Provides a deeper focus on the PCI DSS (Payment Card Industry Data Security Standard) and its implementation.
IBITGQ accredited three-day course aimed at those who are responsible for implementing and managing the PCI DSS.
Fully updated for the recently released PCI DSS v3.2
Learn from anywhere
Our Live Online option allows you to study your way, keeping travel and costs down to a minimum.
Successful completion of the course and included exam leads PCI DSS Implementation (PCI IM) qualification and 21 CPD/CPE points.
Fees
COURSE OUTLINES
- The purpose of the PCI DSS and the requirement for protection of cardholder data.
- PCI DSS objectives and intent.
- Related PCI standards and programmes.
- Understand how PCI DSS compliance is enforced by the payment brands.
- Compliance needs for merchants and service providers. Explanation of the different levels.
- Understand how compliance to the standard must be reported by merchants and service providers.
- Overview of the 12 standard requirements.
- Technical Implementation of the requirements.
- Use of IT Governance PCI DSS Documentation Toolkit.
- Project management.
- Maintaining compliance.
COURSE DETAILS
- Outline of payment processes
- PCI DSS Ecosphere
- Why the PCI DSS?
- Where does it apply?
- The six control objectives
- The 12 requirements
- Compliance and enforcement
- Remediation and non-compliance
- Compliance structures
- Self-assessment or audit?
- Scoping principles of the PCI DSS
- How to scope for the PCI DSS
- Scope reduction
- The 12 Requirements
- Practical implications of the PCI DSS
- Documentation and evidence
- Managing a PCI DSS project
- How to gain compliance
- The prioritised approach
- What is ‘business as usual’?
- Going beyond the PCI DSS controls