PCI to assess the assessors

By

The Payment Card Industry Security Standards Council (PCI SSC) has announced a new programme designed to improve consistency.

PCI to assess the assessors
The Payment Card Industry Security Standards Council (PCI SSC) today announced a new programme designed to improve consistency among qualified security assessors tasked with determining the compliance status of organisations affected by PCI.

The initiative will give Qualified Security Assessors and Approved Scanning Vendors a set of requirements to comply with if they want to retain the ability to conduct PCI assessments.

Bob Russo, general manager of the PCI SSC, explained that the programme will complement the current training and strict applications vetting process.

"This is the next evolutionary cycle, and we wanted to take things a bit further by looking at the reports [the assessors generate]," he said. "This quality assurance programme is because there are now so many assessors out there, not because we've had any complaints about them."

The organisations which perform the majority of PCI assessments will be assessed every year, while those which are less prolific will go through the cycle every two or three years, unless a complaint is lodged against them. In this case they will jump to the head of the queue, said Russo.
Got a news tip for our journalists? Share it with us anonymously here.
Copyright ©v3.co.uk
Tags:
assesscreditpcisecurity

Sponsored Whitepapers

Life After VMware: Scale Securely with mCloud by Micron21
Life After VMware: Scale Securely with mCloud by Micron21
Cut Cloud Costs Without Compromise: Discover mCloud by Micron21
Cut Cloud Costs Without Compromise: Discover mCloud by Micron21
What 4 wholesale distribution challenges aren’t going away anytime soon?
What 4 wholesale distribution challenges aren’t going away anytime soon?
State of the SOC: Building Resilience in a Shifting Threat Landscape
State of the SOC: Building Resilience in a Shifting Threat Landscape
Transform IT Service Delivery with Freshworks ITSM
Transform IT Service Delivery with Freshworks ITSM

Events

Most Read Articles

Melbourne dev finds gift card PINs can be brute-forced

Melbourne dev finds gift card PINs can be brute-forced
"Widespread data theft" hits Salesforce customers via third party

"Widespread data theft" hits Salesforce customers via third party
Zero-click Apple and WhatsApp bug combo used to drop gov spyware

Zero-click Apple and WhatsApp bug combo used to drop gov spyware
Western Sydney University targets file-sharing sites hosting stolen data

Western Sydney University targets file-sharing sites hosting stolen data
techpartner.news logo
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
"It's an exciting time to be part of the health and aged care sector"
"It's an exciting time to be part of the health and aged care sector"
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Orro claims Australia first with managed digital asset discovery service
Orro claims Australia first with managed digital asset discovery service

Log In

  |  Forgot your password?