Why is PCI training important?
The PCI DSS (Payment Card Industry Data Security Standard) is an information security standard designed to reduce payment card fraud by using security controls that protect cardholder data. All merchants and service providers that process, transmit or store cardholder data must comply with the PCI DSS.
The Standard specifies that an organisation must implement 12 complex technical and business requirements. Fulfilling these requirements and meeting your obligations under the Standard require specialist knowledge. If you are involved in implementing or maintaining a PCI DSS compliance programme, our foundation and implementation courses will give you the knowledge you need.
Wider staff awareness training is also critical to PCI DSS compliance.
Requirement 12.6 states that a “formal security awareness program” must be implemented to “make all personnel aware of the entity’s information security policy and procedures, and their role in protecting the cardholder data”.
Under PCI DSS v4.0’s “customized approach”, staff must be “knowledgeable about the threat landscape, their responsibility for the operation of relevant security controls, and […] able to access assistance and guidance when required”.
Whether you need training on how to implement the PCI DSS in your organisation, or staff awareness courses to keep your employees’ knowledge up to date, we have everything you need.