PCI DSS resources
Our range of free resources, including guides, data sheets, infographics and green papers, provide technical guidance to help support your PCI DSS (Payment Card Industry Data Security Standard) compliance programme.
Webinars
The PCI DSS was developed to encourage and enhance cardholder data security. As a general guideline, any merchant or service provider that stores, processes or transmits cardholder data is required to comply with the Standard. However, many merchants are not yet PCI-compliant.
Throughout this webinar series, we will offer recommendations and insight to help you achieve and maintain PCI DSS compliance. You can also download past webinars.
Register >>
Green papers
The PCI DSS is continually updated to combat emerging threats and changes in the market, such as mobile acceptance and Cloud computing. This green paper explains the changes to the Standard and the effect they may have on merchants and service providers.
Download now >>
This green paper will help organisations to effectively prepare for a PCI audit and ensure a successful audit outcome.
Download now >>
This green paper has been developed to provide readers with the practical knowledge required to identify the right SAQs (self-assessment questionnaires), allowing you to achieve full compliance with the PCI DSS.
Download now >>
This green paper is aimed at those implementing PCI DSS v3.2 and those conducting audits to make sure an organisation is compliant.
Download now >>
This green paper will help organisations reduce their CDE (cardholder data environment) in order to minimise PCI DSS compliance costs.
Download now >>
This green paper attempts to demystify the PCI’s security testing requirements to help organisations comply with the Standard.
Download now >>
Brochures and guides
This executive briefing outlines the PCI’s 12 requirements for storing, transmitting and processing cardholder data.
Download now >>
Discover IT Governance’s approach of using the PCI DSS as a set of information security controls that can be effectively integrated within a broader cyber security framework to further reduce risk.
Download now >>
Find out how IT Governance helped Appletree Communications Ltd progress to the highest level of PCI compliance as a service provider, extending the payment gateway and payment processing arm of the business.
Download now >>
Further information
Concerned about the consequences of a data breach? Our FAQ answers common enforcement questions that have been sourced from the PCI DSS website.
Find out more >>
Requirement 11 of the PCI DSS demands regular and frequent tests to identify unaddressed security issues and scan for rogue wireless networks. Find out which penetration test you need to identify unaddressed security issues and scan for rogue wireless networks.
Find out more >>
The PCI DSS SAQs are validation tools for qualifying merchants and service providers that are neither required to undergo an on-site data security assessment nor submit an RoC (Report on Compliance). This page can help you identify which SAQ you need to complete, and whether a vulnerability assessment mechanism is required.
Find out more >>
Contact our PCI DSS experts
If you need help determining your PCI DSS compliance needs or advice on a programme that meets the maturity and expectations of your organisation, get in touch with our PCI DSS experts to find out how we can help you.