It is vital to protect payment card data in order to prevent fraudulent transactions and misuse. This course will guide you through the use of the PCI DSS v4.0, which has been designed to ensure the appropriate protection of payment card data. PCI DSS is an information security standard for organizations that handle card data associated with the major card brands Visa, MasterCard, American Express, Discover, UnionPay and JCB. Compliance with the standard is mandatory for all organizations involved in storing, communicating, or otherwise handling debit and credit card data.
This course will help you understand the structure of the PCI DSS v4.0 and what is involved in meeting the 12 high-level requirements, with a focus on those requirements which can be particularly challenging. It provides practical guidance on ways to reduce the scope of the standard, making sure you apply the appropriate levels of security that fulfil compliance requirements, which can often reduce costs. You’ll also learn what the standard’s reporting requirements are and whether reporting needs to be done through a qualified security assessor (QSA) or through one of numerous self-assessment questionnaires (SAQs).
This course is aimed at:
- All organizations which are involved with the storage, communication, processing and handling of payment card data
- Any service provider that can impact the security of payment card data
Any organization wishing to ensure it has a high-level understanding and awareness
How will I benefit?
This course will help you:
- Understand how compliance with the PCI DSS v4.0 will reduce the risk of a security breach
- Understand the requirements of PCI DSS v4.0 and how to address the 12 requirements
- Understand the different levels of reporting requirements for both merchants and service providers, to help you to report appropriately
- Understand the importance of reducing the scope of PCI DSS assessments
- Understand how workload and costs can be reduced through effective segmentation
- Demonstrate to customers and other stakeholders that you take the security of payment card data seriously
- Understand how PCI DSS can be used to enhance the control set from ISO/IEC 27002
- This course will help organizations understand why they need to comply and how much work is involved in moving from their current situation to being fully compliant.
Who should attend?
Anyone who:
- Has an interest in protecting payment card data and wants to learn how PCI DSS v4.0 can assist
- Wants to understand the main requirements of the standard
- Wishes to understand what the benefits and challenges are of complying with the PCI DSS
- Wants to understand how to reduce the scope of their PCI DSS assessment
- Wants to update their knowledge of the PCI DSS to v4.0
The course is applicable to representatives from any size or type of organization who are planning to, or currently store, communicate, process, or otherwise handle debit and/or credit card information. The course is equally applicable to any service providers that could impact the security of cardholder data in other organizations.
What will I learn?
You’ll be able to explain the following:
- Explain the purpose of the standard
- Appreciate the rules for protecting cardholder data
- Identify where the standard is applicable
- Appreciate how to reduce the scope of an assessment
- Interpret each of the 12 high-level requirements correctly
- Recognize the different validation options
What is included?
On completion, you’ll be awarded an internationally recognized BSI Training Academy certificate.
Contact us
If you have any enquiries, let us know how can we help you.
Call: +91 80815 80815
Email us: info.in@bsigroup.com
Notes:
- This training content will be delivered via BSI’s Connected Learning Live Platform as a virtual classroom with the BSI tutor. This will provide the delegate with the flexibility of attending it from the convenience of home or office, without travelling to BSI facility. A stable internet connection, headset with USB connection, a quiet and suitable work area. In advance of the training a ‘testing room’ will be provided for delegates to confirm their hardware works and that they can fully participate in the training.
- Examination will be conducted online via an e-assessment platform 'Questionmark'. Invigilation will be done through delegate’s webcam and microphone.
Please Note: This training fee is applicable only for residents of India and the Indian subcontinent.