PCI DSS: Achieving and Maintaining Compliance

Focused View

Jacob Ansari

4:01:17

88 View

Module 1 - Course Overview

1. Course Overview.mp4

01:34

Module 2 - Introduction and Recap

1. Introducing the Compliance Journey.mp4

08:11

2. How to Become a PCI Professional.mp4

04:18

3. A Quick Recap of the Twelve PCI DSS Requirements.mp4

12:18

Module 3 - What Does Compliance Mean_

1. Reporting Compliance_ RoCs and SAQs.mp4

09:56

2. Understanding the Different Types of SAQ.mp4

10:25

3. Defining What Compliance Is for an Organization.mp4

12:07

4. Negotiation and the Prioritized Approach.mp4

07:51

Module 4 - The Journey to Compliance

1. Introducing the Compliance Journey.mp4

02:39

2. The Prepare Phase_ Compliance Is an Organizational Issue.mp4

09:18

3. Getting to an As Is Picture of How Cardholder Data Is Processed.mp4

09:23

4. When Should You Engage with an Assessor_.mp4

01:02

5. Is Your QSA an Assessor or an Advisor_.mp4

02:23

Module 5 - Scoping, Segmentation, and Scope Reduction

1. Scoping and the Cardholder Data Environment.mp4

07:55

2. Culture, Security, Compliance, and PCI DSS.mp4

02:21

3. Techniques to Reduce the Scope of the CDE.mp4

03:50

4. Removing Cardholder Data to Reduce PCI DSS Scope.mp4

05:58

5. Outsourcing to Reduce PCI DSS Scope.mp4

02:24

6. Changing Business Processes to Reduce PCI DSS Scope.mp4

02:45

7. The Hard Work in a PCI DSS Compliance Program.mp4

04:34

8. Scoping Tips for Very Large Organizations.mp4

02:43

9. Good and Bad PCI DSS Scope Reduction.mp4

02:49

Module 6 - Using and Assessing the Standard

1. The Standard and Testing Procedures.mp4

05:52

2. Assessing a Requirement.mp4

03:54

3. Documenting the Evidence of an Assessment.mp4

06:25

4. Help with Interpretation.mp4

04:43

5. Resolving Differences of Opinion with Assessors.mp4

08:29

6. Compensating Controls.mp4

07:32

7. Writing Compensating Controls.mp4

05:33

8. Common Problems with Compensating Controls.mp4

02:45

Module 7 - The Assessment Process

1. The Assessment Process.mp4

07:55

2. Working with Your Assessor.mp4

02:51

3. How Long a PCI DSS Assessment Takes.mp4

02:10

4. An Assessment Should Not Be a Disruptive Exercise.mp4

02:17

5. Differences between a Service Provider and a Merchant Assessment.mp4

00:54

6. Providing Feedback About Your Assessor.mp4

01:12

Module 8 - Maintaining Compliance

1. Control Decay.mp4

08:55

2. Scheduled Tasks in PCI DSS.mp4

06:01

3. Managing Change in PCI DSS.mp4

06:06

4. Embedding PCI DSS in BAU Must Be Part of the Compliance Program.mp4

06:34

5. PCI DSS Sustainability_ The Assessors Perspective.mp4

07:20

6. The Second PCI DSS Assessment.mp4

03:02

7. Designated Entities Supplemental Validation (DESV).mp4

14:03

Description

Achieving PCI DSS compliance can be hard and frustrating. This course provides practical advice for every stage of the compliance journey from working out what compliance means for you, scoping, assessment, and importantly how to stay compliant.

What You'll Learn?

It's time to bring together the theoretical knowledge of becoming PCI DSS compliant, and the practical knowledge of how the standard really works! In this course, PCI DSS: Achieving and Maintaining Compliance, you’ll gain the ability to take an organization on a PCI DSS compliance journey and understand the challenges in maintaining PCI DSS compliance. First, you’ll learn about who may ask you to comply with PCI DSS and the different ways that you can demonstrate your compliance. Next you’ll explore how to determine what people, processes and technology that the PCI DSS requirements will apply to, and the ways to minimize these. Then, you'll discover what a Qualified Security Assessor (QSA) will do when they assess your compliance with the standard, and what you can do when your organization cannot comply with certain requirements. Finally, you’ll learn how to prevent control decay, scheduled tasks, and change from destroying your hard-won PCI DSS compliance. When you’ve finished with this course you'll have the skills and knowledge to pilot an organization through a successful PCI DSS compliance journey, and then maintain PCI DSS compliance year after year.

More details

User Reviews

Rating

average 0

Total votes0

Focused display

Cyber Security

Network Security

Information Security

Jacob Ansari

Instructor's Courses

Jacob Ansari worked on Pluralsight courses that cover the topic of PCI DSS Standards.

Pluralsight

View courses Pluralsight

Pluralsight, LLC is an American privately held online education company that offers a variety of video training courses for software developers, IT administrators, and creative professionals through its website. Founded in 2004 by Aaron Skonnard, Keith Brown, Fritz Onion, and Bill Williams, the company has its headquarters in Farmington, Utah. As of July 2018, it uses more than 1,400 subject-matter experts as authors, and offers more than 7,000 courses in its catalog. Since first moving its courses online in 2007, the company has expanded, developing a full enterprise platform, and adding skills assessment modules.