PCI DSS v4.0: The challenges for organisations and QSA’s

Episode 7 May 19, 2021 00:13:41
PCI DSS v4.0: The challenges for organisations and QSA’s
Secure Payments
PCI DSS v4.0: The challenges for organisations and QSA’s
/

Show Notes

There is a buzz in the compliance industry about the new version of PCI DSS, due for release in early 2022.

In this episode, Sujith Parambath, Head of PCI Consulting Services at IT Governance talks with PCI Pal's CISO, Geoff Forsyth, about the new v4.0 standard and the impact it will make to the way organisations achieve PCI compliance.

The pair look at what’s new within the standard, how QSA’s will assess companies against the new requirements (including the major shift from a prescriptive to a subjective compliance model) and discuss some of the challenges this will bring for organisations and QSA’s alike.

Other Episodes

Episode 3

December 08, 2020 00:23:49
Episode Cover

Compliance for the Public Sector

Data breaches and cyberattacks occur on a daily basis and are something every organisation must prepare against. The Public Sector and government departments are, of course, no different. Although the reputational damage and financial consequences of a data breach may be difficult to bear. Ensuring adequate measures are therefore in place to safeguard data is a must, particularly when you take into consideration the significant amount of personal data these types of organisations hold on members of the public. In this podcast, Jane Goodayle is joined by Phil Painting from Civica to discuss the common difficulties public sector organisations face when it comes to securing payments and adhering to PCI DSS. They look into why it is crucial that systems and processes are in place to protect customer information and to ensure your organisation complies with the very latest data protection and security compliance guidance and regulations. ...

Listen

Episode 8

July 12, 2021 00:20:42
Episode Cover

Beyond the cloud contact centre - reimagining service delivery

PCI Pal was invited to join our partner, 8x8 and joint customer, Liverpool City Council, to speak at this year’s SOCTIM President’s Week conference. In 2020, spurred on by lockdown, public sector IT leaders found themselves at the forefront of a digital communications revolution. The race to keep staff and the local community connected saw many abandon their outdated on-premises systems in favour of cloud communications. Once the immediate need to securely enable a remote contact centre was addressed, innovative organisations, like Liverpool City Council, quickly realised that cloud communications provide far-reaching opportunities to reimagine how they serve the public. This episode is the recording, taken from the conference, where PCI Pal’s Director – Channel Sales, Phil Jude, Liverpool City Council’s Assistant Director ICT, Alison Hughes and 8×8’s Public Sector Director, Russell Tilsed, discuss service delivery best-practice beyond the cloud contact centre and why the public sector is leading the way. - The challenges and opportunities of enabling a cloud contact centre - Lessons learned about empowering an agile workforce - What does good communication look like in the post-pandemic era? - How IT leaders can shape public service delivery models - Maximising performance using AI and IVR automation - How public sector organisations can secure payments while operating remotely - How having the right technology and security solutions in place are key to maximising performance, while also remaining fully compliant. ...

Listen

Episode 12

January 14, 2022 00:06:03
Episode Cover

2022: Striking the Right CX and Security Balance

The pandemic has forced many organisations to change how they interact with their customers. Many retailers, for example, adopted a direct-to-consumer approach, using apps and social media in place of physical outlets. A significant number of organisations have retained remote workforces – or at least hybrid working – and these shifts have demanded a fresh approach to customer experience strategies, with an emphasis on delivering a seamless customer experience no matter where agents or customer services teams are located. Part of this is to ensure that security is woven into the heart of all customer interactions – particularly when handling customers’ card payments. As we enter 2022, consumers want businesses to ensure their personal data, including payment information is safe, and businesses need to have a concrete game plan in motion to make consumers feel secure.  In this short episode, PCI Pal’s Data Protection Officer, Innes French, provides predictions that all CX managers should consider in order to strike a balance between providing a frictionless customer experience with the security measures that customers expect and compliance regulators will be auditing. Reset and re-evaluate your security strategies Stop fearing the unknown and focus on existing threats Make payment security compliance a year-round concern, not an annual tick-box exercise It’s time to get serious about making cybersecurity a CX priority     ...

Listen