0845 450 6120

PCI DSS Implementation

The Payment Card Industry Data Security Standard (PCI DSS) is administered by the PCI Security Standards Council (PCI SCC) with the specific objectives of decreasing payment card fraud across the internet and increasing the security of confidential payment card information.

Every organisation that stores or transmits or processes card holder data must comply with PCI DSS standard. Compliance to the standard is regulated and enforced by payment card brands (VISA, MasterCard, American Express) directly or through their partner relationships with ‘acquirer’ banks.

Who should attend this course?

Individuals who are responsible for the ensuring that their organisation becomes fully compliant to the technical and business requirements of the PCI DSS standard. Consultants seeking to provide PCI implementation advice to their respective client organisations.

Reset

Learning Objectives

Designed by a Qualified Security Assessor (QSA), this three day training course aims to develop the skills required to ensure that any organisation meets the requirements of the standard as defined by their payment card brand and their acquiring bank.

Pre-Requisites

There are no formal entry requirements.

Course Content

  • The purpose of the PCI DSS and the requirement for protection of cardholder data.
  • PCI DSS objectives and intent.
  • Related PCI standards and programmes.
  • Understand how PCI DSS compliance is enforced by the payment brands.
  • Compliance needs for merchants and service providers. Explanation of the different levels.
  • Understand how compliance must be reported by merchants and service providers.
  • Overview of the 12 standard requirements.
  • Scoping and applicability of the PCI DSS.
  • Technical Implementation of the requirements.
  • Use of IT Governance PCI DSS v3.0 Documentation Toolkit
  • Project management.
  • Maintaining compliance.
  • Additional considerations for: call centres, encryption, software development, mobile payments, skimming.

Exams & Certification

The Exam

This course prepares delegates for an optional examination on the last day of the training programme. Successful candidates will be awarded the PCI DSS Implementation (PCI IM) qualification by the International Board for IT Governance Qualifications (IBITGQ).

 

Exam results and certificates

  • Where exams are taken online (either remotely or by computer in the classroom), provisional exam results will be available immediately on completion of the exam. Confirmed exam results will be issued within 10 working days from the date of the exam.
  • Where exams are done in paper form, we aim to make confirmed exam results available within 10 working days from the date of the exam.
  • For both online and paper exams, certificates for those who have achieved a passing grade will be issued within 10 working days from the date of the exam.
  • Results notifications and certificates are sent directly to candidates by the relevant exam board in electronic format; please note that hard copy exam certificates are not issued.

 

Pre-Reading

We recommend that all delegates download (free) and read the Payment Card Industry Data Security Standard (PCI DSS) document from the PCI SSC website.

Privacy Notice

In order to provide you with the service requested we will need to retain and use your contact information in accordance with our Privacy Notice. If you choose to provide us with this information you explicitly consent to us using the information as necessary to provide the request service to you. If you do not agree please do not proceed to request the service from us.

Marketing Permissions

Would you like to receive our newsletter and other information on products and services which we think will be of interest to you by email. We will always treat your information with care and in accordance with our Privacy Notice. You are free to withdraw this permission at any time.

 

Our Customers Include