PCI Compliance, Fourth Edition: Understand and Implement Effective PCI Data Security Standard Compliance

✍ Scribed by Branden R. Williams, Anton Chuvakin Ph.D. Stony Brook University Stony Brook NY

Publisher: Syngress
Year: 2014
Tongue: English
Leaves: 365
Edition: 4
Category: Library

No coin nor oath required. For personal study only.

✦ Synopsis

Identity theft and other confidential information theft have now topped the charts as the leading cybercrime. In particular, credit card data is preferred by cybercriminals. Is your payment processing secure and compliant? The new Fourth Edition of PCI Compliance has been revised to follow the new PCI DSS standard version 3.0, which is the official version beginning in January 2014. Also new to the Fourth Edition: additional case studies and clear guidelines and instructions for maintaining PCI compliance globally, including coverage of technologies such as NFC, P2PE, CNP/Mobile, and EMV. This is the first book to address the recent updates to PCI DSS. The real-world scenarios and hands-on guidance are also new approaches to this topic. All-new case studies and fraud studies have been added to the Fourth Edition.

Each chapter has how-to guidance to walk you through implementing concepts, and real-world scenarios to help you relate to the information and better grasp how it impacts your data. This book provides the information that you need in order to understand the current PCI Data Security standards and how to effectively implement security on network infrastructure in order to be compliant with the credit card industry guidelines, and help you protect sensitive and personally-identifiable information.

Completely updated to follow the most current PCI DSS standard, version 3.0
Packed with help to develop and implement an effective strategy to keep infrastructure compliant and secure
Includes coverage of new and emerging technologies such as NFC, P2PE, CNP/Mobile, and EMV
Both authors have broad information security backgrounds, including extensive PCI DSS experience

✦ Table of Contents

Content:
Front matter, Page iii
Copyright, Page iv
Foreword, Page xiii
Acknowledgments, Page xv
Chapter 1 - About PCI DSS and this book, Pages 1-7
Chapter 2 - Introduction to fraud, data theft, and related regulatory mandates, Pages 9-14
Chapter 3 - Why is PCI here?, Pages 15-41
Chapter 4 - Determining and reducing the PCI scope, Pages 43-57
Chapter 5 - Building and maintaining a secure network, Pages 59-80
Chapter 6 - Strong access controls, Pages 81-112
Chapter 7 - Protecting cardholder data, Pages 113-140
Chapter 8 - Using wireless networking, Pages 141-159
Chapter 9 - Vulnerability management, Pages 161-196
Chapter 10 - Logging events and monitoring the cardholder data environment, Pages 197-234
Chapter 11 - PCI DSS and cloud computing, Pages 235-245
Chapter 12 - Mobile, Pages 247-251
Chapter 13 - PCI for the small business, Pages 253-260
Chapter 14 - Managing a PCI DSS project to achieve compliance, Pages 261-282
Chapter 15 - Don’t fear the assessor, Pages 283-293
Chapter 16 - The art of compensating control, Pages 295-307
Chapter 17 - You’re compliant, now what?, Pages 309-321
Chapter 18 - Emerging technology and alternative payment schemes, Pages 323-331
Chapter 19 - Myths and misconceptions of PCI DSS, Pages 333-356
Index, Pages 357-371

📜 SIMILAR VOLUMES