News. Exchange. Practical Tips: The usd PCI Best Practice Workshop

27. October 2022

For seasoned PCI officers, this is a fixed date to find out about updates in the world of payment card industry standards and to discuss successful implementations with usd AG's PCI QSAs. For new PCI officers, it's a great opportunity to network and exchange ideas with others. Traditionally, usd AG's PCI Security Services team invites you to the usd PCI Best Practice Workshop twice a year. On November 16 (English) and 17 (German) the workshop will take place again.

Six months have passed since the release of the new version of PCI DSS. We have used this time to answer the most important questions about deadlines, different approaches and the most important new features of PCI DSS v4.0. In the upcoming workshop, our experts will go into more detail and discuss the interpretations of the new requirements, their technical implementation and consequences for affected companies.

Benedikt Krümmel, usd Technical Sales Consultant und PCI Professional, will moderate the two workshops: "It is important for us to take a close look at the new version of the standard from different angles: From a detailed look at individual requirements in general, to requirements for our customers in e-commerce, to how the PCI DSS can also help you achieve more security outside of your CDE. I'm looking forward to the presentations, but especially to discussing them with you and our experts."

Agenda

Torsten Schlotmann, Head of PCI Security Services and QSA, takes a closer look at selected, new requirements of this version of the standard and discusses practical use cases with you.

Qualified Security Assessor Raphael Heinlein will go into the most important innovations that PCI DSS v.4.0 brings for e-commerce. In this presentation, we will not only look at the pure requirements of the standard, but also give practical tips for next steps and, if necessary, technical implementation options - for your compliance and more security.

The fundamental revision of the standard was necessary to reflect technologies increasingly used in practice (e.g. cloud services or microservice technologies). Can the security requirements of the PCI DSS - especially version 4.0 - be a good baseline for your IT security outside of the CDE? This question will be discussed by our PCI and KRITIS auditor Vinzent Ratermann in the last part of the workshop..

The German usd PCI Best Practice Workshop on November 17 will be offered as a hybrid format simultaneously on the premises of the CST Academy in Neu-Isenburg and as an online live event via Microsoft Teams. Already during the presentations, but at the latest during the subsequent get-together on site, there will be room for discussion, questions and networking with all participants.

The English usd PCI Best Practice Workshop on November 16 will take place exclusively as an online live event via Microsoft Teams.


usd PCI Best Practice Workshop (English)

Date: 16 November 2022

Time: 2:00 - 5:00 p.m.

Format: Online

Attendance fee: EUR 149.00 plus VAT

Sign up: https://usd-pci-bpworkshop-en.cst.academy/

usd PCI Best Practice Workshop (German)

Date: 17 November 2022

Time: 2:00 - 5:00 p.m.
afterwards Get Together on site

Format: hybrid

Attendance fee: EUR 149.00 plus VAT

Sign up: https://usd-pci-bpworkshop-de.cst.academy/

Also interesting:

PHOENIX group establishes Europe-wide ISMS with support from usd AG

PHOENIX group establishes Europe-wide ISMS with support from usd AG

Particularly in high-growth industries with increasing internationalisation, such as the pharmaceutical industry, corporations today face the challenge of setting up their information security governance in such a way that it meets the associated risks and challenges....

Security Scan and Pentest: What are the Differences?  

Security Scan and Pentest: What are the Differences?  

A proactive protection against hacker attacks is essential, especially for systems and applications that are accessible from the Internet. A penetration test, or pentest for short, and security scan are frequently requested IT security analyses in this context,...

Security Advisories for Jellyfin

Security Advisories for Jellyfin

The usd HeroLab analysts examined the multimedia application Jellyfin while conducting their security analyses. Two cross-site scripting vulnerabilities were identified that allowed a simple user account to take over higher-privileged accounts, such as an...

Categories

Categories