The PCI Security Standards Council Particippggating ......The PCI Security Standards Council • An...
Transcript of The PCI Security Standards Council Particippggating ......The PCI Security Standards Council • An...
The PCI Security Standards CouncilParticipating Organizationsp g g
Welcome
• Thank you for your interest!• Nearly 150 Participating Organizationsy p g g• Global membership across industries
2
Global Participation
3
Participating Organizations by Industry
MerchantsVendors
Financial Institutions
Merchants
Associations
Vendors
GatewaysAssociations Gateways
ProcessorsEFT Networks
Service
4
Provider
The PCI Security Standards Council
• An open global forum launched in September 2006 for the ongoing development, enhancement, storage, dissemination and implementation of security standards for account data protection.
5
The PCI Security Standards Council Members
6
Objectives
• Manage standards– Data Security Standard (DSS)y ( )– PIN Entry Device (PED)
• Facilitate programsFacilitate programs– Approved Scanning Vendors (ASV)– Qualified Security Assessors (QSA)– Qualified Security Assessors (QSA)– PED lab validation
7
Organizational Structure
EXECUTIVE COMMITTEELEGAL
ADVISORSMARKETING & COMMUNICATIONS
QSA ASV BOARD OF MANAGERS
TECHNICAL (DSS) WORKING Task forces (ad hoc)
QSA, ASV community
TECHNICAL (PED) GROUPSTask forces (ad hoc)
PARTICIPATING ORGANIZATIONS
8
Your Role
• As a Participating Organization, you will:– Play a direct role in the ongoing development
f PCI t d dof PCI standards– Attend PCI Security Standards Council
Community MeetingsCommunity Meetings– Stand for election on the Board of Advisors– Review in advance standards and supportingReview in advance standards and supporting
materials before release – And more!
9
Board of Advisors21 P i i i O i i• 21 Participating Organizations– 14 representatives elected by Participating
Organizationsg– 7 appointed by the Executive Committee to ensure
broad representation both geographically and across key stakeholders
• Categories:– Financial institutions
Merchants– Merchants – Processors – Others (POS Vendors, associations, etc.)
10
Input Opportunities
• Online– Comment periodsp
• Webinars• Conference calls• Conference calls• Global community meetings
I l ti i J– Inaugural meeting in June
11
Coming Up
• PCI DSS Self-Assessment Questionnaire v 1.1– Be the first to see the proposed draft– Your feedback will be evaluated before release
• Data Security Standard v 1.1– Your feedback on our current version will provide
direct input into the next evolution of the standard
12
FeedbackSTANDARDSTANDARD
Council Working GroupQSA ASV
Participating Organizations
Executive Committee Advisory Board
13
NEW STANDARD
QUESTIONS?
Contact Us
• For questions about your membership: [email protected]
• For questions about the DSS and supporting documents: pp [email protected]
• Questions that require interpretation from the Council's subject-matter experts may reflect the input of all five founding payment brands. We appreciate your patience as we work to craft your specific and individualized answer.
15
Thank You!