PCI-DSS Compliance Online Training

PCI-DSS Compliance Online Training

PCI-DSS stands for Payment Card Industry and Data Security Standard. It’s a set of 12 requirements used globally to ensure companies take, process and store payment details in a way that keeps it safe and secure. In some jurisdictions, being compliant with the PCI-DSS can shield you from liability in the event of a data breach.

Training your employees to ensure they are PCI-DSS compliant is vital, especially for any members of staff who may take payments, build online or offline payment methods or have access to cardholder data.

Your customers will want the peace of mind knowing that their payment details are safe in your hands. By learning about what is contained within the PCI-DSS and how to ensure your business and processes are compliant, you can mitigate the risk of a data breach.

Our training in the PCI-DSS outlines the 12 requirements and how they apply to real-world scenarios, so your employees are prepared to apply it to their daily processes.

Who should take the PCI-DSS Compliance online training?

This training is recommended for all employees who either handle payments, build payment mechanisms or have access to cardholder data.

This course contains the following modules:

Video: PCI DSS protects payment card data. Maintains customer trust and safeguards our reputation.
Interactive Screen: Overview of the 12 PCI DSS requirements designed to protect cardholder data.
Scenario: Consequences of a security breach leading to the theft of payment card information.
Key Learning: All merchants must adhere to the PCI DSS. Under inspection, if a merchant fails to meet the PCI DSS, they could face litigation, fines, and removal or reduction in services from the payment card company.
Scenario: Protecting cardholder data.
Key Learning: Heavy fines and penalties are common for merchants, small or large, who fail to meet PCI DSS.
Assessment: Five-question quiz on the content presented in this topic.

Interactive Screen: Merchant-based vulnerabilities may appear almost anywhere in the card-processing system. Real-life examples of how to protect cardholder data.
Scenario: Identifying the possible causes of a data breach.
Key Learning: Retailers are responsible for maintaining security of the payment card transaction environment. This includes ensuring that computers, networks, and passwords are secure.
Scenario: Identify how to prevent breaches.
Key Learning: Storing cardholder data provides opportunities for criminals to steal data. Records should be stored only when necessary and destroyed as soon as possible.
Assessment: Five-question quiz on the content presented in this topic.

Interactive Screen: The importance of ensuring payment card data doesn’t fall into the wrong hands. Real-life examples of how to handle and store payment card data.
Scenario: Ensuring the security of cardholder data.
Key Learning: Transaction information may only be kept for the required length of time, as per the card issuer’s terms and conditions. It is necessary to destroy all digital and hard-copy records as soon as they are no longer needed.
Scenario: Identifying ways to ensure network security.
Key Learning: Data must only be stored when absolutely necessary and only for as long as is required. Noncompliance can result in fines and penalties from the payment brands and can be catastrophic to a business.
Scenario: Sending payment cards from one location to another.
Key Learning: When sending high-value goods like credit or payment cards, you should only use a delivery method that has been approved by the company.
Scenario: Consequences of cardholder data falling into the wrong hands.
Key Learning: Loss of entitlement to accept payment cards, and this could destroy our business. Huge fines for each instance of payment card data that’s compromised.
Assessment: Five-question quiz on the content presented in this topic.

Interactive Screen: Guidance on preventing breaches.
Scenario: Consequences of failing to mask PANs in a spreadsheet sent to another department.
Key Learning: Storing and disseminating payment card data in any format – handwritten, in a document or spreadsheet, an email, memory stick, or any other method – reduces the security of the data and renders it vulnerable to a breach.
Scenario: What types of data can be stored?
Key Learning: In general, no cardholder data should ever be stored unless it’s necessary to meet the needs of the business. Cardholder name, service code, expiration date, and PAN can be stored under special circumstances, as long as it’s encrypted.
Scenario: Identify possible causes of a network breach.
Key Learning: If payment card data is processed on our computer network in any way, for example, at checkouts, online transactions, or through telephone activity, the whole network and premises must be secured to prevent unauthorized access.
Assessment: Five-question quiz on the content presented in this topic.

Summary screen that wraps up the module, and attestation screen where learners attest that they will always adhere to PCI DSS policies.

Join This Course

Category: Courses
* Desktop Version