PCI Software Security Standards Framework, an evolution away from PA DSS

About the Webinar:

Since the launch of PA DSS in 2011, there has been a significant transformation in the payment application landscape. With the advancement in technology, several new methods are innovated to accept payments. This innovation has raised the need to safeguard transactions against potential data breaches and attacks. But, there is no Security Standard that can address the security concerns in both traditional applications and modern payment software along with respective development practices. Keeping the priority of safeguarding the present-day payment applications with an objective approach, PCI SSC has launched The Software Security Standards (S3) Framework. The goal of the PCI Software Security Standards (S3) Framework is to provide application software with better security controls and ensure that the application vendors are using a better set of software security tools, ensuring data security throughout the life cycle.

Key Takeaways:

1. Gain knowledge on how PCI Software Security Standards (S3) can secure applications throughout their life cycle right from the development
2. Understand the benefits of PCI Software Security Standards Framework to a variety of payment application stakeholders (software developers, payment application vendors, merchants, and software companies)
3. Learn how the framework is different from and important beyond PA DSS
4. Know how the transition from PA DSS will take place over time and how to set yourself ready for the transition

Speaker:

Kaushik Pandey – Principal Consultant at SISA.

Kaushik has handled several Information System audits and has successfully implemented assessment programs at leading Banks, Third Party Processors, IT, BPOs, Airlines, and Payment Gateways.

Kaushik is also an Authorized Trainer for SISA’s CPISI, a Payment Security Training program for imparting knowledge on the payment security implementation and what a QSA can look out for a successful audit and certification from a compliance perspective.