The PCI Security Standards CouncilParticipating Organizationsp g g

Welcome

• Thank you for your interest!• Nearly 150 Participating Organizationsy p g g• Global membership across industries

2

Global Participation

3

Participating Organizations by Industry

MerchantsVendors

Financial Institutions

Merchants

Associations

Vendors

GatewaysAssociations Gateways

ProcessorsEFT Networks

Service

4

Provider

The PCI Security Standards Council

• An open global forum launched in September 2006 for the ongoing development, enhancement, storage, dissemination and implementation of security standards for account data protection.

5

The PCI Security Standards Council Members

6

Objectives

• Manage standards– Data Security Standard (DSS)y ( )– PIN Entry Device (PED)

• Facilitate programsFacilitate programs– Approved Scanning Vendors (ASV)– Qualified Security Assessors (QSA)– Qualified Security Assessors (QSA)– PED lab validation

7

Organizational Structure

EXECUTIVE COMMITTEELEGAL

ADVISORSMARKETING & COMMUNICATIONS

QSA ASV BOARD OF MANAGERS

TECHNICAL (DSS) WORKING Task forces (ad hoc)

QSA, ASV community

TECHNICAL (PED) GROUPSTask forces (ad hoc)

PARTICIPATING ORGANIZATIONS

8

Your Role

• As a Participating Organization, you will:– Play a direct role in the ongoing development

f PCI t d dof PCI standards– Attend PCI Security Standards Council

Community MeetingsCommunity Meetings– Stand for election on the Board of Advisors– Review in advance standards and supportingReview in advance standards and supporting

materials before release – And more!

9

Board of Advisors21 P i i i O i i• 21 Participating Organizations– 14 representatives elected by Participating

Organizationsg– 7 appointed by the Executive Committee to ensure

broad representation both geographically and across key stakeholders

• Categories:– Financial institutions

Merchants– Merchants – Processors – Others (POS Vendors, associations, etc.)

10

Input Opportunities

• Online– Comment periodsp

• Webinars• Conference calls• Conference calls• Global community meetings

I l ti i J– Inaugural meeting in June

11

Coming Up

• PCI DSS Self-Assessment Questionnaire v 1.1– Be the first to see the proposed draft– Your feedback will be evaluated before release

• Data Security Standard v 1.1– Your feedback on our current version will provide

direct input into the next evolution of the standard

12

FeedbackSTANDARDSTANDARD

Council Working GroupQSA ASV

Participating Organizations

Executive Committee Advisory Board

13

NEW STANDARD

QUESTIONS?

Contact Us

• For questions about your membership: participation@pcisecuritystandards.org

• For questions about the DSS and supporting documents: pp ginfo@pcisecuritystandards.org

• Questions that require interpretation from the Council's subject-matter experts may reflect the input of all five founding payment brands. We appreciate your patience as we work to craft your specific and individualized answer.

15

Thank You!