Lib de Veyra new Chairperson for PCI SSC
Monday, February 2nd, 2009 Posted in Card Brands, PCI SSC | 1 Comment »Today the PCI SSC named its new Chairperson for a term of the next 12 months. That person is JCB's own Lib de Veyra. I've known Lib for a number of years and have only positive things to say about ...
PCI DSS Webinar on version 1.2
Thursday, November 13th, 2008 Posted in PCI DSS, PCI SSC | No Comments »Did you miss the PCI SSC's webinar on PCI DSS version 1.2 in November? Did you miss the Community Meeting in Orlando or Brussels? Do you still want to learn about the changes and updates to the PCI DSS standard? There ...
PCI DSS version 1.2 differences and updates
Wednesday, October 1st, 2008 Posted in Approved Scanning Vendor, Compensating Controls, Compliance, Merchant, PCI DSS, PCI SSC, Service Provider, Third-Parties, Web Applications, Wireless | 11 Comments »On October 1, 2008 the PCI SSC released version 1.2 of the PCI DSS requirements. There are a number of changes as outlined previously in the update document. The PCI SSC has established a life cycle process that will ensure ...
Update from PCI SSC Community Meeting
Thursday, September 25th, 2008 Posted in PCI SSC | No Comments »I (Chris) just left the PCI SSC community meeting in Orlando. For those who have not attended the community meeting it is the annual PCI SSC get together where information is shared with participating organizations, QSAs, ASVs, and other stakeholders. ...
Definaitions, Roles and Responsibilities of PCI
Sunday, June 29th, 2008 Posted in Approved Scanning Vendor, Card Brands, Merchant, PCI DSS, PCI PIN, PCI SSC, QSA, pa-dss | 1 Comment »In the payments industry there exists the PCI guidelines. When we refer to PCI we are usually talking about the PCI DSS, although as anyone will tell you there is also the PCI PED, PCI PA-DSS, and others you should ...
PCI DSS Requirement 6.6
Sunday, June 15th, 2008 Posted in Merchant, PCI DSS, PCI SSC, Service Provider, Web Applications | 9 Comments »Many people know by now that PCI DSS Requirement 6.6 is going into effect (meaning you must be compliant) on June 30, 2008. What these same people are asking is, how does this apply to me and my business? And ...
Merchants please submit a Feedback form to the Council
Tuesday, June 10th, 2008 Posted in PCI SSC | No Comments »People complain about many things, but the question is: have you filled out a feedback form? What, you ask? There is a feedback form? Oh yes! And you should be filling it out and sending it back to the PCI ...
QSA Employee Lookup
Thursday, May 8th, 2008 Posted in PCI SSC | No Comments »Are you working with a Qualified Security Assessor (QSA) and want to make sure they are legitimate? The PCI SSC just launched "a tool to verify the certification status of representatives from PCI SSC Qualified Security Assessor (QSAs) Companies." Lookup your ...
PCI Council Hosting Webinar on PA-DSS
Wednesday, May 7th, 2008 Posted in Conferences, PCI SSC, pa-dss | No Comments »Today the PCI SSC (Council) announced it will host a webinar titled " “Understanding the Payment Application Data Security Standard" on Thursday May 22, 2008 at 11:30 a.m. EDT and a second session the same day at 7:30 p.m. EDT. The event ...
PCI SSC Clarifies Requirements 6.6 and 11.3
Tuesday, April 22nd, 2008 Posted in PCI DSS, PCI SSC, Web Applications | 15 Comments »Today the PCI SSC issued a press release about their clarification to PCI DSS Requirements 6.6 (web-application firewall vs. secure code review) and 11.3 (penetration testing). If you check the supporting documents section of the website you will find the ...
