Secure Payments, PCI DSS, Regulatory Compliance Blog

CPISM and CPISA get positive reviews from industry expert

November 13th, 2008 by admin Posted in Conferences, Society of Payment Security Professionals

James DeLuccia is one of those people who (quite literally) reads and writes about PCI DSS and regulatory compliance issues.  He authors a blog on PCI DSS and has written several books on regulatory issues.  He recently sat for the CPISM and CPISA certifications and had this to say about the training and exam:

This week I sat through undoubtedly the best education I have had surrounding the payment industry and specifically PCI DSS.

To provide some context here I need to highlight that I have attended the Visa QSA training, ETA training sessions, RSA VISA conference hall sessions, third party PCI training, and have even delivered PCI training.

The training was three very full days and covered their two subject areas - the Auditor and Manager portions.  There is a fourth day that is made up of just under 5 hours of testing, so not really a day of learning but demonstration.

If your business stores, processes, or transmits credit cards OR your business makes sure companies do not have security concerns for those systems you must take this training.

Thank you James for your glowing comments.  We have put much effort into making sure the attendees receive more than just PCI training but more comprehensive information about the payment-card industry and regulatory issues such as personally identifiable information (PII).

To learn more about the certification you can check out the Society of Payment Security Professionals and join up as a member.  There is an online forum for posting questions and getting replies.

You can also register for the Aegis newsletter and receive industry tips and highlights.

Update: Branden Williams, Director of the PCI Practice at Verisign, also wrote a positive review of the CPISM training.

If you are not an employee of a QSAC and are looking for a GOOD source of training around PCI, data breach laws, and a detailed look into the payment industry, this training is for you. If you opt for all three days of training, you will be taken through the process first as an auditor, then as a manager.

For those merchants that have been begging for solid, industry-specific training around PCI, this is where you need to go.

[Slashdot] [Digg] [Reddit] [del.icio.us] [Facebook] [Technorati] [Google] [StumbleUpon]

  1. 1 Trackback(s)

  2. Dec 3, 2008: PCI Blog - Compliance Demystified » Blog Archive » Successful CPISM/CPISA Training Class

Sorry, comments for this entry are closed at this time.