Geek-Guy.com

Category: PCI DSS

Artificial Intelligence (AI), Awareness, Global Security News, Guidance, PCI DSS, PCI DSS v4.0

AI Principles: Securing the Use of AI in Payment Environments

Artificial intelligence (AI) systems are increasingly being used within businesses to help in the creation, management, and operation of payment systems and environments. Their use is expanding beyond systems directly managed by humans, to agentic AI systems, which have a level of agency to perform actions on their own behalf. The rapid pace of change…

Read more →

Awareness, Global Security News, interview, multi-factor authentication, PCI DSS, phishing

Coffee with the Council Podcast: Passwords Versus Passkeys: A Discussion with the FIDO Alliance

  This episode of Coffee with the Council is brought to you by our podcast sponsor, Feroot. Welcome to our podcast series, Coffee with the Council. I’m Alicia Malone, Director of Communications and Public Relations for the PCI Security Standards Council. If you’re like most citizens of the modern world, you’ve probably struggled to remember…

Read more →

Awareness, Global Security News, interview, multi-factor authentication, PCI DSS, phishing

Coffee with the Council Podcast: Passwords Versus Passkeys: A Discussion with the FIDO Alliance

  This episode of Coffee with the Council is brought to you by our podcast sponsor, Feroot. Welcome to our podcast series, Coffee with the Council. I’m Alicia Malone, Director of Communications and Public Relations for the PCI Security Standards Council. If you’re like most citizens of the modern world, you’ve probably struggled to remember…

Read more →

Awareness, Global Security News, interview, multi-factor authentication, PCI DSS, phishing

Coffee with the Council Podcast: Passwords Versus Passkeys: A Discussion with the FIDO Alliance

  This episode of Coffee with the Council is brought to you by our podcast sponsor, Feroot. Welcome to our podcast series, Coffee with the Council. I’m Alicia Malone, Director of Communications and Public Relations for the PCI Security Standards Council. If you’re like most citizens of the modern world, you’ve probably struggled to remember…

Read more →

Awareness, Global Security News, interview, multi-factor authentication, PCI DSS, phishing

Coffee with the Council Podcast: Passwords Versus Passkeys: A Discussion with the FIDO Alliance

  This episode of Coffee with the Council is brought to you by our podcast sponsor, Feroot. Welcome to our podcast series, Coffee with the Council. I’m Alicia Malone, Director of Communications and Public Relations for the PCI Security Standards Council. If you’re like most citizens of the modern world, you’ve probably struggled to remember…

Read more →

Compliance, Global Security News, Governance, Risk & Compliance, PCI DSS, Security Bloggers Network

Navigating PCI DSS 4.0 Compliance: How Automated Data Discovery Can Help

The Payment Card Industry Security Standards Council (PCI SSC) continues to evolve its flagship data security standard. The latest version encourages complying organizations to move away from traditional, periodic audits to a process of continuous risk management and monitoring. Yet this is only going to get the desired results if those same organizations have a…

Read more →

Awareness, Global Security News, Guidance, interview, PCI DSS

Coffee with the Council Podcast: Guidance for PCI DSS E-commerce Requirements Effective After 31 March 2025

  Welcome to our podcast series, Coffee with the Council. I’m Alicia Malone, Director of Communications and Public Relations for the PCI Security Standards Council. As many of our listeners are aware, we are quickly approaching the deadline to adopt the future-dated requirements of PCI DSS version 4.0.1 on March 31st, 2025. Over the course…

Read more →

Awareness, Global Security News, Guidance, interview, PCI DSS

Coffee with the Council Podcast: Guidance for PCI DSS E-commerce Requirements Effective After 31 March 2025

  Welcome to our podcast series, Coffee with the Council. I’m Alicia Malone, Director of Communications and Public Relations for the PCI Security Standards Council. As many of our listeners are aware, we are quickly approaching the deadline to adopt the future-dated requirements of PCI DSS version 4.0.1 on March 31st, 2025. Over the course…

Read more →

Awareness, Global Security News, Guidance, interview, PCI DSS

Coffee with the Council Podcast: Guidance for PCI DSS E-commerce Requirements Effective After 31 March 2025

  Welcome to our podcast series, Coffee with the Council. I’m Alicia Malone, Director of Communications and Public Relations for the PCI Security Standards Council. As many of our listeners are aware, we are quickly approaching the deadline to adopt the future-dated requirements of PCI DSS version 4.0.1 on March 31st, 2025. Over the course…

Read more →

Awareness, Global Security News, Guidance, interview, PCI DSS

Coffee with the Council Podcast: Guidance for PCI DSS E-commerce Requirements Effective After 31 March 2025

  Welcome to our podcast series, Coffee with the Council. I’m Alicia Malone, Director of Communications and Public Relations for the PCI Security Standards Council. As many of our listeners are aware, we are quickly approaching the deadline to adopt the future-dated requirements of PCI DSS version 4.0.1 on March 31st, 2025. Over the course…

Read more →

Awareness, Global Security News, Guidance, PCI DSS, PCI SSC, QSA

New Guidance: Integrating Artificial Intelligence into PCI Assessments

  Artificial intelligence (AI) is transforming industries, and the PCI Security Standards Council (PCI SSC) has introduced new guidance to support the responsible use of AI in PCI assessments. The guidance provides a balance between leveraging the benefits of AI while maintaining the high standards of security that protect payment card data worldwide.

Read more →

Awareness, Global Security News, Guidance, PCI DSS, PCI SSC, QSA

New Guidance: Integrating Artificial Intelligence into PCI Assessments

  Artificial intelligence (AI) is transforming industries, and the PCI Security Standards Council (PCI SSC) has introduced new guidance to support the responsible use of AI in PCI assessments. The guidance provides a balance between leveraging the benefits of AI while maintaining the high standards of security that protect payment card data worldwide.

Read more →

Awareness, Global Security News, Guidance, PCI DSS, PCI SSC, QSA

New Guidance: Integrating Artificial Intelligence into PCI Assessments

  Artificial intelligence (AI) is transforming industries, and the PCI Security Standards Council (PCI SSC) has introduced new guidance to support the responsible use of AI in PCI assessments. The guidance provides a balance between leveraging the benefits of AI while maintaining the high standards of security that protect payment card data worldwide.

Read more →

Awareness, Global Security News, Guidance, PCI DSS, PCI SSC, QSA

New Guidance: Integrating Artificial Intelligence into PCI Assessments

  Artificial intelligence (AI) is transforming industries, and the PCI Security Standards Council (PCI SSC) has introduced new guidance to support the responsible use of AI in PCI assessments. The guidance provides a balance between leveraging the benefits of AI while maintaining the high standards of security that protect payment card data worldwide.

Read more →

Compliance, Global Security News, Governance, Risk & Compliance, PCI DSS, Security Bloggers Network

Moving Past Compensating Controls: The Long-Term Value of Tokenization for PCI DSS

With the deadline for PCI DSS 4.0 compliance just around the corner, it’s decision time for organizations. For many, compensating controls are a godsend, introducing a degree of flexibility into what is otherwise a rigorous, demanding and heavily detailed standard. But while this approach can be a useful means of temporarily meeting PCI DSS 4.0…

Read more →

Compliance, Global Security News, Governance, Risk & Compliance, PCI DSS, Security Bloggers Network

Compensating Controls, Customized Approach and Tokenization in PCI DSS 4.0

The Payment Card Industry Data Security Standard (PCI DSS) has always been considered one of the most prescriptive industry mandates around. And well might it be, given what’s at stake. As breach volumes surge and threat actors find it ever easier to bypass traditional cyber-defenses, the card industry must ensure that complying organizations are doing…

Read more →

Awareness, Global Security News, PCI DSS, PCI DSS v4.0

FAQ Clarifies New SAQ A Eligibility Criteria for E-Commerce Merchants

The PCI Security Standards Council (PCI SSC) is pleased to announce the release of a Frequently Asked Question (FAQ), developed in direct response to industry requests for greater clarity on the new eligibility criteria for the recently revised Self-Assessment Questionnaire (SAQ) A. This update reflects our commitment to supporting the e-commerce community by providing clear,…

Read more →

Awareness, Global Security News, PCI DSS, PCI DSS v4.0

FAQ Clarifies New SAQ A Eligibility Criteria for E-Commerce Merchants

The PCI Security Standards Council (PCI SSC) is pleased to announce the release of a Frequently Asked Question (FAQ), developed in direct response to industry requests for greater clarity on the new eligibility criteria for the recently revised Self-Assessment Questionnaire (SAQ) A. This update reflects our commitment to supporting the e-commerce community by providing clear,…

Read more →

Awareness, Global Security News, PCI DSS, PCI DSS v4.0

FAQ Clarifies New SAQ A Eligibility Criteria for E-Commerce Merchants

The PCI Security Standards Council (PCI SSC) is pleased to announce the release of a Frequently Asked Question (FAQ), developed in direct response to industry requests for greater clarity on the new eligibility criteria for the recently revised Self-Assessment Questionnaire (SAQ) A. This update reflects our commitment to supporting the e-commerce community by providing clear,…

Read more →

Awareness, Global Security News, PCI DSS, PCI DSS v4.0

FAQ Clarifies New SAQ A Eligibility Criteria for E-Commerce Merchants

The PCI Security Standards Council (PCI SSC) is pleased to announce the release of a Frequently Asked Question (FAQ), developed in direct response to industry requests for greater clarity on the new eligibility criteria for the recently revised Self-Assessment Questionnaire (SAQ) A. This update reflects our commitment to supporting the e-commerce community by providing clear,…

Read more →

Global Security News, Participation, PCI DSS, Scoping, Segmentation, SIGs

Coffee with the Council Podcast: Scoping and Segmentation: Navigating Modern Network Architecture and PCI DSS v4.x

  Welcome to our podcast series, Coffee with the Council. I’m Alicia Malone, Senior Manager of Public Relations for the PCI Security Standards Council. Recently, PCI SSC published a new information supplement called PCI DSS Scoping and Segmentation Guidance for Modern Network Architectures. This document was produced by the 2023 Special Interest Group, also called…

Read more →

Global Security News, Participation, PCI DSS, Scoping, Segmentation, SIGs

Coffee with the Council Podcast: Scoping and Segmentation: Navigating Modern Network Architecture and PCI DSS v4.x

  Welcome to our podcast series, Coffee with the Council. I’m Alicia Malone, Senior Manager of Public Relations for the PCI Security Standards Council. Recently, PCI SSC published a new information supplement called PCI DSS Scoping and Segmentation Guidance for Modern Network Architectures. This document was produced by the 2023 Special Interest Group, also called…

Read more →

Global Security News, Participation, PCI DSS, Scoping, Segmentation, SIGs

Coffee with the Council Podcast: Scoping and Segmentation: Navigating Modern Network Architecture and PCI DSS v4.x

  Welcome to our podcast series, Coffee with the Council. I’m Alicia Malone, Senior Manager of Public Relations for the PCI Security Standards Council. Recently, PCI SSC published a new information supplement called PCI DSS Scoping and Segmentation Guidance for Modern Network Architectures. This document was produced by the 2023 Special Interest Group, also called…

Read more →

Awareness, ecommerce, Global Security News, Guidance, PCI DSS, PCI DSS v4.0

New Guidance Coming for E-commerce Security Requirements in PCI DSS v4.x

The PCI Security Standards Council (PCI SSC) is developing guidance to help stakeholders understand and implement the new e-commerce security requirements included in PCI Data Security Standard (PCI DSS) v4.x. Stakeholders have indicated that these requirements are complex for many entities to implement (including merchants validating to Self-Assessment Questionnaire (SAQ) A). To that end, the…

Read more →

Awareness, ecommerce, Global Security News, Guidance, PCI DSS

New Guidance Coming for E-commerce Security Requirements in PCI DSS v4.x

The PCI Security Standards Council (PCI SSC) is developing guidance to help stakeholders understand and implement the new e-commerce security requirements included in PCI Data Security Standard (PCI DSS) v4.x. Stakeholders have indicated that these requirements are complex for many entities to implement (including merchants validating to Self-Assessment Questionnaire (SAQ) A). To that end, the…

Read more →

Awareness, ecommerce, Global Security News, Guidance, PCI DSS, PCI DSS v4.0

New Guidance Coming for E-commerce Security Requirements in PCI DSS v4.x

The PCI Security Standards Council (PCI SSC) is developing guidance to help stakeholders understand and implement the new e-commerce security requirements included in PCI Data Security Standard (PCI DSS) v4.x. Stakeholders have indicated that these requirements are complex for many entities to implement (including merchants validating to Self-Assessment Questionnaire (SAQ) A). To that end, the…

Read more →

Deeper Network Promo Deeper Network Promo Deeper Network Promo Image

Global Security News, Guidance, PCI DSS, Scoping, Segmentation, SIGs

New Information Supplement: PCI DSS Scoping and Segmentation Guidance for Modern Network Architectures

The PCI Security Standards Council (PCI SSC) has published a new Information Supplement: PCI DSS Scoping and Segmentation Guidance for Modern Network Architectures.  This document was produced by the 2023 Special Interest Group (SIG), the members of which provided their extensive payment security expertise and technical knowledge around best practices, guidance, and real-world scenarios for applying…

Read more →

Global Security News, Guidance, PCI DSS, Scoping, Segmentation, SIGs

New Information Supplement: PCI DSS Scoping and Segmentation Guidance for Modern Network Architectures

The PCI Security Standards Council (PCI SSC) has published a new Information Supplement: PCI DSS Scoping and Segmentation Guidance for Modern Network Architectures.  This document was produced by the 2023 Special Interest Group (SIG), the members of which provided their extensive payment security expertise and technical knowledge around best practices, guidance, and real-world scenarios for applying…

Read more →

Global Security News, Guidance, PCI DSS, Scoping, Segmentation, SIGs

New Information Supplement: PCI DSS Scoping and Segmentation Guidance for Modern Network Architectures

The PCI Security Standards Council (PCI SSC) has published a new Information Supplement: PCI DSS Scoping and Segmentation Guidance for Modern Network Architectures.  This document was produced by the 2023 Special Interest Group (SIG), the members of which provided their extensive payment security expertise and technical knowledge around best practices, guidance, and real-world scenarios for applying…

Read more →

Awareness, Global Security News, interview, PCI DSS, QSA, Third Party Risk

Now is the Time for Organizations to Adopt the Future-Dated Requirements of PCI DSS v4.x

Merchants around the world use the Payment Card Industry Data Security Standard (PCI DSS) to safeguard payment card data before, during, and after a purchase is made. The standard is intended for all entities involved in payment card processing, including merchants, processors, acquirers, issuers, and service providers. As of 31 March 2024, the PCI Security…

Read more →

Awareness, Global Security News, interview, PCI DSS, QSA, Third Party Risk

Now is the Time for Organizations to Adopt the Future-Dated Requirements of PCI DSS v4.x

Merchants around the world use the Payment Card Industry Data Security Standard (PCI DSS) to safeguard payment card data before, during, and after a purchase is made. The standard is intended for all entities involved in payment card processing, including merchants, processors, acquirers, issuers, and service providers. As of 31 March 2024, the PCI Security…

Read more →

Awareness, Global Security News, interview, PCI DSS, QSA, Third Party Risk

Now is the Time for Organizations to Adopt the Future-Dated Requirements of PCI DSS v4.x

Merchants around the world use the Payment Card Industry Data Security Standard (PCI DSS) to safeguard payment card data before, during, and after a purchase is made. The standard is intended for all entities involved in payment card processing, including merchants, processors, acquirers, issuers, and service providers. As of 31 March 2024, the PCI Security…

Read more →

Compliance, Global Security News, Payment Card Fraud, PCI, PCI DSS

Payment Security: Understanding the Four Corner Model

Introduction Online shopping digital payment transactions may seem quite simple, but in reality, just one single transaction sets off multiple, long-chain reactions. The Payment Card Industry comprises debit cards, credit cards, prepaid, e-purse/e-wallet, and POS payment transactions that enable easy payment transactions for consumers. However, the card scheme is a popular payment transaction process which…

Read more →

Compliance, Global Security News, Payment Card Fraud, PCI, PCI DSS

Payment Security: Understanding the Four Corner Model

Introduction Online shopping digital payment transactions may seem quite simple, but in reality, just one single transaction sets off multiple, long-chain reactions. The Payment Card Industry comprises debit cards, credit cards, prepaid, e-purse/e-wallet, and POS payment transactions that enable easy payment transactions for consumers. However, the card scheme is a popular payment transaction process which…

Read more →

Compliance, Global Security News, Payment Card Fraud, PCI, PCI DSS

Payment Security: Understanding the Four Corner Model

Introduction Online shopping digital payment transactions may seem quite simple, but in reality, just one single transaction sets off multiple, long-chain reactions. The Payment Card Industry comprises debit cards, credit cards, prepaid, e-purse/e-wallet, and POS payment transactions that enable easy payment transactions for consumers. However, the card scheme is a popular payment transaction process which…

Read more →

Compliance, Global Security News, Payment Card Fraud, PCI, PCI DSS

Payment Security: Understanding the Four Corner Model

Introduction Online shopping digital payment transactions may seem quite simple, but in reality, just one single transaction sets off multiple, long-chain reactions. The Payment Card Industry comprises debit cards, credit cards, prepaid, e-purse/e-wallet, and POS payment transactions that enable easy payment transactions for consumers. However, the card scheme is a popular payment transaction process which…

Read more →

Compliance, Global Security News, Payment Card Fraud, PCI, PCI DSS

Payment Security: Understanding the Four Corner Model

Introduction Online shopping digital payment transactions may seem quite simple, but in reality, just one single transaction sets off multiple, long-chain reactions. The Payment Card Industry comprises debit cards, credit cards, prepaid, e-purse/e-wallet, and POS payment transactions that enable easy payment transactions for consumers. However, the card scheme is a popular payment transaction process which…

Read more →