS?

Posted by Laura K. Gray on 3 Aug, 2017 in PCI DSS and Interview
  PCI Data Security Standard (PCI DSS) version 3.2 was published in April 2016. In this blog post we... READ MORE

Reducing Risk: SSL/Early TLS Mitigation and Migration

Posted by Laura K. Gray on 28 Jul, 2017 in eCommerce and Patching and TLS/SSL and Awareness and PCI DSS and Encryption
  Is your organization still using the SSL/early TLS protocols? Do you work with online and e-commer... READ MORE

FAQ: How does Encrypted Cardholder Data Impact PCI DSS Scope?

Posted by Laura K. Gray on 21 Jul, 2017 in FAQ and PCI DSS and Scoping and Point to Point Encryption (P2PE) and Encryption
  Did you know that the Frequently Asked Questions (FAQ) resource on the PCI SSC website is updated ... READ MORE

Are You Ready for 30 June 2018? Saying Goodbye to SSL/early TLS

Posted by Laura K. Gray on 30 Jun, 2017 in TLS/SSL and eCommerce and Encryption and PCI DSS and Patching and Awareness
  Is your organization still using the SSL/early TLS protocols? Do you work with online and e-commer... READ MORE

Understanding New PCI Guidance on MFA

Posted by Laura K. Gray on 9 Feb, 2017 in PCI SSC and Multi-Factor Authentication and PCI DSS and Guidance and Interview and Passwords
  Attackers continue to compromise valid credentials to access company networks and steal data. To h... READ MORE