The PCI Dream is back for another Q&A round on all things PCI.
Join this interactive session with some of the top PCI QSA’s in the country with decades of combined PCI and card processing experiences. They’ve seen it all: the good, bad and ugly; and lived to tell the tale.
Ben Rothke, David Mundhenk, Arthur Cooper, and Jeff Hall will discuss how to achieve PCI compliance in the cloud. Get answers to your most vexing PCI questions. No PCI question is out of bounds.
- Ben Rothke, Senior Security Consultant at Nettitude
- David Mundhenk, Senior Security Consultant at Herjavec Group
- Jeff Hall, Principal Security Consultant at Optiv Security
- Arthur Cooper "Coop", Senior Security Consultant at NuArx
This is Part 5 of The PCI Dream Team Q&A on BrightTALK.
The audience is highly encouraged to ask the team your toughest PCI questions.
We want to help answer your toughest PCI compliance questions. In our second, bi-monthly webinar, our goal is to help you prepare for 3.2 compliance, which takes effect February 1, 2018. This is your opportunity to learn from our QSAs, hear important use cases, and most importantly, get your questions answered.Read more >
A review of the latest ATM PCI - PTS related compliance changes, requirements and solutions.Read more >
The PCI Security Standards Council has established a suite of standards for a broad response to threats that comes in the form of PCI DSS. All Payments processors, including ATM deployers, must demonstrate PCI DSS compliance. Financial institutions should have migrated to the latest Transport Layer Security, TLS 1.2 protocol to move away from SSL and early TLS and reduce the risk of a Payments attack.
Join us May 31st where NCR’s Payments and Risk experts will discuss the background of PCI DSS and the TLS1.2 protocol and how NCR solutions can help banks drive their business and be ready for June 30th!
We want to help answer your toughest PCI compliance questions. Our experienced Qualified Security Assessors (QSAs) will be hosting monthly Q&A sessions, where we’ll give you the opportunity to learn from peers, hear important use cases, and most importantly, get your questions answered.Read more >
PCI 3.2 is now in effect. If you've hit a roadblock with the new requirements, don't worry – you are not alone! Join Accudata for our fourth Ask-A-QSA webinar and bring your toughest PCI questions. Our experienced QSAs will give you their expert guidance, as well as some tips and tricks to make sure your compliance efforts are as efficient and effective as possible.Read more >
Time is almost up – PCI 3.2 is less than a month away! Are you prepared, or are you worried about the new regulations and how they affect your business? Don’t fret; we have answers! Join Accudata for our third Ask-a-QSA webinar, where we’ll give you the opportunity to get your PCI 3.2 questions answered and get expert advice on any problems you may be facing.Read more >
La versión 3.2 del PCI DSS (Payment Card Industry Data Security Standard) ha sido anunciada - las organizaciones que deben cumplir precisan entender los cambios y sus implicaciones. Participe de nuestro webinar para entender más sobre por qué fue lanzado tan rápido y cómo puedes parar mejor a tu organización.
• El alcance de la nueva versión PCI DSS 3.2
• ¿Qué significa para su negocio?
• ¿Por qué deberías implementar los cambios, aunque no sean mandatorios?
• ¿Qué puede venir en el futuro próximo?
The PCI council announced revision 3.2 – and there are big changes for merchants and service providers that are required for compliance this year. During our webinar, you’ll get the rundown of how the most notable PCI 3.2 changes will impact your business.
- Specific PCI 3.2 changes that will impact both merchants and service providers.
- The level of effort required to remediate each change and maintain compliance.
- How changes will impact your people, processes, and technology.
- How to set a realistic timeline to achieve compliance prior to 2018.
PCI DSS compliance and data security is a perennial challenge for any organization, especially for those operating contact centers. With potentially hundreds of PCI controls to keep track of, it's easy for things to get lost in the mix.
When tackling compliance and cybersecurity issues, it's a common mistake to only focus on the organization's IT infrastructure, and neglect to examine the people and underlying processes handling sensitive customer and payment card data.
Join us in the webinar and you'll learn how to:
- Take a more holistic approach to PCI DSS compliance inside the contact center
- Understand the flow of information through your contact center & how people and processes touch payment card and sensitive customer data
- Create an action plan to reduce risk and achieve PCI DSS compliance once & for all
Without the right tools and resources, monitoring your PCI compliance can be complex and involve lots of time and costs.
Join us as we share the three best practices for monitoring PCI compliance. Alert Logic’s automated security controls streamline assessment and detection of vulnerabilities and suspicious behavior that could jeopardize your compliance status.
We’ll demo product features and show you:
- What data to monitor for PCI compliance
- How to constantly scan for issues related to PCI compliance
- What logs to review and make available for auditors
Hear from our experts about these capabilities and more in this staying ahead of PCI compliance webinar.
Demonstrating compliance with PCI DSS is far from a trivial exercise. The 12 requirements of PCI DSS often translate into a lot of time and effort to access the necessary data and reports from many different systems and tools. And, after an audit is complete many teams struggle to maintain compliance.
In this webcast, you'll hear from Jacques Lucas, a Qualified Security Assessor (QSA) with Terra Verde, and Sanjay Ramnath, VP of Product Marketing at AlienVault, sharing best practices to help you simplify implementation of PCI DSS security controls and reporting.
Join us for this webcast to learn:
- The most common challenges in meeting and maintaining compliance with PCI DSS
- Best practices to help you plan and prepare for an audit
- The core security capabilities you need to demonstrate compliance
- How AlienVault Unified Security Management can simplify the compliance process
VP of Product Marketing at AlienVault
Qualified Security Assessor (QSA) with Terra Verde
Sales Engineer at AlienVault
Today’s applications that handle payment card information are complex, dynamic and operate across different infrastructures, operating systems, and even physical locations. In many cases, these applications auto-scale to support usage spikes and are constantly updated with enhancements and new features.
Given this complexity, ensuring and demonstrating compliance with the Payment Card Industry Data Security Standard (PCI DSS) is extremely challenging.
Security teams face numerous difficulties with implementing the standard including identifying and scoping applications, segmenting them and detecting threats.
In this webinar, GuardiCore experts will show how the Centra Security Platform solves several PCI compliance challenges using Micro-Segmentation to:
-Discover and visualize workloads that are a part of the cardholder data environment
-Implement segmentation policies that separate and protect systems, even if they migrate between data centers and clouds
-Detect threats when communication flows violate segmentation policies
You’ve fulfilled the minimum requirements to comply with PCI DSS. But guess what? You still might be vulnerable to a credit card data breach. As we’ve witnessed with recent high-profile cases, companies that are PCI compliant are not necessarily immune to attacks.
So if compliance isn’t enough to guarantee security, how do companies minimize the risk of a data breach?
Join us for a one-hour webinar led by Paul Calatayud, chief information security officer at SureScripts and information security instructor for the SANS Institute. This free session will explain why compliance doesn’t necessarily mean your organization’s PCI data is secure.
The session will also cover the following areas:
Determining who’s responsible for PCI security
Third-party security practices
How a risk-based security approach augments compliance
In today’s cyber environment, IT infrastructures are constantly threatened by cybercriminals and malicious actors. According to a 2017 report by the U.S. Chamber of Commerce, “Conservative estimates put the global economic toll of cybercrime at $375 billion dollars.” Organizations like the Payment Card Industry Security Standards Council exist to develop standards to help protect sensitive and valuable data from such threats. Navigating the landscape of the PCI Data Security Standard recommendations and requirements can be difficult, especially when applying these standards to new and emerging technologies like containers and micro-services.
In this session, Coalfire, a respected PCI qualified security assessor company, and Red Hat will discuss PCI DSS, containers, and how a container platform helps support PCI DSS compliance.
The deadline to comply with Payment Card Industry Data Security Standard (PCI DSS) 3.2 is quickly approaching, leaving many businesses scrambling to understand and meet compliance requirements. Join us for an hour and learn more about the mandate and how you can prepare and be ready by February 2018.
This webinar will discuss and provide helpful information on the upcoming mandate including:
•Overview of PCI DSS 3.2
•What is new in PCI DSS 3.2 and what that means for your business
•Comprehensive solutions that will help you ensure compliance
•Mapping solutions to the needs of your department
Please visit our BrightTalk channel to register for the webinar.
Join Alexander Norell, Director of Global Risk and Compliance Services at Trustwave, as he shares his insider view of what you can expect at the upcoming 2016 Payment Card Industry Security Standards Council (PCI SSC) Europe Community Meeting in October.
Alexander’s findings will be based on what he learns from his attendance at the North America Community Meeting and his insight as a subject matter expert on PCI compliance.
During the webinar, Alexander will:
• Alert you to trending topics and their implications
• Share takeaways from participants as well as SSC leaders
• Analyse the impact to the European community
A versão 3.2 do PCI DSS (Payment Card Industry Data Security Standard) já foi anunciada – as organizações precisam entender as mudanças e suas implicações. Participe para aprender mais sobre o porquê foi lançado tão rápido e como você pode preparar a sua organização.
Participe deste webinário para aprender sobre:
• O escopo na nova versão PCI DSS 3.2
• Que significa para o seu negócio?
• Porque você deveria implementar essas mudanças, mesmo que não forem mandatórías?
• O que pode vir no futuro próximo?
On May 25, 2018, the European Union's General Data Protection Regulation (GDPR) went into effect, becoming the world's strictest and most comprehensive data protection legislation. Companies around the world, regardless of whether they are physically located within EU borders, had to meet compliance requirements if they process the data of EU citizens, creating a huge headache for any organization running a call or contact center.
For contact centers that have troves of sensitive customer information, GDPR compliance can easily become a massive undertaking. However, using preexisting tried-and-true frameworks like the PCI DSS, companies can relieve the burden of meeting compliance obligations.
Join Semafone and NCC for this informative session, where you'll learn:
- How to achieve GDPR compliance in your call or contact center
- How to use existing data security frameworks like the PCI DSS to simplify compliance efforts
- How to improve data security inside your contact center while enabling a more seamless customer experience
Additionally, registrants will receive a free copy of Semafone's GDPR Guide for Contact Centers.
Reserve your space now!
About Jay Trinckes:
John ‘Jay’ Trinckes, Jr., CISSP, CISM, CRISC, HITRUST CSF Practitioner leads NCC Group’s healthcare practice by assisting clients in managing their IT risk to ensure they are not subject to cyber-attack along with helping them validate their compliance with IT regulations such as HIPAA. Jay is the author of three books, “How Healthcare Data Privacy Is Almost Dead…and What Can Be Done to Revive It! (2017), "The Definitive Guide to Complying with the HIPAA/HITECH Privacy and Security Rules" (2012), and "The Executive MBA in Information Security" (2009), and has a wide range of experience in computer networks, vulnerability and penetration testing, security, compliance, and risk assessment.
In this session, we cover the newest payment methods organizations are using, and we'll discuss how executives plan the move to more secure and convenient ways to receive consumer payments. We'll also include exclusive research from Ovum!
- Learn about the top ten new ways to pay
- Steps executives are taking to increase security
- New payment method that could reduce the number of PCI controls in your call center by up to 90%
With more and more organisations using the services of a cloud provider, what impact does this have on securing Cardholder Data. This presentation will give an general overview of the PCI SSC, and then focus specifically on the issues relating to storing data in the cloud. Especially it will look at the key issues of “Who is responsible?” and “What happens when there is a data breach”. In addition the presentation will look briefly at the impact of the recent GDPR on cloud storage and cloud providers.Read more >
With the onslaught of cyberattacks we've already seen in just this year alone, data security has never been a higher priority for organizations. Protecting customer data is of utmost importance, especially with governments and regulatory bodies increasingly turning their attention to these issues and producing legislation to implore companies to take additional security measures.
Contact centers are a part of the organization particularly fraught with responsibility, serving as a vast repository of sensitive customer data and finding themselves to be a favorite target for hackers and fraudsters. Because of this, contact centers face a myriad of laws and regulations governing the way they treat this data, such as the PCI DSS for those taking payments, among many others.
Register now to join Scott Kaplan from Semafone and Chanley Howell from Foley & Lardner LLP, two leaders in the data security field for an insightful webinar where you'll learn:
- The top data security regulations, laws, and standards bodies affecting contact center data governance
- How to comply with sometimes competing regulatory requirements and resolve conflicting stipulations
- How to achieve compliance more simply and cost effectively
Additionally, registrants will receive a free copy of Semafone's newly released Navigating the Challenging Regulatory Landscape in Your Contact Center.
Reserve your space now!
Any company that takes payments over the phone must comply with the requirements of the Payment Card Industry Data Security Standards (PCI DSS), and all the costs and headaches that come with it.
Learn about how to achieve PCI DSS compliance for your entire contact centre, and how to reduce the amount of applicable PCI DSS controls in your business infrastructure.