Project part 6

Satisfactory Essays
The senior management has been advised by the legal department that the organization will need to become PCI DSS compliant before using online applications that accept credit cards and customer personal information. The management isn’t familiar with PCI DSS compliance; therefore, the management asked you to prepare a recommendation explaining PCI DSS compliance, how the organization can move through the compliance process, and the consequences of noncompliance.

PCI DSS stands for Payment Card Industry Data Security Standard. PCI DSS originally began as five different programs: Visa, MasterCard, American Express, Discover and JCB data security programs. Each company creates an additional level of protection for card issuers by ensuring that merchants meet minimum levels of security when they store, process and transmit cardholder data. PCI DSS specifies 12 requirements for compliance, organized into six logically related groups called control objectives. Each version of PCI DSS has divided these 12 requirements into a number of sub-requirements differently, but the 12 high level requirements have not changed since the inception standard. The control objectives are Build and maintain a secure network, protect cardholder data, maintain a vulnerability management program, implement strong access control measures, regularly monitor and test networks and maintain an information security policy. The requirements for compliance are, install and maintain a firewall configuration to protect card holder data, do not use vendor-supplied defaults for system passwords and other security parameters, protect stored cardholder data, encrypt transmission of cardholder data across open public networks, use and regularly update anti-virus software on all systems commonly affected by malware, develop and maintain secure systems and applications, restrict access to cardholder data by business need-to-know, assign a unique ID to each person with computer access, restrict

You May Also Find These Documents Helpful

  • Satisfactory Essays

    Assignment 6

    • 479 Words
    • 2 Pages

    Course criteria covered: Unit 2 1.1 Explain the historical development of the person-centred approach to counselling, including the people influential in its development. 1.2 Explain the philosophical basis of the person-centred approach. 1.3 Explain the key concepts and principles of the person-centred approach. 1.4 Explain how the person-centred approach informs the practice of a qualified trained counsellor. 1.5 Explain how the person-centred approach influences the understanding of the development of the concept of self. 1.6 Explain why it is important to have an understanding of a therapy model before using its methods and techniques. Unit 2 2.1 Explain the key features of the psychodynamic and cognitive–behavioural models of counselling. 2.2 Compare and contrast these models with the main model chosen…

    • 479 Words
    • 2 Pages
    Satisfactory Essays
  • Satisfactory Essays

    Lab 9

    • 1001 Words
    • 3 Pages

    7. In order to perform a PCI DSS compliance audit on your e-commerce website, what should you incorporate into Requirement #6 regarding “Develop and Maintain Secure…

    • 1001 Words
    • 3 Pages
    Satisfactory Essays
  • Satisfactory Essays

    PCI DSS Interviews

    • 363 Words
    • 2 Pages

    PCI DSS Assessment Personnel Interviews will be conducted the week of October 31 through November 4, 2016. Most, if not all of you were selected by the External PCI Audit Team last year so I anticipate similar, if not the same this audit cycle. As soon as the Lead Auditor (QSA) confirms, I will communicate dates, times, and locations. In the meantime, please take a moment to review the Interview Preparation guidance below. For your convenience, intent this year is to conduct most interviews at the Century Center Data Center. More to follow……

    • 363 Words
    • 2 Pages
    Satisfactory Essays
  • Good Essays

    level 5 Assignment 6

    • 2027 Words
    • 7 Pages

    1.1 Identify the regulatory requirements, codes of practice and relevant guidance for managing concerns and complaints in own area of work…

    • 2027 Words
    • 7 Pages
    Good Essays
  • Better Essays

    After evaluating the business needs of First World Bank Savings and Loan (FWBSL) and the use of secure open source software to enhance security and reduce business costs, I have concluded that the best option would be to introduce Centos to the network. The reason I chose this is because they offer free software and it also mirrors Red Hat Enterprise Linux (RHEL). Centos offer many online support options and can be updated regularly. Listed below are the server options that I suggest are the best option for FWBSL:…

    • 1335 Words
    • 6 Pages
    Better Essays
  • Powerful Essays

    Pci Quick Guide

    • 7658 Words
    • 31 Pages

    This Quick Reference Guide to the PCI Data Security Standard is provided by the PCI Security…

    • 7658 Words
    • 31 Pages
    Powerful Essays
  • Satisfactory Essays

    Project 5

    • 608 Words
    • 5 Pages

    Project 5 – Project Plan This document provides an overview for all the case studies presented in this project, and outline deliverables that are required, with an initial schedule. Project Title Triple Cases Team Name Group 13 Team Members Chenglin Fan Feng Zhu (PM) Josh Merritt Rohit Ahuja Shuo Huang Yi Ge Zamil Abuzayd Supervisor Sandra Cowan 
 Table of Contents Scope........................................................................................... 3 Introduction.................................................................................. 4 Deliverables................................................................................. 5 Timeline....................................................................................... 6 Page 2 Scope The following project…

    • 608 Words
    • 5 Pages
    Satisfactory Essays
  • Powerful Essays

    of technical and operational requirements designed to protect cardholder data. PCI DSS applies to all entities involved in payment card processing – including merchants, processors, acquirers, issuers, and service providers, as well as all other entities that store, process or transmit cardholder data . PCI DSS comprises a minimum set of requirements for protecting cardholder data, and may be enhanced by additional controls and practices to further mitigate risks. Below is a high-level overview of the 12 PCI DSS requirements grouped under the following categories namely Build and Maintain a Secure Network, Protect Cardholder Data, Maintain a Vulnerability Management Program, Implement Strong Access Control Measures, Regularly Monitor and Test Networks, Maintain an Information Security Policy.…

    • 2843 Words
    • 12 Pages
    Powerful Essays
  • Powerful Essays

    Project12

    • 3549 Words
    • 15 Pages

    department, for the help provided in completing the Major project assigned to us. We owe…

    • 3549 Words
    • 15 Pages
    Powerful Essays
  • Powerful Essays

    Bitter Melon(momordica charantia ) is a member of the family Cucurbitaceae ,is known as one of the important vegetable crops that are popular in nutritional or use to prevent some of diseases. Therefore, many of people will eat bitter melon. However, those bitter melon seeds are being discarded as waste. According to some reference, bitter melon seeds contain 8.6% water, 21.8% ash, 19.5%fiber, 16.4% carbohydrate and 31.0% fat oil.…

    • 3881 Words
    • 25 Pages
    Powerful Essays
  • Satisfactory Essays

    15. Describe the process to still obtain/maintain PCI DSS compliance even though a required security control/process is unrealistic for an organization?…

    • 271 Words
    • 1 Page
    Satisfactory Essays
  • Satisfactory Essays

    Project Part I

    • 289 Words
    • 2 Pages

    You are an information technology (IT) Web specialist working for Up-North Fishing Outfitters (UNFO), a…

    • 289 Words
    • 2 Pages
    Satisfactory Essays
  • Satisfactory Essays

    project 2

    • 394 Words
    • 2 Pages

    TAX 4001 Project 2 Due Date Handed in to class on November 5, 2014 Your assignment is to individually prepare a memorandum to the tax file (see Chapter 2, Figure 2-6, page 2-27 in the 2015 Edition of the text for an example). The relevant facts are Carol is a successful physician who owns 100 of her incorporated medical practice. She and her husband Dick are considering the purchase of a commercial office building located near the local community hospital. If they purchase the building, Carol would move her medical practice to the new location and rent space at an arms length price. The rent income that Carol and Dick receive will be available to absorb passive losses generated by other passive activities they own. The net effect of this arrangement is a reduction in their income tax liability. Will Carol and Dicks plan work Explain. Your memorandum should include the Facts, Tax Issue(s), Conclusion, and Analysis. Use the UCF library website to search a database (CCH Internet Tax Research Network, RIA Checkpoint, or LexisNexis Academic database can be used). Hint - you will find guidance from the following sources of tax law. These sources should provide you with adequate information to come to a definitive conclusion regarding whether or not Carol and Dick will achieve the results they are hoping for. You will find guidance from the regulations under Reg. 1.469-2. Locate the specific section of Reg. 1.469-2 that applies to this fact pattern, and be sure to cite this specific section in the memorandum. After you have located the section of the regulation that applies to this fact pattern, review the following court cases that are relevant to this issue to help you in your analysis and conclusion (be sure to cite all three in the memorandum) Fransen v. U.S., 98-2 USTC 50,776…

    • 394 Words
    • 2 Pages
    Satisfactory Essays
  • Powerful Essays

    Hsm 240 Week 9 Final Project

    • 2755 Words
    • 12 Pages

    The White House. President Obama Commemorates Anniversary of Olmstead and Announces New Initiatives to Assist Americans with Disabilities. June 22, 2009. Retrieved from www.whitehouse.gov…

    • 2755 Words
    • 12 Pages
    Powerful Essays
  • Powerful Essays

    Security Awareness Policy

    • 1733 Words
    • 3 Pages

    Qcode.co.uk,. (2014). PCI DSS Requirement 8: Part 3 – User & Password Policy « Qcode…

    • 1733 Words
    • 3 Pages
    Powerful Essays