Preparing for a PCI DSS v4 Assessment

In this episode of InfoSec Insider, Alastair Stewart, Senior Consultant and Qualified Security Assessor (QSA) at URM, breaks down the changes to assessments in v4.0 of the Payment Card Industry Data Security Standard (PCI DSS), and how organisations can prepare for their v4 assessments.  Alastair leverages more than a decade of experience with the PCI DSS to discuss:  

• The types of evidence the PCI DSS requires, whether there are any new evidence types in v4 and preparing evidence in advance of your assessment 

• How QSAs collected evidence when assessing previous versions of the PCI DSS and how this has changed in v4 

• How these changes will impact assessments against v4 

• His key advice for organisations undergoing PCI DSS v4 assessments 

• Changes to the self-assessment questionnaires (SAQs) for both merchants and service providers, and whether any new SAQs have been added.  

Learn more about this topic: https://www.urmconsulting.com/blog/preparing-for-a-pci-dss-v4-0-assessment  

If you enjoyed this episode of InfoSec Insider, you can leave us a rating and review here: https://ratethispodcast.com/infosecinsider     

You can find more episodes of InfoSec Insider here:  https://urmconsulting.com/podcasts     

Brought to you by URM, the UK’s leading information and cyber security specialists.