The payment card industry has been working over the past several years to formalize a standard for security practices that are required for organizations who process or handle payment card transactions. The fruit of this labor is the Payment Card Industry Data Security Standard (currently at version 1.2).
This standard, which started life as the Visa Digital Dozen, is a set of focused comprehensive controls for managing the risks surrounding payment card transactions, particularly over the Internet. Of course, compliance validation is one of the requirements. MBM's PCI-DSS course will train organizations to exercise due care by performing internal validations through a repeatable, objective process. While the course will cover all of the requirements of the standard, the primary focus is on the technical controls and how they can be measured. Every student will leave the class with a toolkit that can be used to validate any PCI/DSS environment technically and the knowledge of how to use it. This course is available on-site and through a Webinar Training Session.
Here is a sampling of the training topics:
- Requirements for compliance
- Compliance guidance for each control
- Suite of tools for validating technical compliance
- Explanation of alternative controls
- Discussion of determining scope for compliance requirements