PCI DSS v4.0 in Practice Play Book & TOOLKIT   101-page PDF document
$99.00

PCI DSS v4.0 in Practice Play Book & TOOLKIT (101-page PDF document) Preview Image
PCI DSS v4.0 in Practice Play Book & TOOLKIT (101-page PDF document) Preview Image
PCI DSS v4.0 in Practice Play Book & TOOLKIT (101-page PDF document) Preview Image
PCI DSS v4.0 in Practice Play Book & TOOLKIT (101-page PDF document) Preview Image
PCI DSS v4.0 in Practice Play Book & TOOLKIT (101-page PDF document) Preview Image
PCI DSS v4.0 in Practice Play Book & TOOLKIT (101-page PDF document) Preview Image
PCI DSS v4.0 in Practice Play Book & TOOLKIT (101-page PDF document) Preview Image
PCI DSS v4.0 in Practice Play Book & TOOLKIT (101-page PDF document) Preview Image
Log in to unlock full preview.
PCI DSS v4.0 in Practice Play Book & TOOLKIT (101-page PDF document) Preview Image
PCI DSS v4.0 in Practice Play Book & TOOLKIT (101-page PDF document) Preview Image
PCI DSS v4.0 in Practice Play Book & TOOLKIT (101-page PDF document) Preview Image
PCI DSS v4.0 in Practice Play Book & TOOLKIT (101-page PDF document) Preview Image
PCI DSS v4.0 in Practice Play Book & TOOLKIT (101-page PDF document) Preview Image
PCI DSS v4.0 in Practice Play Book & TOOLKIT (101-page PDF document) Preview Image
PCI DSS v4.0 in Practice Play Book & TOOLKIT (101-page PDF document) Preview Image
PCI DSS v4.0 in Practice Play Book & TOOLKIT (101-page PDF document) Preview Image
Arrow   Click main image to view in full screen. Unlock all 17 preview images:   Login Register

PCI DSS v4.0 in Practice Play Book & TOOLKIT – PDF

PDF document + Zip archive file (ZIP) 101 Pages

$99.00

Add to Cart
  


Immediate download
Editable with PDF editor
Free lifetime updates

CYBER SECURITY PDF DESCRIPTION

PCI DSS v4.0 PDF: Download the Payment Card Industry Data Security Standard playbook & toolkit. Learn compliance steps, network security, access control, and monitoring. PCI DSS v4.0 in Practice Play Book & TOOLKIT is a 101-page PDF document with a supplemental Zip archive file document available for immediate download upon purchase.

Table of Contents
Foreword 5
Acronyms and Abbreviations 8
Table of Contents 10
List of Figures 13
Chapter 1: The Stakes of Payment Security and the Road to v4.0 2
Why payment data is a target 2
The economics of a breach 3
What PCI DSS is, and what it is not 4
The road to v4.0 and v4.0.1 4
How this book is organized 6
Conclusion 7
Chapter 2: Inside the Standard: Six Goals, Twelve Requirements, Two Approaches 9
The structure: six goals, twelve requirements 9
Account data: what you protect, and what you must never keep 12
Who must comply, and how it is validated 13
Two approaches: defined and customized 13
Reading a requirement correctly 15
Conclusion 16
Chapter 3: Scoping the Cardholder Data Environment 17
What is in scope 17
Mapping the data flow 18
Segmentation: the lever that shrinks scope 19
Scope-reducing technologies 20
Keeping scope honest 21
Conclusion 21
Chapter 4: Build and Maintain a Secure Network and Systems (Requirements 1–2) 24
The threat these requirements answer 24
Requirement 1 – Install and maintain network security controls 25
Requirement 2 – Apply secure configurations to all system components 26
Putting it together 27
Chapter 5: Protect Account Data (Requirements 3–4) 30
The threat these requirements answer 30
Requirement 3 – Protect stored account data 31
Requirement 4 – Protect cardholder data in transit 32
Chapter 6: Maintain a Vulnerability Management Program (Requirements 5–6) 36
The threat these requirements answer 36
Requirement 5 – Protect against malicious software 37
Requirement 6 – Develop and maintain secure systems and software 37
Chapter 7: Implement Strong Access Control Measures (Requirements 7–9) 42
The threat these requirements answer 42
Requirement 7 – Least privilege and need-to-know 42
Requirement 8 – Identify and authenticate 43
Requirement 9 – Restrict physical access 44
Chapter 8: Regularly Monitor and Test Networks (Requirements 10–11) 47
The threat these requirements answer 47
Requirement 10 – Log and monitor all access 48
Requirement 11 – Test security regularly 49
Chapter 9: Maintain an Information Security Policy (Requirement 12) 52
The threat this requirement answers 52
What Requirement 12 expects 52
The continuous-compliance mindset 54
Chapter 10: From Gap Analysis to Go-Live: An Implementation Roadmap 57
Phase 1 u2014 Scope and discover 57
Phase 2 u2014 Assess the gaps 58
Phase 3 u2014 Remediate and build 59
Phase 4 u2014 Validate and attest 60
Phase 5 u2014 Sustain as business as usual 60
Chapter 11: Assessment, Validation, and Working with a QSA 63
Merchant levels 63
Self-Assessment Questionnaires 65
The formal assessment and its artifacts 66
Working well with an assessor 66
Chapter 12: Challenges, Real-World Use Cases, and the Future of Payment Security 69
Recurring challenges and how to meet them 69
Use Case 1 u2014 Mid-sized e-commerce retailer 70
Use Case 2 u2014 SaaS payment service provider 71
Use Case 3 u2014 Small brick-and-mortar merchant 72
A note for the Gulf region 73
The future of payment security 73
Conclusion: Compliance as a Practice, Not an Event 76
Appendix A: PCI DSS v4.0.1 Compliance Checklist 77
Appendix B: Cross-Framework Control Mapping 79
Appendix C: Practical Templates 81
Glossary 82
References 84
Topic Finder 86
About the Author 87

Got a question about the product? Email us at support@flevy.com or ask the author directly by using the "Ask the Author a Question" form. If you cannot view the preview above this document description, go here to view the large preview instead.

Source: Best Practices in Cyber Security PDF: PCI DSS v4.0 in Practice Play Book & TOOLKIT PDF (PDF) Document, Mohamed Alshamey


$99.00

Add to Cart
  

ABOUT THE AUTHOR

Author image
Additional documents from author: 35

Senior Consultant in Cybersecurity GRC, Data Governance, Cybersecurity, Privacy, and Data Management, with over 20 years of experience in information technology, consulting, training, and technical capacity building. holds a PhD. In AI & Data Privacy, he has a master's degree in cybersecurity and is currently pursuing research focused on data privacy. possesses extensive expertise in ... [read more]

Ask the Author a Question

You must be logged in to contact the author.

Click here to log in Click here register

Did you know?
The average daily rate of a McKinsey consultant is $6,625 (not including expenses). The average price of a Flevy document is $65.




Trusted by over 10,000+ Client Organizations
Since 2012, we have provided business templates to over 10,000 businesses and organizations of all sizes, from startups and small businesses to the Fortune 100, in over 130 countries.
AT&T GE Cisco Intel IBM Coke Dell Toyota HP Nike Samsung Microsoft Astrazeneca JP Morgan KPMG Walgreens Walmart 3M Kaiser Oracle SAP Google E&Y Volvo Bosch Merck Fedex Shell Amgen Eli Lilly Roche AIG Abbott Amazon PwC T-Mobile Broadcom Bayer Pearson Titleist ConEd Pfizer NTT Data Schwab





Read Customer Testimonials

 
"As a consulting firm, we had been creating subject matter training materials for our people and found the excellent materials on Flevy, which saved us 100's of hours of re-creating what already exists on the Flevy materials we purchased."

– Michael Evans, Managing Director at Newport LLC
 
"As a small business owner, the resource material available from FlevyPro has proven to be invaluable. The ability to search for material on demand based our project events and client requirements was great for me and proved very beneficial to my clients. Importantly, being able to easily edit and tailor "

– Michael Duff, Managing Director at Change Strategy (UK)
 
"The wide selection of frameworks is very useful to me as an independent consultant. In fact, it rivals what I had at my disposal at Big 4 Consulting firms in terms of efficacy and organization."

– Julia T., Consulting Firm Owner (Former Manager at Deloitte and Capgemini)
 
"If you are looking for great resources to save time with your business presentations, Flevy is truly a value-added resource. Flevy has done all the work for you and we will continue to utilize Flevy as a source to extract up-to-date information and data for our virtual and onsite presentations!"

– Debbi Saffo, President at The NiKhar Group
 
"Flevy.com has proven to be an invaluable resource library to our Independent Management Consultancy, supporting and enabling us to better serve our enterprise clients.

The value derived from our [FlevyPro] subscription in terms of the business it has helped to gain far exceeds the investment made, making a subscription a no-brainer for any growing consultancy – or in-house strategy team."

– Dean Carlton, Chief Transformation Officer, Global Village Transformations Pty Ltd.
 
"As a niche strategic consulting firm, Flevy and FlevyPro frameworks and documents are an on-going reference to help us structure our findings and recommendations to our clients as well as improve their clarity, strength, and visual power. For us, it is an invaluable resource to increase our impact and value."

– David Coloma, Consulting Area Manager at Cynertia Consulting
 
"My FlevyPro subscription provides me with the most popular frameworks and decks in demand in today’s market. They not only augment my existing consulting and coaching offerings and delivery, but also keep me abreast of the latest trends, inspire new products and service offerings for my practice, and educate me "

– Bill Branson, Founder at Strategic Business Architects
 
"I have used FlevyPro for several business applications. It is a great complement to working with expensive consultants. The quality and effectiveness of the tools are of the highest standards."

– Moritz Bernhoerster, Global Sourcing Director at Fortune 500



Customers Also Like These Documents

Explore Templates on Related Management Topics



Your Recently Viewed Documents
Download our FREE Digital Transformation Templates

Download our free compilation of 50+ Digital Transformation slides and templates. DX concepts covered include Digital Leadership, Digital Maturity, Digital Value Chain, Customer Experience, Customer Journey, RPA, etc.