News roundup
May 2nd, 2007 by datasecurity Posted in Conferences, Europe, PCI DSS, PCI SSC
I’ve been on extended leave for a while so here’s the list of news evens while I was away.
Public Sector Forums in the UK is hosting “Achieving PCI DSS (Credit Card Security) Compliance in the Public Sector“. They have a good list of speakers lined up including:
Branko Lolich, Data Security Manager EMEA, American Express; Paul Baker, Vice President Advanced Payment Solutions, MasterCard; Steve Wilson, Head of PCI DSS Compliance, Visa and Tim Holman, PCI Solutions Consultant & Security MVP at One-SEC.
WaMu is working its way into contactless payments. Check out the related articles associated with this news. Think iCVV [PDF].
I do not speak Spanish, but if you live/work in Spain you should check out Inza’s blog posts on PCI DSS compliance there. Don’t forget we also have our favorite Spain PCI blogger, Robert Newby.
First Data’s CISO, Phil Mellinger, has some things to say about PCI compliance. Since First Data is the largest acquiring processor globally, I would listen a little.
We are reminded that the PCI SSC is still looking for participating organizations. Learn more at the PCI Security Standards website. I hear they are looking for companies in all industries and globally around the world, just like the standard itself.
Here’s an interview with Seana Pitt, in an article titled “Meet the PCI DSS, avoid being the next TJX“
![[del.icio.us]](http://images.del.icio.us/static/img/delicious.small.gif){kind=small}
2 Responses to “News roundup”
By Rob Newby on May 2, 2007
…and you don’t have to speak Spanish to read mine.
I’ll be speaking with Tim Holman at OneSec this week (hopefully tomorrow), so will ask if I can get a sneak preview of the ‘Compliance in the Public Sector’ debate. I doubt he’ll let me in on any secrets.
And hooray for First Data, it’s BECAUSE they are so pro-active with security that they are the largest acquiring processor globally. I might start putting more emphasis on positive stories like them instead of FUD like TJX in future.
For the record, I think Phil Mellinger is probably right, the easier you make it to comply, the easier it is to slowly tighten the screws. It’s still sad that that has to be the case though, and it’s probably too late to dumb down the PCI standard.