PCI compliance

New & Notable

Download this free guide

Download: Top FAQs regarding the impact of 4 common compliance regulations

IT operations are sometimes unexpectedly affected by major audit regulations – is your IT team prepared? Explore the critical role your IT team plays in ensuring compliance and review the penalties for non-compliance by downloading this FREE e-guide, which covers any questions you might have regarding 4 major legislative regulations.

Corporate E-mail Address:
You forgot to provide an Email Address.
This email address doesn’t appear to be valid.
This email address is already registered. Please login.
You have exceeded the maximum character limit.
Please provide a Corporate E-mail Address.
- I agree to TechTarget’s Terms of Use, Privacy Policy, and the transfer of my information to the United States for processing to provide me with relevant information as described in our Privacy Policy.
Please check the box if you want to proceed.
- I agree to my information being processed by TechTarget and its Partners to contact me via phone, email, or other means regarding information relevant to my professional interests. I may unsubscribe at any time.
Please check the box if you want to proceed.

PCI compliance News

May 05, 2016 05 May'16
PCI DSS 3.2 multifactor requirement among the version's biggest changes

Details surrounding the updated Payment Card Industry Data Security Standard show that version 3.2 includes new multifactor authentication and encryption requirements. Also in recent GRC news: SEC ...
February 05, 2016 05 Feb'16
Barclays, Credit Suisse to pay $154M for 'dark pool' trading violations

The U.S. Securities and Exchange commission announced last week that global banks Barclays and Credit Suisse would pay a record total of more than $154 million to settle allegations over "dark ...
January 07, 2016 07 Jan'16
Repeat HIPAA violators face minimal ramifications

Despite several HIPAA violations, recent data analysis found U.S. healthcare providers such as CVS and the VA face few punitive actions. Also in recent GRC headlines: Companies have two more years ...
October 02, 2015 02 Oct'15
As EMV adoption lags, industry remains optimistic

News roundup: Despite a low adoption rate going into the liability shift, many in the industry are optimistic about the future of EMV use. Plus: TrueCrypt flaws; AWS crypto keys stolen; women in infosec.

View All News

PCI compliance Get Started

Bring yourself up to speed with our introductory content

PCI DSS merchant levels

Merchant levels are used by the payment card industry (PCI) to determine risk levels and determine the appropriate level of security for their businesses. Specifically, merchant levels determine the amount of assessment and security validation that ... Continue Reading
PCI DSS compliance (Payment Card Industry Data Security Standard compliance)

Payment Card Industry Data Security Standard (PCI DSS) compliance is adherence to the set of policies and procedures developed to protect credit, debit and cash card transactions and prevent the misuse of cardholders' personal information. Continue Reading
FTC (Federal Trade Commission)

The FTC (Federal Trade Commission) is a United States federal regulatory agency designed to monitor and prevent anticompetitive, deceptive or unfair business practices. Continue Reading

View All Get Started

Evaluate PCI compliance Vendors & Products

Weigh the pros and cons of technologies, products and projects you are considering.

How does a PCI ISA help enterprise security and compliance?

Enterprise compliance can be a burden to manage, which is where a PCI ISA can be helpful. Expert Mike Chapple explains how a PCI Internal Security Assessor helps with security. Continue Reading
Do PCI compliance standards matter when merchants sell off-site?

Merchants that sell at off-site venues need to take extra care to follow PCI compliance standards. Expert Mike Chapple discusses how organizations can do this. Continue Reading
Why is the FTC interested in PCI assessments?

The FTC's order for PCI DSS compliance assessments is odd since PCI isn't a government regulation. Expert Mike Chapple explains the motivation driving this order. Continue Reading

View All Evaluate

Manage PCI compliance

Learn to apply best practices and optimize your operations.

Data protection requirements start with firm grasp of GRC needs

Corporate data protection requirements are complex, but determining a company's unique GRC needs is an essential first step to information security. Continue Reading
What advice does the PCI Special Interest Group have for compliance?

A new PCI Special Interest Group document gives advice to enterprises on staying PCI DSS compliant after audits. Expert Mike Chapple highlights the key takeaways. Continue Reading
Intelligence-driven security has benefits, but beware its limits

In this video, Vantiv CSO Kim Jones discusses why a lack of hard data makes some iterations of intelligence-driven security not so intelligent. Continue Reading

View All Manage

Problem Solve PCI compliance Issues

We’ve gathered up expert advice and tips from professionals like you so that the answers you need are always available.

Next generation of threats requires new approach to PCI security

In this Q&A, learn how increasingly sophisticated cyberthreats should influence organizations' information protection and PCI security strategy. Continue Reading
Will consumer protection measures evolve after the Target data breach?

The Target data breach has led legislators to reexamine retailers' data security processes. Will it lead to new consumer protection measures? Continue Reading
The mobile device influence on regulatory compliance mandates

In this tip, learn how the proliferation of mobile devices in the workplace forces companies to reexamine their regulatory compliance processes. Continue Reading

View All Problem Solve