PCI Monthly Update: December News, Deep Dive into Requirement 8, and QSA Q&A
Cybersecurity Sense
English - January 11, 2024 10:55 - 35 minutes - 82.4 MB - ★★★★★ - 13 ratingsTechnology Business itsecurity cybersecurity hipaacompliance hitrust informationsecurity malware pcireports ransomware riskassessments socreports Homepage Download Apple Podcasts Google Podcasts Overcast Castro Pocket Casts RSS feed
Join us for the latest episode of our PCI Monthly Update podcast, where we explore the latest developments in the world of payment card industry security.
We begin with a news segment highlighting the PCI SSC's TRA Guidance. Next, we delve into Requirement 8 of the PCI DSS, dedicated to identifying users and authenticating access to system components. We'll explore the intricate details of this requirement, covering sub-requirements 8.1 to 8.6. These discussions will include processes for user identification, strict management of user and administrator accounts, strong authentication methods, and the implementation of multi-factor authentication (MFA) to ensure the security of cardholder data environments (CDE).
Our QSA Q&A segment then addresses a critical question: Do all accounts need to comply with these requirements? We'll provide clarity on the scope, applicability, and exceptions, helping listeners understand the nuances of compliance.
Tune in for a comprehensive review of December's PCI updates, an in-depth analysis of Requirement 8, and valuable insights from our QSA experts. This episode is a must-listen for professionals seeking to stay informed and improve their organization's payment security and compliance.