PCI-DSS COURSE FOR ADMINISTRATORS

SUMMARY

In this 3-day course, participants will acquire knowledge about all the security requirements and implications related to the PCI DSS standard developed by payment card brands for the processing, storage, or transmission of card data within information systems. The course is aimed at merchants, providers, or processors of payment card data, IT or Compliance Managers, Heads of Payment Departments in banks, and providers of IT services, hosting, web, etc.

AGENDA 

• Introduction to PCI DSS 
  • Origin 
  • Objetives 
  • Current frauds 
  • Benefits
  • Scope 
• PCI DSS and Other Certifications
  • Scope of each standard 
  • Relationship of PCI DSS with other standards
• Definition of PCI DSS Scope 
  • Measures to reduce the scope
• PCI DSS Requirements 
  • PCI DSS 3.2 Requirements
  • Develop and Maintain a Secure Network
  • Maintenance of a Vulnerability Management Program
  • Access Control Measures
  • Network Monitoring and Testing
  • Information Security Policy
  • Shared Hosting Providers
  • Use of SSL and TLS Protocols

GENERAL INFORMATION

Advanced-level course

Mode: On-site training

Duration: 3 days x 5h/day 

Course taught by a PCI QSA expert, certified by payment card brands for the development of PCI certification audits.