PCI DSS & PII. Emily Coble. UNC Chapel Hill. Session Etiquette. Please turn off all cell phones. Please keep side conversations to a minimum. If you must leave during the presentation, please do so as quietly as possible. What is PCI?. Payment Card Industry Data Security Standard
UNC Chapel Hill
PCI SSC Press Release Dated 9/5/12 "PCI Security Standards Council Releases Summary of Feedback on PCI Standards"
PCI SSC Press Release Dated 9/13/12
PCI SSC Press Release Dated 6/28/12
PCI SSC Press Release Dated 9/6/12
The supplement outlines the relationship between PCI DSS and risk assessments, including various industry risk methodologies and key components of a risk assessment.
Key components include developing a risk assessment team, building a risk assessment methodology, risks introduced by third parties, risk reporting and critical success factors.
Key recommendations include:
PCI DSS Press Release Dated 11/16/12
This supplement was released to provide guidance to merchants using electronic commerce (e-commerce) to sell goods and servicesin their quest to obtain PCI Compliance.
PCI SSC Information Supplement Dated 1/2013
PCI DSS Press Release Dated 2/7/13.
PCI DSS Press Release Dated 2/14/13.
Treasury Institute for Higher Education 2012 PCI Workshop - Walt Conway, QSA 403 Labs
PII (Personally Identifiable Information) is any information about an individual that can be used to distinguish or trace an individual’s identity or can be linked to an individual.
The escalation of security breaches involving personally identifiable information (PII) has contributed to the loss of millions of records over the past several years.
Individual HarmOrganizational Harm
If we guard our toothbrushes and diamonds with equal zeal, we will lose fewer toothbrushes and more diamonds.
fmr US National Security Advisor