PCI DSS: A Pocket Guide

Target dates for compliance with the PCI DSS itself have all long since passed. Many organizations - particularly those that fall below the top tier of payment card transaction volumes - are not yet compliant and can no longer afford to put off the work required to fall into line with this global standard. This handy pocket guide will provide you with all the information you will need when considering how to approach the PCI DSS, and is an ideal tool for awareness training for your PCI staff. Attacks are highly automated, seeking out website and payment card system vulnerabilities. All businesses that accept payment cards are prey for hackers and criminal gangs that seek to steal payment card and individual identity details. Many attacks are highly automated, seeking out website and payment card system vulnerabilities remotely, using increasingly sophisticated tools and techniques. When a vulnerability is discovered, an attack can start without management or staff of the target company having any awareness of what is going on. PCI DSS is designed to ensure that merchants are effectively protecting cardholder data. It recognizes that not all merchants may have the technical understanding to identify for themselves the necessary steps and short-circuits to avoid danger. All merchants, and their service providers, should therefore ensure that they comply with PCI DSS, and that they stay compliant.