It’s needed annually and everyone that stores, processes, or transmits credit card data needs to be compliant every day to prevent breaches. Being PCI compliant doesn’t mean the company is immune to breaches, but it lowers the amount of fees and impact just in case you do get breached.
00:00 Intro
02:56 PCI Scoping Strategies
12:52 Before the Audit
27:38 During the Audit
30:59 After the Audit
33:40 Q&A
Chris, can you please comment 'when' is the audit required. Annually/quarterly/post incident?! Thanks
It’s needed annually and everyone that stores, processes, or transmits credit card data needs to be compliant every day to prevent breaches.
Being PCI compliant doesn’t mean the company is immune to breaches, but it lowers the amount of fees and impact just in case you do get breached.
If a business uses Point to Point Encryption how can you do its pci dss assignment?
😂 Pᵣₒmₒˢᵐ