Course Outline
Introduction
Understanding PCI-DSS
- Introduction to PCI-DSS
- Importance of PCI-DSS compliance
- Key objectives of PCI-DSS
PCI-DSS Standards and Requirements
- Overview of PCI-DSS requirements
- The 12 PCI-DSS requirements
- Build and maintain a secure network and systems
- Protect cardholder data
- Maintain a vulnerability management program
- Implement strong access control measures
- Regularly monitor and test networks
- Maintain an information security policy
PCI-DSS Compliance and Assessment
- PCI-DSS compliance process
- Roles and responsibilities in PCI-DSS compliance
- Types of PCI-DSS assessments (SAQ, ROC)
- Working with Qualified Security Assessors (QSAs)
Scoping and Segmentation
- Defining the cardholder data environment (CDE)
- Scoping PCI-DSS
- Network segmentation and its importance
Building and Maintaining a Secure Network
- Firewalls and router configurations
- Securing network components
- Wireless networking security
Protecting Cardholder Data
- Data encryption and masking techniques
- Protecting stored cardholder data
- Secure transmission of cardholder data
Maintaining a Vulnerability Management Program
- Regular updates and patch management
- Identifying and mitigating vulnerabilities
- Anti-virus and anti-malware solutions
Implementing Strong Access Control Measures
- Access control policies and procedures
- Managing user access and authentication
- Physical security controls
Regularly Monitoring and Testing Networks
- Monitoring network traffic and logs
- Conducting vulnerability scans
- Penetration testing best practices
Maintaining an Information Security Policy
- Developing and implementing security policies
- Security awareness training for employees
- Incident response planning
Preparing for a PCI-DSS Audit
- Preparing documentation and evidence
- Conducting internal audits
- Addressing non-compliance issues
Summary and Next Steps
Requirements
- Understand the online payment concept
- Network Fundamentals
- Basics of Information Security
- Work experience in an IT or IT-related role
Delivery Options
Private Group Training
Our identity is rooted in delivering exactly what our clients need.
- Pre-course call with your trainer
- Customisation of the learning experience to achieve your goals -
- Bespoke outlines
- Practical hands-on exercises containing data / scenarios recognisable to the learners
- Training scheduled on a date of your choice
- Delivered online, onsite/classroom or hybrid by experts sharing real world experience
Private Group Prices RRP from €4560 online delivery, based on a group of 2 delegates, €1440 per additional delegate (excludes any certification / exam costs). We recommend a maximum group size of 12 for most learning events.
Contact us for an exact quote and to hear our latest promotions
Public Training
Please see our public courses