Establishing a world class PCI compliance program isn’t rocket science but it does require planning, organizing, elbow grease and a lot of influencing. If you’re up to the challenge, you can make a big difference by Assessing Smarter Not Harder.

On February 23, 2023, Peggy will be teaching a free, online master class, Assess Smarter Not Harder: Create a World Class PCI Compliance Program Your CIO Will Love

In our master class we’re going to address the five biggest mistakes most merchants make, why they continue to make them, how to take corrective action to strengthen your security posture. Peggy’s also going to share tips and proven tactics on the following:

  • How to pinpoint and remediate key issues before, during, and after your annual Report on Compliance.
  • Influencing the doubters, naysayers, and negative Eeyores.
  • Master how to revise and enhance your critical compliance processes to show maturity in your compliance program.
  • Actionable steps on how to create a sustainable PCI DSS compliance program that saves time, effort, and money.
  • And we’re going to introduce you to Polaris PCA, the first of its kind automated workflow tool with a robust PCI Knowledge Base, integrated PCI DSS Industry Standards, and Payment Card Assessments’ Best Practices.

Register is Closed For the Live Master Class

5 PCI Compliance Headaches You Can Live Without

If PCI Compliance were easy, every organization would be doing it, right?

But it’s not.

The sad statistic from the most recent Verizon Payment Security Report is that 57% of all merchants fail to sustain PCI DSS Compliance.


There are so many reasons. Where do we start?

Let’s start with the 5 PCI Compliance headaches everyone can live without.

10 Critical Responsibilities of a PCI ISA

I remember when I was working as an IT Security Project Manager responsible for the implementation of 10 different security projects for the new. cardholder data at a Fortune 100 Company. They had a job posting for a PCI Compliance Program Manager and I thought, why not?

The job description looked easy enough. In fact, I flipped my resume over on a whim during lunch on a Friday. Got called by the internal recruiter within 20 minutes and was interviewed on Monday and hired by Wednesday.

I had no idea what was really in store for me. Nobody did.

Because nobody I interviewed with understood HOW to run a successful PCI DSS Compliance program for a level 1 merchant.

Firewalls and Routers: How to Take Control of Unruly Firewall Rules, Configurations and Network Connections

Best Practice: Developers and system administrators request changes to firewall rule sets all the time. Whether it’s to do work on system components or test system components, these changes can make a mess out of your rule sets. It’s so easy for someone to unintentionally request an “any” rule which is prohibited in the cardholder data environment. Our best advice is to insert your ISA or someone on the compliance team into the firewall rule change review.

Leave a Reply

Your email address will not be published. Required fields are marked *

This field is required.

This field is required.

%d bloggers like this: