pci-compliance

Master PCI DSS (Payment Card Industry Data Security Standard) compliance for secure payment processing and handling of cardholder data. Level 1 : > 6 million transactions/year (annual ROC required) Level 2 : 1-6 million transactions/year (annual SAQ) Level 3 : 20,000-1 million e-commerce transactions/year Level 4 : < 20,000 e-commerce or < 1 million total transactions - Building payment processing systems - Handling credit card information - Implementing secure payment flows - Conducting PCI compliance audits - Reducing PCI compliance scope - Implementing tokenization and encryption - Preparing for PCI DSS assessments - Install and maintain firewall configuration - Don't use vendor-supplied defaults for passwords - Protect stored cardholder data - Encrypt transmission of cardholder data across public networks - Protect systems against malware - Develop and maintain secure systems and applications - Restrict access to cardholder data by business need-to-know - Identify and authenticate access to system components - Restrict physical access to cardholder data - Track and monitor all access to network resources and cardholder data - Regularly test security systems and processes - Maintain a policy that addresses information security - E-commerce using hosted payment page - No card data on your systems - ~20 questions - E-commerce with embedded payment form - Uses JavaScript to...