The Definitive Guide to PCI DSS Version 4
eBook - ePub

The Definitive Guide to PCI DSS Version 4

Documentation, Compliance, and Management

  1. English
  2. ePUB (mobile friendly)
  3. Available on iOS & Android
eBook - ePub

The Definitive Guide to PCI DSS Version 4

Documentation, Compliance, and Management

About this book

This book is your go-to reference on how to achieve PCI compliance. With more than 400 PCI requirements, the updated PCI Data Security Standard (PCI DSS) v4.0 does not detail the specific documentation that a PCI auditor—known as a Qualified Security Assessor (QSA)—needs to know. This book is the first reference to detail the specific documentation needed for every PCI requirement. The authors provide real-world examples of complying with the 12 main PCI requirements and clarify many of the gray areas within the PCI DSS.

Any merchant or service provider that stores, processes, or transmits credit card data must comply with the PCI Data Security Standard. PCI DSS 1.0 was first published in 2004, yet many of those tasked with PCI compliance still encounter difficulties when trying to make sense of it. PCI DSS version 4 was published in March 2022, and at 360 pages, it has numerous additional requirements, leaving many people struggling to know what they need to do to comply.

PCI DSS v4.0 has a transition period in which PCI DSS version 3.2.1 will remain active for two years from the v4.0 publication date. Although the transition period ends on March 31, 2024, and may seem far away, those tasked with PCI compliance will need every bit of the time to acquaint themselves with the many news updates, templates, forms, and more, that PCI v4.0 brings to their world.


What You'll Learn

  • Know what it takes to be PCI compliant
  • Understand and implement what is in the PCI DSS
  • Get rid of cardholder data
  • Everything you need to know about segmenting your cardholder data network
  • Know what documentation is needed for your PCI compliance efforts
  • Leverage real-world experience to assist PCI compliance work


Who This Book Is For                                                 

Compliance managers and those tasked with PCI compliance, information security managers, internal auditors, chief security officers, chief technology officers, and chief information officers. Readers should have a basic understanding of how credit card payment networks operate, in addition to basic security concepts. 

Trusted by 375,005 students

Access to over 1.5 million titles for a fair monthly price.

Study more efficiently using our study tools.

Information

Publisher
Apress
Year
2023
Print ISBN
9781484292877
eBook ISBN
9781484292884
Topic
Computer Science
Subtopic
Cyber Security
Index
Computer Science

Table of contents

  1. Cover
  2. Front Matter
  3. 1. A Brief History of PCI
  4. 2. Install and Maintain Network Security Controls
  5. 3. Apply Secure Configurations to All System Components
  6. 4. Protect Stored Account Data
  7. 5. Protect Cardholder Data with Strong Cryptography During Transmission Over Open, Public Networks
  8. 6. Protect All Systems and Networks from Malicious Software
  9. 7. Develop and Maintain Secure Systems and Software
  10. 8. Restrict Access to System Components and Cardholder Data by Business Need to Know
  11. 9. Identify Users and Authenticate Access to System Components
  12. 10. Restrict Physical Access to Cardholder Data
  13. 11. Log and Monitor All Access to System Components and Cardholder Data
  14. 12. Test Security of Systems and Networks Regularly
  15. 13. Support Information Security with Organizational Policies and Programs
  16. 14. How to Read a Service Provider Attestation of Compliance
  17. 15. Segmentation and Tokenization
  18. 16. The Customized Approach, Compensating Controls, and the Targeted Risk Analysis
  19. Back Matter

Frequently asked questions

Yes, you can cancel anytime from the Subscription tab in your account settings on the Perlego website. Your subscription will stay active until the end of your current billing period. Learn how to cancel your subscription
No, books cannot be downloaded as external files, such as PDFs, for use outside of Perlego. However, you can download books within the Perlego app for offline reading on mobile or tablet. Learn how to download books offline
Perlego offers two plans: Essential and Complete
  • Essential is ideal for learners and professionals who enjoy exploring a wide range of subjects. Access the Essential Library with 800,000+ trusted titles and best-sellers across business, personal growth, and the humanities. Includes unlimited reading time and Standard Read Aloud voice.
  • Complete: Perfect for advanced learners and researchers needing full, unrestricted access. Unlock 1.5M+ books across hundreds of subjects, including academic and specialized titles. The Complete Plan also includes advanced features like Premium Read Aloud and Research Assistant.
Both plans are available with monthly, semester, or annual billing cycles.
We are an online textbook subscription service, where you can get access to an entire online library for less than the price of a single book per month. With over 1.5 million books across 990+ topics, we’ve got you covered! Learn about our mission
Look out for the read-aloud symbol on your next book to see if you can listen to it. The read-aloud tool reads text aloud for you, highlighting the text as it is being read. You can pause it, speed it up and slow it down. Learn more about Read Aloud
Yes! You can use the Perlego app on both iOS and Android devices to read anytime, anywhere — even offline. Perfect for commutes or when you’re on the go.
Please note we cannot support devices running on iOS 13 and Android 7 or earlier. Learn more about using the app
Yes, you can access The Definitive Guide to PCI DSS Version 4 by Arthur B. Cooper Jr.,Jeff Hall,David Mundhenk,Ben Rothke in PDF and/or ePUB format, as well as other popular books in Computer Science & Cyber Security. We have over 1.5 million books available in our catalogue for you to explore.