We may earn an affiliate commission when you visit our partners.
John Elliott

Version 4.0 of PCI DSS is the first major revision since 2013 and includes 64 new requirements and the option for objective-based security with the customized approach. This course will teach you about all the changes and the transition timeline.

Read more

Version 4.0 of PCI DSS is the first major revision since 2013 and includes 64 new requirements and the option for objective-based security with the customized approach. This course will teach you about all the changes and the transition timeline.

PCI DSS version four is the first major release for nine years, and will affect every organization that stores, processes or transmits payment card data – not least because there are 64 new requirements in the standard with major changes to the encryption of cardholder data, protecting e-commerce websites, system and application accounts, multi-factor authentication, and vulnerability management. In this course, What’s New in PCI DSS 4.0 you’ll discover the important changes to the standard. First, you’ll start with the implementation timeline and that affects how you plan for the changes and your assessments over the next three years. Next, you’ll discover what has changed in all of the twelve principal requirements and meet the 64 new requirements which will be classified based on the degree of change that most organizations will need to be able to meet them. Finally, you'll learn about the new customized approach which is PCI’s term for objective-based security and consider if that is a route that will work for you. By the end of this course, you’ll be able to evaluate the impact of PCI DSS 4.0 on you organization and start planning your transition to this new version of the Payment Card Industry Data Security Standard.

Enroll now

What's inside

Syllabus

Course Overview
The Key Changes in PCI DSS 4.0
The New Requirements in PCI DSS 4.0
The Customized Approach
Read more
Planning a PCI DSS 4.0 Transition

Good to know

Know what's good
, what to watch for
, and possible dealbreakers
Prepares learners for the updated Payment Card Industry Data Security Standard (PCI DSS 4.0) and the transition timeline for it
Explores the 64 new PCI DSS 4.0 requirements as well as changes to the twelve principal requirements
Examines the customized approach with objective-based security to determine if it aligns with the student's needs
Instructed by John Elliott, who is experienced in the topic of PCI DSS compliance
Taught by experienced professionals who provide a strong foundation in PCI DSS compliance
Not appropriate for students with no background in PCI DSS compliance

Save this course

Save PCI DSS v4: What's New to your list so you can find it easily later:
Save

Activities

Be better prepared before your course. Deepen your understanding during and after it. Supplement your coursework and achieve mastery of the topics covered in PCI DSS v4: What's New with these activities:
Review encryption techniques
Reviewing encryption techniques will strengthen your understanding of the key concepts behind data protection.
Browse courses on Encryption
Show steps
  • Research symmetric and asymmetric algorithms
  • Review key management techniques
  • Revise hash functions and message authentication codes
Explore PCI DSS objective-based security
Following guided tutorials on PCI DSS objective-based security will help you grasp this new approach and its implications.
Show steps
  • Enroll in an online course or webinar
  • Review official PCI DSS documentation
  • Read articles and blog posts on the topic
Conduct vulnerability assessments
Practice conducting vulnerability assessments to gain hands-on experience identifying and mitigating security risks.
Browse courses on Vulnerability Assessment
Show steps
  • Install and configure a vulnerability scanner
  • Scan a target system for vulnerabilities
  • Analyze scan results and prioritize vulnerabilities
  • Develop and implement remediation plans
One other activity
Expand to see all activities and additional details
Show all four activities
Develop a PCI DSS compliance roadmap
Creating a PCI DSS compliance roadmap will provide a structured plan for achieving and maintaining compliance.
Show steps
  • Gather relevant documentation and resources
  • Conduct a gap analysis
  • Develop a compliance plan
  • Implement the plan and track progress

Career center

Learners who complete PCI DSS v4: What's New will develop knowledge and skills that may be useful to these careers:
Security Consultant
Security consultants help organizations to identify and mitigate security risks. They assess an organization's security posture, identify vulnerabilities, and develop and implement security solutions. PCI DSS v4: What's New can help you gain a better understanding of PCI DSS requirements, which can be helpful for security consultants who are responsible for helping organizations to comply with PCI DSS.
Information Security Analyst
Information security analysts plan and carry out security measures to protect an organization's computer networks and systems. They evaluate the security needs of an organization, identify vulnerabilities, and develop and implement security solutions. PCI DSS v4: What's New can help you gain a better understanding of PCI DSS requirements, which can be helpful for information security analysts who are responsible for ensuring that their organization's systems are compliant with PCI DSS.
Compliance Officer
Compliance officers ensure that an organization complies with relevant laws and regulations. They develop and implement compliance programs, monitor compliance, and report on compliance to senior management. PCI DSS v4: What's New can help compliance officers gain a better understanding of PCI DSS requirements, which can be helpful for compliance officers who are responsible for ensuring that their organization complies with PCI DSS.
IT Auditor
IT auditors evaluate an organization's information systems and business processes to ensure that they are aligned with the organization's objectives and that they comply with relevant laws and regulations. PCI DSS v4: What's New can help you gain a better understanding of PCI DSS requirements, which can be helpful for IT auditors who are responsible for assessing an organization's compliance with PCI DSS.
Chief Information Security Officer
Chief information security officers (CISOs) are responsible for developing and implementing an organization's information security strategy. They oversee the organization's information security program, manage information security risks, and ensure that the organization complies with relevant laws and regulations. PCI DSS v4: What's New can help CISOs gain a better understanding of PCI DSS requirements, which can be helpful for CISOs who are responsible for ensuring that their organization complies with PCI DSS.
Risk Manager
Risk managers identify and assess risks to an organization and develop and implement strategies to mitigate those risks. PCI DSS v4: What's New can help risk managers gain a better understanding of PCI DSS requirements, which can be helpful for risk managers who are responsible for assessing the risks associated with PCI DSS compliance.
Database Administrator
Database administrators are responsible for the design, implementation, and maintenance of an organization's database systems. They create and manage databases, configure database security, and troubleshoot database problems. PCI DSS v4: What's New can help database administrators gain a better understanding of PCI DSS requirements, which can be helpful for database administrators who are responsible for ensuring that their organization's databases comply with PCI DSS.
Network Security Engineer
Network security engineers design, implement, and maintain an organization's network security systems. They configure firewalls, intrusion detection systems, and other security devices to protect the organization's network from unauthorized access. PCI DSS v4: What's New can help network security engineers gain a better understanding of PCI DSS requirements, which can be helpful for network security engineers who are responsible for ensuring that their organization's network complies with PCI DSS.
System Administrator
System administrators are responsible for the day-to-day operation and maintenance of an organization's computer systems. They install and configure hardware and software, manage user accounts, and troubleshoot system problems. PCI DSS v4: What's New can help system administrators gain a better understanding of PCI DSS requirements, which can be helpful for system administrators who are responsible for ensuring that their organization's systems comply with PCI DSS.
Security Architect
Security architects design and implement an organization's security architecture. They develop security policies and procedures, select and implement security technologies, and manage security risks. PCI DSS v4: What's New can help security architects gain a better understanding of PCI DSS requirements, which can be helpful for security architects who are responsible for ensuring that their organization's security architecture complies with PCI DSS.
Vulnerability Manager
Vulnerability managers are responsible for identifying and managing vulnerabilities in an organization's computer systems and networks. They assess the severity of vulnerabilities, prioritize remediation efforts, and report on the organization's vulnerability posture to senior management. PCI DSS v4: What's New may be useful for vulnerability managers who are responsible for managing PCI DSS compliance-related vulnerabilities.
Forensic Analyst
Forensic analysts investigate cybercrimes and other security incidents. They collect and analyze digital evidence, identify perpetrators, and testify in court. PCI DSS v4: What's New may be useful for forensic analysts who are responsible for investigating PCI DSS compliance incidents.
Penetration Tester
Penetration testers attempt to gain unauthorized access to an organization's computer systems and networks. They identify vulnerabilities and weaknesses in the organization's security systems and report their findings to the organization. PCI DSS v4: What's New may be useful for penetration testers who are responsible for testing an organization's compliance with PCI DSS.
Information Security Manager
Information security managers are responsible for the overall security of an organization's information systems and data. They develop and implement security policies and procedures, manage security risks, and ensure that the organization complies with relevant laws and regulations. PCI DSS v4: What's New may be useful for information security managers who are responsible for ensuring that their organization complies with PCI DSS.
Chief Security Officer
Chief security officers (CSOs) are responsible for the overall security of an organization. They develop and implement security strategies, manage security risks, and ensure that the organization complies with relevant laws and regulations. PCI DSS v4: What's New may be useful for CSOs who are responsible for ensuring that their organization complies with PCI DSS.

Reading list

We've selected three books that we think will supplement your learning. Use these to develop background knowledge, enrich your coursework, and gain a deeper understanding of the topics covered in PCI DSS v4: What's New.
Provides a clear and concise explanation of the PCI DSS 4.0 requirements. It is written in a non-technical style and valuable resource for anyone who wants to understand the standard's requirements without getting bogged down in technical details.
Provides a comprehensive overview of malware analysis. It covers all aspects of malware analysis, from collection and preparation to analysis and reporting.

Share

Help others find this course page by sharing it with your friends and followers:

Similar courses

Here are nine courses similar to PCI DSS v4: What's New.
PCI DSS: Achieving and Maintaining Compliance
Most relevant
PCI DSS: Detection, Assurance, and Management
Most relevant
PCI DSS: Infrastructure Security
Most relevant
PCI DSS: Securing Data, Systems, and Applications
Most relevant
Compliance Framework: PCI DSS
Most relevant
PCI (Payment Card) Standards for Corporate Professionals
Most relevant
PCI DSS: The State of Cardholder Data Attacks
Most relevant
Information and Cyber Security GRC: Compliance Assessment...
Most relevant
Cybersecurity Compliance and System Administration
Our mission

OpenCourser helps millions of learners each year. People visit us to learn workspace skills, ace their exams, and nurture their curiosity.

Our extensive catalog contains over 50,000 courses and twice as many books. Browse by search, by topic, or even by career interests. We'll match you to the right resources quickly.

Find this site helpful? Tell a friend about us.

Affiliate disclosure

We're supported by our community of learners. When you purchase or subscribe to courses and programs or purchase books, we may earn a commission from our partners.

Your purchases help us maintain our catalog and keep our servers humming without ads.

Thank you for supporting OpenCourser.

© 2016 - 2024 OpenCourser