There are so many reasons.
- PCI fatigue
- PCI amnesia
- Lack of security and compliance awareness
- Tapped out IT security and cybersecurity staff
- Lack of PCI DSS knowledge within compliance and security teams
- The dreaded brain drain when key personnel leave an organization
- And the list goes on
When it comes to the critical security control area of Configuration Management, servers and assets get built and pushed into prod without personnel following configuration standards or a build checklist. Before you know it, you’ve got assets failing configuration scanning right and left. And that’s if your organization scans the cardholder data environment on a regular cadence for configuration drift.
If organizations had a Build Clean Keep Clean processes that they continuously followed, they’d minimize risk and exposure from legacy tech debt, keep their systems as locked down as humanly as possible and maintain continuous PCI DSS Compliance for 16 configuration requirements as well as key requirements such as logging, patching, and vulnerability scanning.
The founders of Payment Card Assessments know all to well what it’s like to receive a scan report with over 2,000 configuration failures, a standards team that didn’t communicate changes to the scanning team, and an implementation team that had no idea what they were supposed to do to an in-scope asset before it went into production.Payment Card Assessments
We’re excited to announce Build Clean Keep Clean:A PCA Configuration Management Workshop
In our 2 part Build Clean Keep Clean Configuration Management workshop, you’ll learn:
- The 5 most common errors organizations make with configuration management
- The basics of server hardening
- Why scanning is critical to this process
- What needs to be included in the scan report
- Timeline to remediate configuration drift
- 3 common configuration drift scenarios
- The benefits and value of implementing a Build Clean Keep Clean process
- The Build Clean Keep Clean process that every organization can adopt
As a participant in our 2 part online workshop, you’ll receive:
- A zoom link upon registration and a reminder email few days before the workshop. You’ll receive a calendar invite for both part 1 and part 2.
- Our PCA Configuration Management Guide Book – one week before part 1of the workshop
- Plenty of time for Q&A with Peggy and Lisa
- Workshop recordings
This is a 2 part workshop. When you register, you are registering for both dates!!
- Part 1 – Tuesday, January 24, 2023
- Part 2 – Tuesday, January 31, 2023
Time: 11:30 – 12:30 PM EST (Both dates!)
Where: Online via Zoom
Your investment: $197 per person