PCI DSS: Achieving and Maintaining Compliance

Achieving PCI DSS compliance can be hard and frustrating. This course provides practical advice for every stage of the compliance journey from working out what compliance means for you, scoping, assessment, and importantly how to stay compliant.
Course info
Level
Intermediate
Updated
May 22, 2020
Duration
4h 1m
Table of contents
Course Overview
Introduction and Recap
What Does Compliance Mean?
The Journey to Compliance
Scoping, Segmentation, and Scope Reduction
Using and Assessing the Standard
The Assessment Process
Maintaining Compliance
Description
Course info
Level
Intermediate
Updated
May 22, 2020
Duration
4h 1m
Description

It's time to bring together the theoretical knowledge of becoming PCI DSS compliant, and the practical knowledge of how the standard really works! In this course, PCI DSS: Achieving and Maintaining Compliance, you’ll gain the ability to take an organization on a PCI DSS compliance journey and understand the challenges in maintaining PCI DSS compliance. First, you’ll learn about who may ask you to comply with PCI DSS and the different ways that you can demonstrate your compliance. Next you’ll explore how to determine what people, processes and technology that the PCI DSS requirements will apply to, and the ways to minimize these. Then, you'll discover what a Qualified Security Assessor (QSA) will do when they assess your compliance with the standard, and what you can do when your organization cannot comply with certain requirements. Finally, you’ll learn how to prevent control decay, scheduled tasks, and change from destroying your hard-won PCI DSS compliance. When you’ve finished with this course you'll have the skills and knowledge to pilot an organization through a successful PCI DSS compliance journey, and then maintain PCI DSS compliance year after year.

About the author
About the author

Jacob Ansari worked on Pluralsight courses that cover the topic of PCI DSS Standards.

More from the author
PCI DSS: Detection, Assurance, and Management
Intermediate
3h 34m
Feb 6, 2020
PCI DSS: Restricting Access to Cardholder Data
Intermediate
2h 8m
Dec 16, 2019
More courses by Jacob Ansari
About the author

John Elliott is a data protection specialist. He helps organizations comply with regulations in a sensible and pragmatic way, balancing business needs, risk and regulations.

More from the author
More courses by John Elliott
Section Introduction Transcripts
Section Introduction Transcripts

Course Overview
[Autogenerated] Hello. My name is John Elliott. Welcome to the course PC. Idea says achieving and maintaining compliance in this course, I bring together the theoretical knowledge of becoming PCR GSS compliant along with the practical experience of how the standard really works. And I'm Jacob on Sorry, I'm a qualified security assessor or que essa with schellman and company, and I'm qualified to assess many of the PC I standards, including PC idea sess ph. D. S. S NPD. I've been an assessor for 14 years, and I've been doing this since the predecessor standards to PC ideas s in this course, you will follow the journey to PC ideas s compliance, understand the key decisions you'll have to make on, then learn where people often take the wrong turn. You'll also learn about the different approaches to compliance from self assessment to an in depth on site assessment from a Q S. A. Like me maintaining peace. The idea says compliance is hard new discover program techniques to transition from a compliance program into business as usual. Ideally, you already understand the basics of payment card processing and PC ideas. By the end of this course, you'll have a great understanding of how to structure a PC. I program what can go wrong and how to work with assessors. We do hope you will join us to learn the theory and practice of becoming and staying compliant with PC, Idea says. With the PC idea says achieving and maintaining compliance course here it plural sites.