PCI-DSS ver. 3.2.1 (Payment Card Industry Data Security Standard) Implementation Training

This 2 day PCI DSS v3.2.1 Implementation Training is primarily aimed at enabling you to understand and implement PCI DSS 3.2.1 Standard successfully in your organization. The aim of this course is to assist organizations that store, process, communicate or otherwise handle credit or debit card data in understanding how the PCI DSS 3.2.1 applies to them and what the requirements of the standard are, whether they are merchants or service providers. The course is equally relevant to service providers that could impact the security of cardholder data in other organizations.

You will gain a clear understanding of all the requirements of the PCI DSS 3.2.1 Standard, and discover the intent behind each of its requirements.

The course will cover the following aspects:-

  • What is PCI DSS 3.2.1 and its purpose ?
  • Payment transaction flow
  • Differences between merchants and service providers
  • Merchants and service provider levels and reporting requirements
  • Assessment process – SAQ or QSA and SAQ types
  • Card holder data discovery
  • Scoping for Card holder data environment
  • Segmentation of the PCI DSS 3.2.1 environment
  • Discussing all the PCI DSS 3.2.1 requirement from 1 to 12
  • Around 10 scenario based activities
  • Classroom discussions on all topics
  • Examination – multiple choice – 50 question

Who should attend this training?

  • Those who will be involved in advising top management on the introduction of PCI DSS ver.3.2.1 into an organization
  • Designed for those with implementing PCI DSS 3.2.1 responsibility
  • Those planning to implement a system or new to managing a system
  • Anyone working within information security, including consultants.

Course Agenda

Day – 1

  • What is PCIDSS 3.2.1 and its purpose
  • Payment Transaction Flow
  • Merchant levels and Service provider levels
  • SAQ types and reporting requirements
  • Card holder data discovery
  • Scoping the Cardholder Data Environment
  • Segmentation
  • Req.1 – Install and maintain a firewall configuration
  • Req.2 – Do not use vendor – supplied defaults for system passwords
  • Req. 3 – Protect stored card holder data
  • Req. 4 – Encrypt transmission of card holder data across open and public networks

Day – 2

  • Quiz
  • Req. 5 - Protect all systems against malware and regularly update anti-virus
  • Req. 6 - Develop and maintain secure systems and applications
  • Req. 7 - Restrict access to cardholder data by business need to know
  • Req. 8 - Identify and authenticate access to system components
  • Req. 9 - Restrict physical access to cardholder data
  • Req. 10 - Track and Monitor all access to network resources and cardholder data
  • Req. 11 - Regularly test security systems and processes
  • Req. 12 - Maintain a policy that addresses information security for all personnel
  • Q and A Session
  • Appendix A
  • Exam

What will you learn?

Upon completion of this training, delegates will be able to:

  • Gain an understanding of the Payment Card Industry.
  • An understanding of PCI DSS 3.2.1 to ensure better protection of cardholder data.
  • Conduct a base line review of the organizations current position with regard to PCI DSS ver. 3.2.1
  • Interpret the requirements of PCI DSS ver. 3.2.1 from an implementation perspective in the context of their organization
  • Implement PCI DSS ver. 3.2.1 in the organisation

Prerequisites

Candidates should have and basic understanding and experience in Information Security standards such as ISO 27001.

What's included?

  • Refreshments/ Lunch
  • Course Folder
  • Pen and Notepad
  • Certificate of attendance
View dates and book now Request in-company training quote

    This 2 day PCI DSS v3.2.1 Implementation Training is primarily aimed at enabling you to understand and implement PCI DSS Standard successfully in your organization. The aim of this course is to assist organizations that store, process, communicate or otherwise handle credit or debit card data in understanding how the PCI DSS applies to them and what the requirements of the standard are, whether they are merchants or service providers. The course is equally relevant to service providers that could impact the security of cardholder data in other organizations.

    You will gain a clear understanding of all the requirements of the PCI DSS Standard, and discover the intent behind each of its requirements.

    The course will cover the following aspects:-

    • What is PCI DSS 3.2.1 and its purpose ?
    • Payment transaction flow
    • Differences between merchants and service providers
    • Merchants and service provider levels and reporting requirements
    • Assessment process – SAQ or QSA and SAQ types
    • Card holder data discovery
    • Scoping for Card holder data environment
    • Segmentation of the PCI DSS 3.2.1 environment
    • Discussing all the PCI DSS requirement from 1 to 12
    • Around 10 scenario based activities
    • Classroom discussions on all topics
    • Examination – multiple choice – 50 question

Mode of Payment

You can make payment through Cheque, NEFT transfer, e-payment or UPI payment.

Below are the details

BSI Group India Private Limited
Current Account No.: 166045294001
HSBC Bank, 25, Barakhamba Road, New Delhi-110 001
IFSC/RTGS Code: HSBC0110002
Swift Code: HSBCINBB
UPI Code: bsiindia@hsbc

Please note: Service tax will be charged extra as per prevailing Government rates.

Request in-company training quote