In this video we briefly discuss the tools required to ensure proper protection of PCI. In actuality, these tools are a mixture or standards, processes, documents, and people: - PCI SSC (Security Standards Council) - PCI DSS - secure processes to prevent, protect, and react to incidents. This is a living set of standards and is constantly evolving. - QSAs - security assessors. People who evaluate and assess whether standards are being properly interpreted and implemented. - SAQ - questionnaire used to assure that compliance with the standard is being maintained.
This series covers the framework governing the self-regulated payment processing industry. Compliance with these standards is critical. Learn the 12 elements of the framework and how they pertain to risk management in relation to cardholder data.