PCI compliant? Want to stay that way? Then you’re going to have to upgrade this year to version 2.0 of the PCI DSS, said Bob Russo, General Manager of the PCI Security Standards Council.

What’s different in version 2.0? Mostly clarifications, said Russo. It isn’t that much different than 1.0 beyond clarifications. Lot more focus on centralized logging and scoping, which is knowing where all your data is at the beginning of compliance, Russo said.

As for cloud and virtualization PCI compliance issues, Russo said to look for guidance coming out this year.

Categories: Regulatory Compliance, ,

Tags: , , ,


2 Comments

Leave a Reply

David Spark

David Spark has contributed 156 posts to The State of Security.

View all posts by David Spark >