Navigating PCI Security Mountains in the Cloud; Source: BrightTalk.com
Join a PCI DSS panel discussion with technical and administrative experts in the field as they discuss the role that cloud service providers play in protecting cardholder data and the security issues involved. With Bob Russo from the PCI SSC (Payment Card Industry Security Standards Council) and Jason Yaeger of Online Tech, PCI Compliant Hosting provider, the webinar combines regulatory and tech perspectives to guide merchants on creating a PCI compliant cloud.
Title: Navigating PCI Security Mountains in the Cloud
Register: Sign Up on BrightTalk.com
Who: Brandon Dunlap, Brightfly, Inc.; Bob Russo, PCI SSC; Jason Yaeger, Director of Operations, Online Tech; Randal Asay, Catbird
When: November 6, 2013 @2PM ET
Descriptions: Organizations outsourcing card data to the cloud face significant security risks. As soon as an organization adds other players to the offsite card-management mix, ensuring compliance with the PCI Data Security Standard becomes increasingly challenging. Cloud users and cloud service providers need to understand what their roles and responsibilities are when it comes to protecting this data. Storing, processing and transmitting cardholder data in the cloud brings the cloud environment into scope for PCI DSS.
Organizations need to know where their data is at all times. A lot of cloud clients have limited or no control over cardholder data storage. Where’s the data being stored? Is it stored in multiple locations? These are all things that you have to take into consideration when you’re thinking about outsourcing to a cloud provider. Learn how to address PCI compliance challenges in the cloud and gain new insights on:
- Emerging PCI security risks in the cloud
- Processes for assessing risk when card data could potentially be stored in multiple locations
- Recommendations for achieving PCI compliance across virtual environments
- How to use a data-centric approach to reduce the cost and scope of PCI Compliance
For further guidance, read our PCI Compliant Hosting white paper.
It discusses the impact of the PCI DSS standard on data centers and server infrastructure, describes the architecture of a PCI compliant data center both technically and contractually, and outlines the benefits and risks of data center outsourcing, and vendor selection criteria.
Jason Yaeger, Risk Management & Security Officer, Online Tech
Jason Yaeger is Online Tech’s Risk Management and Security Officer. In his three years at Online Tech, Jason has guided the company through successful completion of many audits, including SAS 70 Type I, SAS 70 Type II, SSAE 16, SOC 2, HIPAA, and PCI.
In addition to overseeing operations across all of Online Tech’s data centers, Jason is also the Vice President of the Southeast Michigan Chapter of 7×24 Exchange. Prior to Online Tech, Jason was Director of Internet Operations at 20/20 Communications where he spent 8 years developing the company’s wireless and internet initiatives.
The post PCI Cloud Security Webinar with PCI SSC & PCI Compliant Hosting Experts appeared first on Managed Data Center News.
