- The Value of the PCI Secure Software Lifecycle Standard for Software Vendors
The PCI Secure Software Lifecycle (Secure SLC) Standard is part of the PCI Software Security Framework, which addresses security for software operating in payment environments. In this blog, we interview PCI Security Standards Council’s VP, Global Head of Programs, Gill Woodcock, about the Secure SLC Standard, ... read more - What to Know Before Participating in a PCI SSC RFC
The PCI SSC Request for Comments (RFC) process is an avenue for PCI SSC stakeholders to provide feedback on existing and new PCI security standards and programs. This feedback plays a critical role in the ongoing maintenance and development of these resources for the payment ... read more - Request for Comments: PCI DSS Version 4.0 Draft Standard
From 23 September to 13 November 2020, PCI SSC stakeholders can participate in a Request for Comments (RFC) on a draft of PCI Data Security Standard Version 4.0 (PCI DSS v4.0 Draft v0.2 for RFC). This is the second RFC for the draft of PCI ... read more - PCI PIN Security in Practice Case Study: Gertec
In this PCI DSS in Practice Case Study, Brazil Regional Engagement Board Member Gertec shares how the PCI PIN Security requirements helped the organization to understand the importance of having procedures in place and up to date. ... read more - PCI DSS in Practice Case Study: PicPay
In this PCI DSS in Practice Case Study, Brazil Regional Engagement Board Member PicPay shares how the PCI DSS helped foster a culture of information security in the company. ... read more - PCI SSC to Host its 2020 Community Meetings Online as Virtual Events
In an unprecedented year, PCI Security Standards Council (PCI SSC) will host its 2020 Community Meetings online, as virtual events, for the first time in the Council’s history. The annual North America, Europe and Asia-Pacific Community Meetings offer an opportunity to bring the PCI SSC ... read more - Benefits of Becoming a Participating Organization
It is great that your organization takes securing payment data seriously. Now is the time to take the next step forward and make a difference by becoming a PCI SSC Participating Organization, (PO). POs play a key role in both influencing the ongoing development of ... read more - NIST and PCI SSC Find Common Ground in Development of Software Frameworks
The National Institute of Standards and Technology (NIST) and the PCI Security Standards Council (PCI SSC) have recently announced complementary frameworks for secure software development. There are numerous mature, secure software lifecycle management methodologies and frameworks available that, when properly implemented and maintained, can produce secure ... read more - Women in Payments: Q&A with Julie Krueger
When Julie Krueger graduated from college 35 years ago, only five percent of her electrical engineering class were women. Today, that number has improved, but not nearly enough. In this month’s blog series, Krueger encourages women to persist no matter what. ... read more - Registration Now Open for Software Security Framework New Assessor Training
Registration is now open for Software Security Framework (SSF) New Assessor Training. PCI Security Standards Council (PCI SSC) recently announced the first training dates for its remote, instructor-led Secure Software Assessor and Secure Software Lifecycle Assessor classes, now available on the new eLearning platform. ... read more - PCI DSS in Practice Case Study: CSU
In this PCI DSS in Practice Case Study, Brazil Regional Engagement Board Member CSU Cardsystem S.A. discusses challenges with balancing the constant evolution and launch of new technologies with simplicity, security, and compliance. ... read more - PCI DSS in Practice Case Study: Cielo
In this PCI DSS in Practice Case Study, Brazil Regional Engagement Board Member Cielo shares the challenge of dealing with legacy systems that did not have adequate controls to meet PCI DSS. The company recognized that training employees on security awareness and the support of ... read more - Make a Difference: Serve on the 2021-2022 PCI SSC Board of Advisors
Every two years, PCI Security Standards Council asks its Participating Organizations to elect its next Board of Advisors. In this election by peers, companies have an opportunity to nominate candidates that they believe will best represent the interests of their organization, industry sector or region. As ... read more - PCI SSC Offers Informational Training via New eLearning Platform
PCI Security Standards Council (PCI SSC) has adopted a new eLearning platform to move all informational and certification programs online. With the rise of the COVID-19 pandemic, the Council took important steps earlier this year to protect the health and safety of all involved by ... read more - Women in Payments: Q&A with Robin Trickel
Companies achieve more when a variety of perspectives are represented at the table. In this month’s blog series, Robin Trickel explains why having a culturally different, or non-traditional, background may be the key to success in cybersecurity. ... read more