PCI Compliance: Understand and Implement Effective PCI Data Security Standard Compliance, Second Edition, discusses not only how to apply PCI in a practical and cost-effective way but more importantly why. The book explains what the Payment Card Industry Data Security Standard (PCI DSS) is and why it is here to stay; how it applies to information technology (IT) and information security professionals and their organization; how to deal with PCI assessors; and how to plan and manage PCI DSS project. It also describes the technologies referenced by PCI DSS and how PCI DSS relates to laws, frameworks, and regulations.This book is for IT managers and company managers who need to understand how PCI DSS applies to their organizations. It is for the small- and medium-size businesses that do not have an IT department to delegate to. It is for large organizations whose PCI DSS project scope is immense. It is also for all organizations that need to grasp the concepts of PCI DSS and how to implement an effective security framework that is also compliant. Completely updated to follow the PCI DSS standard 1.2.1 Packed with help to develop and implement an effective security strategy to keep infrastructure compliant and secure Both authors have broad information security backgrounds, including extensive PCI DSS experience

Anton Chuvakin; Branden R Williams; Ward Spangenberg

Dr. Anton Chuvakin, Branden R. Williams

Anton A Chuvakin; Branden R Williams

Chuvakin, Anton; Williams, Branden R

Amsterdam ; Boston: Elsevier

Syngress Publishing

IT Pro, Second edition, Burlington, MA, c2010

United States, United States of America

IT Pro, 2nd ed, Burlington, MA, ©2010

2nd ed, Amsterdam, 2010

2, PT, 2009

<p>Identity theft and other confidential information theft have now topped the charts as the #1 cybercrime. In particular, credit card data is preferred by cybercriminals. Is your payment processing secure and compliant? Now in its second edition, PCI Compliance has been revised to follow the new PCI DSS standard 1.2.1. Also new to this edition: Each chapter has how-to guidance to walk you through implementing concepts, and real-world scenarios to help you relate to the information and better grasp how it impacts your data. This book provides the information that you need to understand the current PCI Data Security standards and how to effectively implement security on the network infrastructure in order to be compliant with the credit card industry guidelines and protect sensitive and personally identifiable information.</p><br><br><ul><li>Completely updated to follow the PCI DSS standard 1.2.1</li><li>Packed with help to develop and implement an effective security strategy to keep infrastructure compliant and secure</li><li>Both authors have broad information security backgrounds, including extensive PCI DSS experience</li> </ul>

Identity theft and other confidential information theft have now topped the charts as the #1 cybercrime. In particular, credit card data is preferred by cybercriminals. Is your payment processing secure and compliant? Now in its second edition, PCI Compliance has been revised to follow the new PCI DSS standard 1.2.1. Also new to this edition: Each chapter has how-to guidance to walk you through implementing concepts, and real-world scenarios to help you relate to the information and better grasp how it impacts your data. This book provides the information that you need to understand the current PCI Data Security standards and how to effectively implement security on the network infrastructure in order to be compliant with the credit card industry guidelines and protect sensitive and personally identifiable information. Completely updated to follow the PCI DSS standard 1.2.1 Packed with help to develop and implement an effective security strategy to keep infrastructure compliant and secure Both authors have broad information security backgrounds, including extensive PCI DSS experience

PCI Understand and Implement Effective PCI Data Security Standard Compliance, Second Edition, discusses not only how to apply PCI in a practical and cost-effective way but more importantly why. The book explains what the Payment Card Industry Data Security Standard (PCI DSS) is and why it is here to stay; how it applies to information technology (IT) and information security professionals and their organization; how to deal with PCI assessors; and how to plan and manage PCI DSS project. It also describes the technologies referenced by PCI DSS and how PCI DSS relates to laws, frameworks, and regulations.
This book is for IT managers and company managers who need to understand how PCI DSS applies to their organizations. It is for the small- and medium-size businesses that do not have an IT department to delegate to. It is for large organizations whose PCI DSS project scope is immense. It is also for all organizations that need to grasp the concepts of PCI DSS and how to implement an effective security framework that is also compliant.

xviii, 348 p. : 24 cm
Rev. ed. of: PCI compliance / technical editor, Ward Spangenberg, 2007
Includes bibliographical references and index
About the author -- About PCI and this book -- Introduction to fraud, ID theft, and regulatory mandates -- Why is PCI here? -- Building and maintaining a secure network -- Strong access controls -- Protecting cardholder data -- Using wireless networking -- Vulnerability management -- Logging events and monitoring the cardholder -- Managing a PCI DSS project to achieve compliance -- Don't fear the assessor -- The art of compensating control -- You're compliant, now what? -- PCI and other laws, mandates, and frameworks -- Myths and misconceptions of PCI DSS

2024-07-01