The PCI Dream is back for another Q&A round on all things PCI.
Join this interactive session with some of the top PCI QSA’s in the country with decades of combined PCI and card processing experiences. They’ve seen it all: the good, bad and ugly; and lived to tell the tale.
Ben Rothke, David Mundhenk, Arthur Cooper, and Jeff Hall will discuss how to achieve PCI compliance in the cloud. Get answers to your most vexing PCI questions. No PCI question is out of bounds.
- Ben Rothke, Senior Security Consultant at Nettitude
- David Mundhenk, Senior Security Consultant at Herjavec Group
- Jeff Hall, Principal Security Consultant at Optiv Security
- Arthur Cooper "Coop", Senior Security Consultant at NuArx
This is Part 5 of The PCI Dream Team Q&A on BrightTALK.
The audience is highly encouraged to ask the team your toughest PCI questions.
We want to help answer your toughest PCI compliance questions. In our second, bi-monthly webinar, our goal is to help you prepare for 3.2 compliance, which takes effect February 1, 2018. This is your opportunity to learn from our QSAs, hear important use cases, and most importantly, get your questions answered.Read more >
** Warning - This webinar is only for informational purposes. We do not condone or encourage any malicious activity. The knowledge you gain from this webinar should be used to protect your own infrastructure and web applications. **
PCI-DSS needs no introduction. The Payment Card Industry Data Security Standard applies to any organisation accepting credit card details in some way or the other. This webinar is going to share some of the latest techniques cyber criminals are using to break web applications.
Join us to learn how they are doing this and what you should do to protect your organisation and compliance status.
A review of the latest ATM PCI - PTS related compliance changes, requirements and solutions.Read more >
The PCI Security Standards Council has established a suite of standards for a broad response to threats that comes in the form of PCI DSS. All Payments processors, including ATM deployers, must demonstrate PCI DSS compliance. Financial institutions should have migrated to the latest Transport Layer Security, TLS 1.2 protocol to move away from SSL and early TLS and reduce the risk of a Payments attack.
Join us May 31st where NCR’s Payments and Risk experts will discuss the background of PCI DSS and the TLS1.2 protocol and how NCR solutions can help banks drive their business and be ready for June 30th!
We want to help answer your toughest PCI compliance questions. Our experienced Qualified Security Assessors (QSAs) will be hosting monthly Q&A sessions, where we’ll give you the opportunity to learn from peers, hear important use cases, and most importantly, get your questions answered.Read more >
Healthcare call and contact centers face some tough challenges when it comes to data security. In fact, healthcare data breaches are reported at a rate of more than one per day in the US alone, exposing patients’ personally identifiable information (PII)—from medical records to payment card data and beyond—to the wrong people.
Earlier this year, IBM published their 2018 Cost of a Data Breach Report, which stated that, for the 8th year in a row, healthcare organizations had the highest costs associated with data breaches—$408 per lost or stolen record. That’s nearly three times higher than the cross-industry average of $148.
These challenges are not unique to the healthcare sector. All call and contact centers face similar obstacles and need to consider if their Payment Card Industry Data Security Standard (PCI DSS) compliance strategy is sound.
Join Genesys, Semafone and Sutter Physician Services (SPS) in this webinar to learn how SPS:
• Overcame IVR frustration, improved customer service and reduced abandoned call rates
• Increased customer data security—no need to verbalize card data
• De-scoped for PCI DSS
Reserve your space now.
PCI 3.2 is now in effect. If you've hit a roadblock with the new requirements, don't worry – you are not alone! Join Accudata for our fourth Ask-A-QSA webinar and bring your toughest PCI questions. Our experienced QSAs will give you their expert guidance, as well as some tips and tricks to make sure your compliance efforts are as efficient and effective as possible.Read more >
Time is almost up – PCI 3.2 is less than a month away! Are you prepared, or are you worried about the new regulations and how they affect your business? Don’t fret; we have answers! Join Accudata for our third Ask-a-QSA webinar, where we’ll give you the opportunity to get your PCI 3.2 questions answered and get expert advice on any problems you may be facing.Read more >
La versión 3.2 del PCI DSS (Payment Card Industry Data Security Standard) ha sido anunciada - las organizaciones que deben cumplir precisan entender los cambios y sus implicaciones. Participe de nuestro webinar para entender más sobre por qué fue lanzado tan rápido y cómo puedes parar mejor a tu organización.
• El alcance de la nueva versión PCI DSS 3.2
• ¿Qué significa para su negocio?
• ¿Por qué deberías implementar los cambios, aunque no sean mandatorios?
• ¿Qué puede venir en el futuro próximo?
The PCI council announced revision 3.2 – and there are big changes for merchants and service providers that are required for compliance this year. During our webinar, you’ll get the rundown of how the most notable PCI 3.2 changes will impact your business.
- Specific PCI 3.2 changes that will impact both merchants and service providers.
- The level of effort required to remediate each change and maintain compliance.
- How changes will impact your people, processes, and technology.
- How to set a realistic timeline to achieve compliance prior to 2018.
PCI DSS compliance and data security is a perennial challenge for any organization, especially for those operating contact centers. With potentially hundreds of PCI controls to keep track of, it's easy for things to get lost in the mix.
When tackling compliance and cybersecurity issues, it's a common mistake to only focus on the organization's IT infrastructure, and neglect to examine the people and underlying processes handling sensitive customer and payment card data.
Join us in the webinar and you'll learn how to:
- Take a more holistic approach to PCI DSS compliance inside the contact center
- Understand the flow of information through your contact center & how people and processes touch payment card and sensitive customer data
- Create an action plan to reduce risk and achieve PCI DSS compliance once & for all
Maintaining and proving PCI DSS compliance can be a constant headache.
Without the right tools and resources, monitoring your PCI compliance can be complex and involve lots of time and costs
Join us as we share the three best practices for monitoring PCI compliance .. Alert Logic’s automated security controls streamline assessment and detection of vulnerabilities and suspicious behavior that could jeopardize your compliance status.
We’ll discuss product features and show you:
-What data to monitor for PCI compliance
-How to look for issues related to PCI compliance
-What logs to review and make available for auditors
Hear from our experts about these capabilities and more in this ’staying ahead of PCI compliance webinar.
Additionally, this webinar will feature a Q&A session with Alert Logic customer Lee Ramsey, Co-founder of Pre-Fi, a provider of pre-qualification tools for consumer loan approvals. Lee will share how Alert Logic solutions help with PCI compliance preparedness.
Demonstrating compliance with PCI DSS is far from a trivial exercise. The 12 requirements of PCI DSS often translate into a lot of time and effort to access the necessary data and reports from many different systems and tools. And, after an audit is complete many teams struggle to maintain compliance.
In this webcast, you'll hear from Jacques Lucas, a Qualified Security Assessor (QSA) with Terra Verde, and Sanjay Ramnath, VP of Product Marketing at AlienVault, sharing best practices to help you simplify implementation of PCI DSS security controls and reporting.
Join us for this webcast to learn:
- The most common challenges in meeting and maintaining compliance with PCI DSS
- Best practices to help you plan and prepare for an audit
- The core security capabilities you need to demonstrate compliance
- How AlienVault Unified Security Management can simplify the compliance process
VP of Product Marketing at AlienVault
Qualified Security Assessor (QSA) with Terra Verde
Sales Engineer at AlienVault
Today’s applications that handle payment card information are complex, dynamic and operate across different infrastructures, operating systems, and even physical locations. In many cases, these applications auto-scale to support usage spikes and are constantly updated with enhancements and new features.
Given this complexity, ensuring and demonstrating compliance with the Payment Card Industry Data Security Standard (PCI DSS) is extremely challenging.
Security teams face numerous difficulties with implementing the standard including identifying and scoping applications, segmenting them and detecting threats.
In this webinar, GuardiCore experts will show how the Centra Security Platform solves several PCI compliance challenges using Micro-Segmentation to:
-Discover and visualize workloads that are a part of the cardholder data environment
-Implement segmentation policies that separate and protect systems, even if they migrate between data centers and clouds
-Detect threats when communication flows violate segmentation policies
You’ve fulfilled the minimum requirements to comply with PCI DSS. But guess what? You still might be vulnerable to a credit card data breach. As we’ve witnessed with recent high-profile cases, companies that are PCI compliant are not necessarily immune to attacks.
So if compliance isn’t enough to guarantee security, how do companies minimize the risk of a data breach?
Join us for a one-hour webinar led by Paul Calatayud, chief information security officer at SureScripts and information security instructor for the SANS Institute. This free session will explain why compliance doesn’t necessarily mean your organization’s PCI data is secure.
The session will also cover the following areas:
Determining who’s responsible for PCI security
Third-party security practices
How a risk-based security approach augments compliance
In today’s cyber environment, IT infrastructures are constantly threatened by cybercriminals and malicious actors. According to a 2017 report by the U.S. Chamber of Commerce, “Conservative estimates put the global economic toll of cybercrime at $375 billion dollars.” Organizations like the Payment Card Industry Security Standards Council exist to develop standards to help protect sensitive and valuable data from such threats. Navigating the landscape of the PCI Data Security Standard recommendations and requirements can be difficult, especially when applying these standards to new and emerging technologies like containers and micro-services.
In this session, Coalfire, a respected PCI qualified security assessor company, and Red Hat will discuss PCI DSS, containers, and how a container platform helps support PCI DSS compliance.
The deadline to comply with Payment Card Industry Data Security Standard (PCI DSS) 3.2 is quickly approaching, leaving many businesses scrambling to understand and meet compliance requirements. Join us for an hour and learn more about the mandate and how you can prepare and be ready by February 2018.
This webinar will discuss and provide helpful information on the upcoming mandate including:
•Overview of PCI DSS 3.2
•What is new in PCI DSS 3.2 and what that means for your business
•Comprehensive solutions that will help you ensure compliance
•Mapping solutions to the needs of your department
Please visit our BrightTalk channel to register for the webinar.
Join Alexander Norell, Director of Global Risk and Compliance Services at Trustwave, as he shares his insider view of what you can expect at the upcoming 2016 Payment Card Industry Security Standards Council (PCI SSC) Europe Community Meeting in October.
Alexander’s findings will be based on what he learns from his attendance at the North America Community Meeting and his insight as a subject matter expert on PCI compliance.
During the webinar, Alexander will:
• Alert you to trending topics and their implications
• Share takeaways from participants as well as SSC leaders
• Analyse the impact to the European community
A versão 3.2 do PCI DSS (Payment Card Industry Data Security Standard) já foi anunciada – as organizações precisam entender as mudanças e suas implicações. Participe para aprender mais sobre o porquê foi lançado tão rápido e como você pode preparar a sua organização.
Participe deste webinário para aprender sobre:
• O escopo na nova versão PCI DSS 3.2
• Que significa para o seu negócio?
• Porque você deveria implementar essas mudanças, mesmo que não forem mandatórías?
• O que pode vir no futuro próximo?
In this session, we cover the newest payment methods organizations are using, and we'll discuss how executives plan the move to more secure and convenient ways to receive consumer payments. We'll also include exclusive research from Ovum!
- Learn about the top ten new ways to pay
- Steps executives are taking to increase security
- New payment method that could reduce the number of PCI controls in your call center by up to 90%
On May 25, 2018, the European Union's General Data Protection Regulation (GDPR) went into effect, becoming the world's strictest and most comprehensive data protection legislation. Companies around the world, regardless of whether they are physically located within EU borders, had to meet compliance requirements if they process the data of EU citizens, creating a huge headache for any organization running a call or contact center.
For contact centers that have troves of sensitive customer information, GDPR compliance can easily become a massive undertaking. However, using preexisting tried-and-true frameworks like the PCI DSS, companies can relieve the burden of meeting compliance obligations.
Join Semafone and NCC for this informative session, where you'll learn:
- How to achieve GDPR compliance in your call or contact center
- How to use existing data security frameworks like the PCI DSS to simplify compliance efforts
- How to improve data security inside your contact center while enabling a more seamless customer experience
Additionally, registrants will receive a free copy of Semafone's GDPR Guide for Contact Centers.
Reserve your space now!
About Jay Trinckes:
John ‘Jay’ Trinckes, Jr., CISSP, CISM, CRISC, HITRUST CSF Practitioner leads NCC Group’s healthcare practice by assisting clients in managing their IT risk to ensure they are not subject to cyber-attack along with helping them validate their compliance with IT regulations such as HIPAA. Jay is the author of three books, “How Healthcare Data Privacy Is Almost Dead…and What Can Be Done to Revive It! (2017), "The Definitive Guide to Complying with the HIPAA/HITECH Privacy and Security Rules" (2012), and "The Executive MBA in Information Security" (2009), and has a wide range of experience in computer networks, vulnerability and penetration testing, security, compliance, and risk assessment.