PCI DSS: Achieving and Maintaining Compliance

سرفصل های دوره

Achieving PCI DSS compliance can be hard and frustrating. This course provides practical advice for every stage of the compliance journey from working out what compliance means for you, scoping, assessment, and importantly how to stay compliant.

Module 1 - Course Overview

1. Course Overview

Module 2 - Introduction and Recap

1. Introducing the Compliance Journey

2. How to Become a PCI Professional

3. A Quick Recap of the Twelve PCI DSS Requirements

Module 3 - What Does Compliance Mean_

1. Reporting Compliance_ RoCs and SAQs

2. Understanding the Different Types of SAQ

3. Defining What Compliance Is for an Organization

4. Negotiation and the Prioritized Approach

Module 4 - The Journey to Compliance

1. Introducing the Compliance Journey

2. The Prepare Phase_ Compliance Is an Organizational Issue

3. Getting to an As Is Picture of How Cardholder Data Is Processed

4. When Should You Engage with an Assessor_

5. Is Your QSA an Assessor or an Advisor_

Module 5 - Scoping, Segmentation, and Scope Reduction

1. Scoping and the Cardholder Data Environment

2. Culture, Security, Compliance, and PCI DSS

3. Techniques to Reduce the Scope of the CDE

4. Removing Cardholder Data to Reduce PCI DSS Scope

5. Outsourcing to Reduce PCI DSS Scope

6. Changing Business Processes to Reduce PCI DSS Scope

7. The Hard Work in a PCI DSS Compliance Program

8. Scoping Tips for Very Large Organizations

9. Good and Bad PCI DSS Scope Reduction

Module 6 - Using and Assessing the Standard

1. The Standard and Testing Procedures

2. Assessing a Requirement

3. Documenting the Evidence of an Assessment

4. Help with Interpretation

5. Resolving Differences of Opinion with Assessors

6. Compensating Controls

7. Writing Compensating Controls

8. Common Problems with Compensating Controls

Module 7 - The Assessment Process

1. The Assessment Process

2. Working with Your Assessor

3. How Long a PCI DSS Assessment Takes

4. An Assessment Should Not Be a Disruptive Exercise

5. Differences between a Service Provider and a Merchant Assessment

6. Providing Feedback About Your Assessor

Module 8 - Maintaining Compliance

1. Control Decay

2. Scheduled Tasks in PCI DSS

3. Managing Change in PCI DSS

4. Embedding PCI DSS in BAU Must Be Part of the Compliance Program

5. PCI DSS Sustainability_ The Assessors Perspective

6. The Second PCI DSS Assessment

7. Designated Entities Supplemental Validation (DESV)

139,000 تومان

خرید اشتراک افزودن به سبد خرید

خرید دانلودی فوری

در این روش نیاز به افزودن محصول به سبد خرید و تکمیل اطلاعات نیست و شما پس از وارد کردن ایمیل خود و طی کردن مراحل پرداخت لینک های دریافت محصولات را در ایمیل خود دریافت خواهید کرد.

تولید کننده: PluralSight