Firstly there are not going to be any spoilers in here I am afraid; while Foregenix participates in feedback on all PCI SSC issued standards and is an active member of the Global Executive Assessor Roundtable (GEAR), we do so under non-disclosure agreement, so we will not be commenting on the draft of PCI DSS version 4.0 that we provided feedback on. PCI DSS v3.2.1 has been around for a number of years and based on the standard lifecycle will be replaced shortly.
The Payment Card Industry Security Standards Council (PCI SSC) requires organisations to determine the scope of their PCI DSS assessment accurately.
Prior to discussing data discovery, it is important to define PCI DSS assessment scoping. The official definition by the PCI SSC for scoping is:
'Process of identifying all system components, people, and processes to be included in a PCI DSS assessment'.
Foregenix's cybersecurity experts have been deeply involved in supporting the PCI Council during the development of the new PCI Software Security Framework (SSF), and today we are proud to announce we are fully enabled to help your organisation align and achieve compliance with this new program.
P2PE (Point-to-Point-Encryption) is a standard that is quickly becoming the preferred way for acquirers and merchants to secure customer cardholder data. The industry is ramping up P2PE efforts to combat fraud. The number of payment card P2PE systems, which meet the new industry standard has passed 200 for the first time, highlighting the growing worldwide emphasis on security.
We're proud to consider ourselves one of the industry leaders in the cybersecurity arena, and we are constantly striving to share our knowledge with the community. We recently announced our participation in the PCI Security Standards Council's Latin America Forum and now the PCI Security Standards Council has chosen us to join its inaugural Global Executive Assessor Roundtable!
Firstly there are not going to be any spoilers in here I am afraid; while Foregenix participates in feedback on all PCI SSC issued standards and is an active member of the Global Executive Assessor Roundtable (GEAR), we do so under non-disclosure agreement, so we will not be commenting on the draft of PCI DSS version 4.0 that we provided feedback on. PCI DSS v3.2.1 has been around for a number of years and based on the standard lifecycle will be replaced shortly.
The Payment Card Industry Security Standards Council (PCI SSC) requires organisations to determine the scope of their PCI DSS assessment accurately.
Prior to discussing data discovery, it is important to define PCI DSS assessment scoping. The official definition by the PCI SSC for scoping is:
'Process of identifying all system components, people, and processes to be included in a PCI DSS assessment'.
Foregenix's cybersecurity experts have been deeply involved in supporting the PCI Council during the development of the new PCI Software Security Framework (SSF), and today we are proud to announce we are fully enabled to help your organisation align and achieve compliance with this new program.
P2PE (Point-to-Point-Encryption) is a standard that is quickly becoming the preferred way for acquirers and merchants to secure customer cardholder data. The industry is ramping up P2PE efforts to combat fraud. The number of payment card P2PE systems, which meet the new industry standard has passed 200 for the first time, highlighting the growing worldwide emphasis on security.
We're proud to consider ourselves one of the industry leaders in the cybersecurity arena, and we are constantly striving to share our knowledge with the community. We recently announced our participation in the PCI Security Standards Council's Latin America Forum and now the PCI Security Standards Council has chosen us to join its inaugural Global Executive Assessor Roundtable!
