Hi [[ session.user.profile.firstName ]]

Straight Talk on the New PCI Tokenization Guidelines

With the August 2011 PCI Standards Council update, internal tokenization has clearly gained momentum as the lowest impact solution that large merchants can implement to achieve PCI compliance for stored cardholder data. However, not all tokenization solutions are created equal; many do not apply rec
With the August 2011 PCI Standards Council update, internal tokenization has clearly gained momentum as the lowest impact solution that large merchants can implement to achieve PCI compliance for stored cardholder data. However, not all tokenization solutions are created equal; many do not apply recommended network security or authentication controls.

In this session, independent Payment Card Industry QSA (Qualified Security Assessor) expert Walter Conway gives insight directly from field engagements to illustrate best practices for solution selection and implementation. In addition, all registrants will receive a free copy of Walter's whitepaper “PCI DSS Tokenization Buyers Guide.”.
Recorded Nov 29 2011 57 mins
Your place is confirmed,
we'll send you email reminders
Presented by
Walter Conway, independent Payment Card Industry QSA
Presentation preview: Straight Talk on the New PCI Tokenization Guidelines
Recommended for you:
  • Date
  • Rating
  • Views
  • April Monthly Threat Webinar – 0-Days & Virtual Patching April Monthly Threat Webinar – 0-Days & Virtual Patching Jon Clay, Sr. Manager, Global Threat Communications at Trend Micro Recorded: Apr 29 2016 31 mins
    This month’s threat webinar will discuss how 0-days are used, who uses them, and what the good vulnerability researchers do to ensure people and organizations are protected.
  • Application Security Monitoring Via The SOC Application Security Monitoring Via The SOC Emil Kiner, HPE Product Manager Recorded: Apr 28 2016 22 mins
    Application Defender can provide consistent and centralized logging of application use and abuse to SOCs or others tasked with Security Monitoring. Learn about the Application Logging categories and use cases that will enable you to gain visibility into application activity across the whole enterprise without changing source or parsing logs.
  • Optimize Your Infrastructure With Open Technologies in the Industrial IoT Optimize Your Infrastructure With Open Technologies in the Industrial IoT Jason Stamper 451 Research Analyst, Data Management and Analytics, Brian Clark Objectivity VP of Products Recorded: Apr 28 2016 59 mins
    The Industrial Internet of Things is rapidly evolving, both in terms of its business requirements and the enabling technologies needed to improve decision-making and gain competitive advantage. The ideal technical solution should be able to fuse streaming Fast Data coming from IoT devices and sensors with static Big Data about customers and assets.

    In this webinar, hosted by Brian Clark of Objectivity and analyst Jason Stamper of 451 Research, we’ll discuss how to augment these critical categories:

    · Configuration management
    · Predictive maintenance
    · Supply chain optimization

    We’ll explain the technical challenges involved when supporting massive volumes of data in a mixed workload environment, and how to leverage open technologies, such as Spark and HDFS, to enable real-time IoT intelligence.
  • Managing Cyber Risk From the Inside Out Managing Cyber Risk From the Inside Out Humphrey Christian, Vice President, Product Management, Bay Dynamics Recorded: Apr 28 2016 46 mins
    Security practitioners must take a proactive, inside out approach to managing their organization’s cyber risk. But the challenges lie in effectively measuring the overall risk posture of the business. The manual process tied to analyzing security data today is demanding and error prone. To address this, the security and risk department needs an automated and repeatable process that makes sense of the volumes of security data from their existing solutions. This would allow them to effectively communicate a traceable and actionable view of cyber risk to line of business owners and the board of directors.

    Please join us on Thursday, April 28, 2016 at 10:00 a.m. PT for a live Bay Dynamics webinar as Humphrey Christian, Vice President, Product Management, explains how your organization can obtain a 360 degree view of your cyber risk posture.
  • Building An IT Vendor Risk Management Program Building An IT Vendor Risk Management Program Mike Rothman, Securosis | Tom Turner, BitSight Recorded: Apr 28 2016 58 mins
    Recent high profile data breaches have made it obvious that organizations often underestimate the risk their vendors present, and struggle to evaluate third party cyber risk.

    In this webinar Mike Rothman, Analyst & President of Securosis, and Tom Turner, President and COO of BitSight describe how organizations can build a systematic means to evaluate their IT risk presented by business partners and vendors.

    Viewers will learn about:

    - Understanding Third Party IT Risk
    - Structuring Vendor Risk Management Programs
    - Evaluating Vendor Risk
    - Ongoing Vendor Monitoring and Communication
  • Next Generation of Hadoop Security & Governance Next Generation of Hadoop Security & Governance Andrew Ahn, Balaji Ganesan, Hortonworks Recorded: Apr 28 2016 54 mins
    How do you keep track of large number of diverse data objects in your data lake that continue to increase every day? Now that Apache Hadoop has become a critical component of your data architecture, how do you know with confidence which piece of data came from which source and how did it change over time? Moreover, how do you use this valuable information to secure your Hadoop ecosystem?

    Join us on this webinar on April 28, 2016 at 9:00 AM PST to learn what are the latest developments for data governance and security in Hadoop and how organizations can leverage metadata-based governance controls to effectively address compliance and security requirements.
  • Spring Launch 2016 Spring Launch 2016 Cradlepoint Recorded: Apr 28 2016 49 mins
    Cradlepoint, the global leader in software-defined 4G LTE network solutions for enterprises, has announced the world’s first suite of LTE Advanced (LTE-A) routing platforms for branch and in-vehicle networks.

    As carriers are introducing Category 6 LTE-A technology into their networks to increase bandwidth speeds and coverage, Cradlepoint is the first to empower businesses to leverage these capabilities with an enterprise-grade WAN solution.

    Join Cradlepoint product managers for an exclusive live webinar on Thursday, April 28, at 11:30am ET/16.30 BST to explore various ways that Cradlepoint’s Spring Launch is poised to boost performance and cost efficiencies for enterprise networks, including:

    First to Support LTE Advanced
    — New LTE Advanced modem technology enables improved speed and WAN resilience
    — Auto-carrier selection simplifies deployments and installations

    Enhancements to Industry-Leading Failover with Out of Band Management
    — Enhanced failover/failback with CP Inline Failover and Modem Standby Mode
    — OOBM capability extended to additional devices on the LAN

    Improved In-Vehicle & Fixed Edge Routing Capabilities
    — Advanced Routing protocols bring enterprise routing capabilities to edge platforms
    — Home Station Fast Data Offload optimizes vehicle investments
    — New Enterprise Cloud Manager features enable better network visibility and management
  • Black Duck Hub 3.0:  Enhanced Policy Management Black Duck Hub 3.0: Enhanced Policy Management Pat Durante - Senior Director Education Services, John Beaudoin - Senior Instructional Designer, Dave Gruber - VP of Product Recorded: Apr 28 2016 58 mins
    Join us for our next customer webinar covering the new features available in Black Duck Hub 3.0.

    The latest version is designed to help Hub and Protex users streamline Continuous Integration (CI) and DevOps processes through robust policy management and rapid scanning. These capabilities provide complete visibility into the open source in apps and containers, accelerating development through early and continuous detection of vulnerabilities and out-of-policy code.

    During this webinar, we’ll show you how to leverage Hub 3.0 to establish policies around the use of open source software in order to lower your organizational security, license and operational risk.

    Following the demonstration, we’ll leave plenty of time for you to ask our product experts questions.

    You will learn:
    •Overview of the new features, including policy management, improved scanning, additional Linux distribution support, and integration with TeamCity
    •How to quickly establish open source security policies for existing and new projects
    •Ways to leverage policy violations to flag or fail builds in a continuous integration environment (such as Jenkins)
  • The First 72 Hours - Dealing with the Crucial Time in Incident Response The First 72 Hours - Dealing with the Crucial Time in Incident Response Moderator: Dan Raywood - Speakers: Justin Harvey, Steven Furnell & Jessica Barker Recorded: Apr 28 2016 62 mins
    The initial signs that you have a security incident on your hands are rarely black and white. The first questions you have to ask yourself are "Is this a real incident?" and "How should I respond?" Based on our first-hand experience, a rapid response in the first 72 hours is critical.
    In this webinar we will discuss the main response tactics to contain and understand an incident, and offer best practise on investigation, identification and containment of the incident before responding.
    Key Takeaways:
    *What are the difference between incursion and persistent detection
    *Identify key activities to perform in the first 72 hours
    *Understand why immediately stopping the attacker may cause more disruption .
  • Driving Effective Data Governance & Protection – a view from Prudential Plc Driving Effective Data Governance & Protection – a view from Prudential Plc Sunil Choudrie, Christian Brindley, Keith Vallance, Tim Davie-Baguley, Helen Orrick Recorded: Apr 28 2016 60 mins
    Like many organisations, Prudential has to ensure it protects sensitive data. Getting it right results in satisfied customers, regulators and shareholders and avoids the reputational damage and legal penalties associated with a data breach. With the forthcoming EU General Data Protection Regulation now agreed for implementation, we think now is the right time for organisations to review their data governance and protection requirements. During this webinar we will cover today’s challenges in ensuring good data governance and enter into a panel discussion with Prudential about their approach and lessons learned, including their implementation of Symantec Data Loss Prevention and Boldon James data classification technology. There will also be an opportunity to engage in a Question and Answer session.

    So if you want to give your data governance program a head start, register today.

Embed in website or blog

Successfully added emails: 0
Remove all
  • Title: Straight Talk on the New PCI Tokenization Guidelines
  • Live at: Nov 29 2011 6:00 pm
  • Presented by: Walter Conway, independent Payment Card Industry QSA
  • From:
Your email has been sent.
or close
You must be logged in to email this