PCI DSS Compliance: Requirements, Resources & Best Practices

What Data Falls Under PCI Compliance?

by RSI Security March 1, 2021February 12, 2025

The Security Standards Council (SSC) of the Payment Card Industry (PCI) has developed many frameworks to protect companies from cybercrime targeting consumers’ credit and debit cards. Among the most widespread of these frameworks is the PCI Data Security Standard, or PCI DSS, which protects nearly all consumer card data processed, stored, transmitted, or otherwise contacted by businesses. It brings us to the question: what data falls under PCI compliance, exactly, and which companies need to comply with PCI’s security standards?

March 1, 2021February 12, 2025 0 comment

PCI 4.0

Will PCI 4.0 Changes Impact Physical Storage Device Security?

by RSI Security November 27, 2020October 18, 2023

written by RSI Security

Physical storage devices are among the most widespread forms of technology, used by nearly every company, regardless of a business’ size and scope. They encompass not only harddrives, but any physical device on which data is stored, including laptops, thumbdrives, smartphones, or even credit cards. It’s important to protect them, and the Payment Card Industry Data Security Standard (PCI DSS) sets the standard for how to do that. Thus, PCI DSS 4.0 changes may impact them in profound ways.

November 27, 2020October 18, 2023 0 comment

PCI 4.0

How InfoSec Executives Should Prepare for PCI 4.0

by RSI Security November 9, 2020October 18, 2023

written by RSI Security

Credit cards make the digital world go round. These days, businesses need to process credit card payments to maximize their consumer base and make purchasing as easy as possible for clients. But credit cards and related records are incredibly vulnerable to cybersecurity attacks. So, it’s important for all C-level executives in the information suite of your company to know what the new PCI Requirement 4.0 will entail.

November 9, 2020October 18, 2023 1 comment

PCI 4.0

What is the PCI DSS 4.0 Standard Draft?

by RSI Security October 20, 2020October 18, 2023

written by RSI Security

All businesses that process payments via credit card face a certain amount of risk with every transaction. On one level, fraudulent payments are always a concern. But on another, cardholder information is extremely valuable, and cybercriminals who target it can impact your clients and business. To keep your customers safe and avoid the potential consequences of noncompliance, it’s important to know what the PCI DSS 4.0 draft is.

October 20, 2020October 18, 2023 0 comment

PCI DSS

What is PCI Network Segmentation Testing?

by RSI Security August 18, 2020June 23, 2021

written by RSI Security

Practically every business must fear—or at least be wary of—the threat of cyberattacks. This is especially true for businesses that process, transmit, or store payment data. It’s very likely that your business performs one of if not all three of those actions. If that’s the case, then you’re required to follow the Payment Card Industry Data Security Standard (PCI-DSS). Additionally, it’s strongly encouraged that you conduct biannual PCI network segmentation testing.

August 18, 2020June 23, 2021 0 comment

PCI DSS

Can You Really Afford PCI Non Compliance?

by RSI Security August 13, 2020June 23, 2021

written by RSI Security

It’s surprising how many businesses ask this question. Sometimes the cost of meeting compliance regulation seems to outweigh the risks. There are fees associated with not meeting the payment card industry (PCI) compliance regulations, but are these fines comparable to the cost of implementing the required cybersecurity protocols?

August 13, 2020June 23, 2021 0 comment

PCI DSS

Update on PCI DSS 3.2 Password Security Requirements

by RSI Security August 7, 2020June 23, 2021

written by RSI Security

If your company processes payments using credit cards, you’re required to maintain compliance with standards set out by the Payment Card Industry (PCI) Security Standards Council (SSC).

August 7, 2020June 23, 2021 0 comment

PCI DSS

What Does a PCI Vulnerability Scan Look For?

by RSI Security August 5, 2020June 23, 2021

written by RSI Security

All companies that take or otherwise involve payments via credit card expose themselves and their stakeholders to various threats of cybercrime. Cardholder information is some of the most sensitive and valuable data a hacker can get his or her hands on. It enables direct theft of the cardholder’s assets, as well as various other potential fraud or extortion schemes.

August 5, 2020June 23, 2021 0 comment

PCI DSS

Will PCI DSS Regulations Change Post-COVID?

by RSI Security July 27, 2020June 23, 2021

written by RSI Security

Cloud computing has become attractive in recent times because of its superfast application deployment, flexible computing resources, and low operating costs.

July 27, 2020June 23, 2021 0 comment

Does PCI Compliance Apply to Payment Facilitators?

PCI DSS

How Does PCI DSS 4.0 Affect Payment Facilitators?

by RSI Security June 5, 2020June 23, 2021

written by RSI Security

It’s not only merchants that are affected by PCI DSS 4.0, but payment facilitators will also need to make changes to their cybersecurity protocols. Payments Facilitators (PayFacs) must follow the same procedures as companies to ensure that personally identifiable information (PII) is secure from breaches.

June 5, 2020June 23, 2021 0 comment