Join PCI Security Standards Council staff as they discuss the PCI Data Security Standard (PCI DSS) v4.0. The discussion focuses on how updates to the Standard meets the evolving security needs of the payments industry, promotes security as a continuous process, increases flexibility for organizations using different methods to achieve security objectives, and enhancements to validation methods and procedures.
Timestamps:
0:21 Introduction
3:03 Development of PCI DSS v4.0
5:12 Changes to Requirements: Authentication
7:06 Changes to Requirements: Passwords
8:06 Increased Flexibility: Targeted Risk Analysis
10:11 Increased Flexibility: The Customized Approach
14:16 Increased Flexibility: The Customized Approach vs Compensating Controls
15:54 Increased Flexibility: Addressing Evolving Technology
18:09 Addressing Threats: Phishing and Social Engineering
19:31 Addressing Threats: Online Skimming
20:53 Promoting Security as an Ongoing Process
22:44 Reporting Updates
25:08 Transition Timeline to PCI DSS v4.0
28:06 Training and Additional Resources
Subscribe to the PCI Perspectives Blog to receive all of the latest PCI DSS v4.0 and Council News: training.pcise...
SUBSCRIBE to our channel!
Follow PCI SCC on Twitter: / pcissc
Follow PCI SSC on LinkedIn: / pcissc
PCI SSC Blog: training.pcise...
PCI SSC Events: events.pcisecu...
29 окт 2024