Merchants 5 Step Guide
To PCI Compliance

   Step 1: An Introduction to PCI Compliance

   Step 2: Finding PCI DSS Level

   Step 3: Security Audits: 12 Requirements

   Step 4: Finding a PCI DSS Approved Scanning Vendor (ASV)

   Step 5: Completing the PCI DSS Self Questionnaire


 ISO / Acquirers 5 Step Guide
To PCI Compliance

   Introduction

   Step 1: Engage all resources

   Step 2: Identify and confirm a partner

   Step 3: Make your merchants aware of PCI Compliance

   Step 4: Supply tools to merchant

   Step 5: Implement and track

   Other considerations


 PCI COMPLIANCE
INFO

   New PCI Compliance 1.1 Standards

   PCI Compliant Basics

   PCI Compliance & Consumers

   Implementing PCI Compliance

   PCI Compliant Scan

   Further PCI Compliance Resources

   PCI Compliance Polls & Surveys


 PCI COMPLIANT
VENDORS

   Find PCI Scan Vendors

 About Us

   Contact Us

   PCI Compliance News

   SiteMap

   SSL Certificate

   EV SSL Certificate Guide






Step 3: Educate employees on breach/data security

All organizations should have a current and up-to-date security policy, including a risk assessment, which should be consistently updated and disseminated to all employees and contractors.

Every employee should have a copy of the policy and indicate that they have read and understand the procedures, before a data breach occurs.

Educate employees not only about data breaches that result from a hacker or another external cause, but educate them on personal responsibility as it relates to physical security the perils of leaving a laptop in an open office, or other physical vulnerabilities that can result in a data breach.

Having a pre-breach response plan in place, not only validates your organization's stand against data breaches, but it instills a trust in consumers that your organization has taken precautionary steps-before a data breach-to address any current security loopholes.

pci compliance                      pci compliance asv


pci compliancePrint this page

Send this page to a friend

Data Breaches Part I
- Is it possible to prevent the inevitable?

Introduction

Step 1: A Good Defense is an Offense

Step 2: Perform a company-wide risk assessment/inventory

Step 3: Educate employees on breach/data security

Step 4: Create a pre-breach containment and communication plan

Step 5: Create a rapid response and internal audit/compliance team

Epilogue: Spend now or pay later

Introduction

New changes to PCI DSS Self Assessment Questionnaire

Step 1: Spot/investigate the breach

Step 2: Circle the wagons: Deploy the rapid response team

Step 3: Create a Notification Plan

Step 4: Implement the Notification/Communications Plan

Step 5: Perform a response audit after the event

Navigating state disclosure laws

Outsourcing data breach response to a third-party

Recommended reading
PCI Compliance Polls

Are you currently PCI Compliant?
Yes
No
Working towards compliance

Why are you looking at PCI Compliance
Required By Credit Card Processor
Required By Bank
Want to meet industry standards
Looking to secure network

What merchant level do you fall under for PCI Compliance?
Level 1
Level 2
Level 3
Level 4
I have no idea
View PCI Merchant Level Results
View All PCI Compliance Poll Results

EV SSL Certificate Guide

Sponsored Listing:

|  Home  |  About PCI Compliance |  For Acquirers |  Find PCI Compliance Solutions | 
|  Preventing Data Breaches |  Managing Data Breaches |  Contact Us |    EV SSL Certificate Guide | 
© 2008 PCI Compliance Guide.org
   All right reserved - do not copy any material without written permission.