The Payment Card Industry (PCI) Data Security Standard (DSS) affects every organization that stores, processes, or transmits credit or debit cards. In this course, you'll learn about the standard and how it is used in card scheme compliance programs.
In an organization that touches payment cards, the information security agenda includes compliance with the Payment Card Industry (PCI) Data Security Standard (DSS). In this course, PCI DSS - The Big Picture, you'll learn the basic requirements of PCI DSS, the language it uses, and how the standard is structured. More importantly, you'll learn how the standard is used in compliance programs and how you'll be expected to validate your compliance. You'll also learn what to do when you can't comply with the standard and discover ten of the most common PCI DSS myths that can lead to expensive mistakes. When you've finished this course, you'll know enough PCI DSS to work in environments where PCI DSS compliance is a requirement.
Course Overview Hi everyone, my name is John Elliott, and welcome to my course, PCI DSS - The Big Picture. I've been working in payment security for about eight years. In that time, I've been a PCI-qualified security assessor, worked for large merchants, and spent some time as VC Europe's representative on the payment card industry security standards council, which means I had the pleasure of contributing to many of the PCI standards, including the standard that's at the heart of this course, the Payment Card Industry Data Security Standard, or PCI DSS. We're going to cover two major topics. Firstly, we're going to look at the standard itself, and take a quick look at each of the 12 PCI DSS requirements. For each requirement, we'll discover the key sub-requirements and the system components affected by each requirement. Secondly, you'll learn about the compliance programs mandated by the card schemes who established the PCI Security Standards Council, and how PCI DSS is used in their programs. You'll learn about the compliance documents, ROCs and SAQs, and the various types of PCI roles, QSAs, ISAs, and PCIPs, who can all help on a compliance journey. Finally, you'll discover 10 of the most common PCI DSS myths that could jeopardize your journey to compliance. By the end of this course, you will understand the fundamentals of PCI DSS. There are no pre-requisites, and you'll also have 25% of the information you need to pass the PCI professional exam. I do hope you'll join me on this journey to discover the essentials of PCI DSS, in this PCI DSS: The Big Picture course, here at Pluralsight.