We can't find the internet
Attempting to reconnect
Something went wrong!
Hang in there while we get back on track
SAINTCON 2016 - Nathan Cooper - Zero to PCI in 50 minutes
Discover how to achieve PCI compliance from scratch in just 50 minutes. Learn the essential steps and best practices for securing credit card information, from ensuring data encryption to implementing access controls and regular security testing.
- PCI DSS is a set of guidelines for merchants to securely handle credit card information
- Have a responsible person ensure compliance
- Always review your scope and make sure you’re not overscoping or underscoping
- Make sure to fill out the SAQ accurately and thoroughly
- Use a reputable QSA to validate your compliance
- Implement access controls to restrict access to cardholder data
- Ensure data is encrypted and transmitted securely
- Use a vulnerability scanning tool to check for vulnerabilities
- Implement a comprehensive security program that covers all aspects of security
- Regularly test and evaluate your security controls
- Ensure all employees understand their roles and responsibilities in maintaining security
- Have a plan in place for storing and backing up data
- Consider hiring a consultant to help with compliance
- Do not store sensitive authentication data
- Ensure your wireless network is secure
- Use a firewall and switch to control network traffic
- Implement regular security testing and evaluations
- Ensure all employees are trained on security policies and procedures
- Have a disaster recovery plan in place