PCI DSS News
November 29, 2016
Attendees at an SAP SME Summit lauded the e-commerce front end, but some said back-end integration and payment-processing features are needed before a full migration to the platform.
June 08, 2016
Following a number of attacks on the SWIFT banking system that led to the theft of millions of dollars, SWIFT promised new rules to improve security for bank transfers.
April 28, 2016
PCI DSS 3.2 marks the start of refining the payment data regulations, rather than minor changes, and includes requirements to strengthen encryption and multifactor authentication.
February 19, 2016
The PCI council has determined its data security standard is finally mature enough to forego significant updates, so PCI DSS 3.2 will be more of an incremental modification.
PCI DSS Get Started
Bring yourself up to speed with our introductory content
A PCI assessment is an audit of the 12 credit card transaction compliance requirements required by the Payment Card Industry Data Security Standard. Continue Reading
If you think Payment Card Industry Data Security Standard is just for merchants, think again. Here's why virtually every company can boost security and address risk issues using PCI DSS. Continue Reading
Does PCI DSS 3.2 mark the end of major updates to payment security compliance standards? Expert Mike Chapple discusses the update and what it means for organizations. Continue Reading
Evaluate PCI DSS Vendors & Products
Weigh the pros and cons of technologies, products and projects you are considering.
BYOK options from public cloud providers like AWS and Azure give users more control over their data encryption keys -- but not without some tradeoffs. Continue Reading
Merchants that sell at off-site venues need to take extra care to follow PCI compliance standards. Expert Mike Chapple discusses how organizations can do this. Continue Reading
The FTC's order for PCI DSS compliance assessments is odd since PCI isn't a government regulation. Expert Mike Chapple explains the motivation driving this order. Continue Reading
Manage PCI DSS
Learn to apply best practices and optimize your operations.
Third-party vendors are necessary for organizations, but with them come more security risks. Expert Mike O. Villegas discusses how vendor risk assessments can help. Continue Reading
PCI DSS is pretty specific about security, but does it do enough for mobile payment security? Expert Mike Chapple explains why he says yes. Continue Reading
Do you have the guts and technology know-how to undertake a self-assessment of your organization's Exchange-related risks? If so, start here. Continue Reading
Problem Solve PCI DSS Issues
We’ve gathered up expert advice and tips from professionals like you so that the answers you need are always available.
With numerous security standards and certifications available, evaluating a cloud provider can be tricky. Expert Dan Sullivan explains what to look for during evaluation. Continue Reading
Point-of-sale malware, such as the recent PoSeidon malware, continues to evolve to avoid detection. So what's an enterprise to do? Expert Nick Lewis explains how the malware functions and what organizations can do about it. Continue Reading
Adobe's Common Controls Framework sets an example for enterprises struggling to manage multiple compliance standards and looking to build their own compliance framework. Continue Reading