• Share
  • Email
  • Embed
  • Like
  • Save
  • Private Content
PCI in 2009 a look at the legal and practical aspects of the DSS
 

PCI in 2009 a look at the legal and practical aspects of the DSS

on

  • 421 views

Panel discussion slides from the session: PCI in 2009: A Look at the Legal and Practical Aspects of the DSS at the RSA 2009 conference. Panelists: Joel Kazin, David Navetta, Ben Rothke.

Panel discussion slides from the session: PCI in 2009: A Look at the Legal and Practical Aspects of the DSS at the RSA 2009 conference. Panelists: Joel Kazin, David Navetta, Ben Rothke.

Statistics

Views

Total Views
421
Views on SlideShare
421
Embed Views
0

Actions

Likes
0
Downloads
8
Comments
0

0 Embeds 0

No embeds

Accessibility

Categories

Upload Details

Uploaded via as Microsoft PowerPoint

Usage Rights

© All Rights Reserved

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Processing…
Post Comment
Edit your comment

    PCI in 2009 a look at the legal and practical aspects of the DSS PCI in 2009 a look at the legal and practical aspects of the DSS Presentation Transcript

    • PCI in 2009: A Look at the Legal and Practical Aspects of the DSS Joel Kazin, CPA, CISA, CISM, CISSP - Jefferson Wells David Navetta, Esq., CIPP – InfoSecCompliance LLC Ben Rothke, CISSP, PCI QSA - BT Professional Services 04/23/09 | Session ID: GOL304 Session Classification: Intermediate
    • Agenda Panelists’ Opening Remarks Introduction Self Moderated Panel Discussion Questions and Answers
    • Introduction
    • Panelists’ Opening Statements
    • Panelists’ Discussion
    • PCI DSS Topics
      • Contractual nature of the standard
      • PCI DSS as a minimum standard of due care
      • Breach of contract – 3 rd party beneficiary
      • Resolving ambiguities in the standard
      • Potentially Risky Practices
      • PCI Compliance False Sense of Security -- Safe Harbor?
      • Is anything wrong with PCI?
    • Questions and Answers
    • APPLY
      • Educate management regarding risk even if you are PCI DSS compliant
      • Determine who is contractually liable in event of a breach
      • Determine how PCI DSS compliance fits within your risk management strategy
      • Remember you can be PCI DSS complaint and still suffer a breach
    • Contact Information Joel Kazin CPA, CISA, CISM, CISSP Jefferson Wells [email_address] 914-564-1484 David Navetta, Esq., CIPP InfoSecCompliance, LLC [email_address] 303-325-3528 Ben Rothke CISSP, PCI QSA BT Professional Services [email_address] 973-489-0838