PCI DSS Implementation

Our PCI DSS Implementation training course will help you to:

• Get an understanding of the principles and application of PCI DSS scoping;
• Gain in-depth knowledge of the 12 PCI DSS requirements;
• Acquire the skills to apply the requirements to your organisation;
• Find out how to create a PCI DSS implementation readiness programme for SAQ (self-assessment questionnaire) or external audit; and
• Receive practical advice from an experienced PCI DSS consultant.

Our PCI DSS Implementation training course will cover the following topics:

Day 1

• Applying PCI DSS scoping techniques to a given environment.
• Defining and identifying the relationship between each of the 12 PCI DSS requirements and an organisation.
• Installing and maintaining network security controls.
• How to apply secure configurations to all system components using tools and sites.
• Methods of storing cardholder data and assurance to confirm data locations.
• Methods of encryption and cryptography for the transmission of cardholder data across open, public networks.
• Selecting antivirus solutions for traditional and organisational settings.

Day 2

• The OWASP (Open Web Application Security Project) Top 10 and identifying updates to the risk register.
• Managing access to cardholder data by users with different job roles.
• Identifying user accounts and implementing MFA (multi-factor authentication) where required.
• Constructing a merchant premises that restricts physical access and includes locks, RFID, CCTV, PED storage and PED checks.
• Analysing and reviewing logs in the event viewer to identify access to network resources.
• Determining appropriate testing methods such as penetration testing, vulnerability scanning, ASV scanning and segmentation testing.

Day 3

• How to maintain an information security policy for all users.
• Understanding the option of using a customised approach.
• How to carry out a risk analysis.
• PCI DSS implementation readiness preparation and exercise.
• Summary and exam preparation.

Our PCI DSS Implementation training course is aimed at individuals who are responsible for the ensuring that their organisation becomes fully compliant to the technical and business requirements of the PCI DSS standard. Consultants seeking to provide PCI implementation advice to their respective client organisations.

Our PCI DSS Implementation training course includes the following:

• Full Course Materials (PDF)
• PCI DSS Implementation Examination
• A Certificate Of Attendance

There are no formal entry-level requirements for our PCI DSS Implementation training course.

You may benefit from advance reading of the following introductory guide: PCI DSS - A Pocket Guide.

PCI DSS Foundation Examination:

You will take the PCI DSS Foundation (PCI F) exam set by IBITGQ (International Board for IT Governance Qualifications).

• Delivery Method: Online
• Duration: 60 Minutes
• Questions: 40
• Format: Multiple-Choice
• Pass Mark: 65%

Are you looking to start a career in Cyber Security? You can now train with Cyber Security Experts for a complete introduction to cyber security threats, cyber security controls, security frameworks and incident management.

Our one-dayCertified Cyber Security Foundation training course is fully aligned with CyBOK v1.1 (Cyber Security Body of Knowledge), which is approved by the NCSC (National Cyber Security Centre).

Every organisation that stores or transmits or processes card holder data must comply with PCI DSS standard. Compliance to the standard is regulated and enforced by payment card brands (VISA, MasterCard, American Express) directly or through their partner relationships with ‘acquirer’ banks.