Certified Payment Card Security Architect (CPCSA)

About the Program

The 2-Day workshop would give the audience a deep dive into the 12 PCI mandates and the ways and means of implementing and sustaining a successful PCI-DSS program. The Program will be rendered by a senior QSA with over 10 years’ experience in this security-specific domain and hundreds of PCI assessments under his best.

The purpose of the program is to help the trainees understand the overarching purpose of the existence of PCI-SSC, each of the twelve requirements of the PCI-DSS in detail. The course guide you on the implementation challenges and practices. The course is designed to equip the team to maintain and sustain the PCI-DSS compliance in the organization.

This program has been adapted to address ADIB’s PCI landscape, its evolution, requirements and unique challenges.

Agenda

Day 1

Session 1

 

 

  • The Payment Card Industry – Evolution
  • Card Anatomy – The Essentials
  • Security and the Payment Card Industry
  • PCI-DSS (Payment Card Industry – Data Security Standard) – Introduction
  • PCI Evolution – Initial to Current Version
Session 2

 

 

  • Scoping for PCI Compliance and its importance
  • Cardholder Data Flow and nuances
  • Compliance Overview
  • Compliance Validation
  • Segmentation

Day 2

Session 1

 

 

  • Breaches – Instances and Root cause analysis
  • PCI Risk Assessment
  • How to protect Cardholder Data – Tools & Techniques
  • Logs, SIEM, SOC and incident management
Session 2

 

 

  • Internal Controls and Reporting
  • Impact of virtualization and cloud security
  • Mitigating third party risk
  • Compliance maintenance
  • Your PCI Landscape – evolution, requirement and challenges (Optional)
Certification Examination

The certification program is an independent program and we are not an affiliate of PCI-SSC. This program is not endorsed by PCI-SSC.

About the Trainer

P.S. Gopalakrishnan – QSA

CISA, CISSP, BS7799LA, ITP, MCP, CEH and PCI QSA

Mr. Panaiyur S. Gopalakrishnan is the Lead Engagement Partner of MKPSG and leads the firm’s Information Technology security practice. He is a qualified Chartered Accountant and licensed Certified Public Accountant.  His other Credentials include CISA, CISSP, BS7799LA, CITP, MCP, CEH and PCI QSA. He has been in practice since 1981. He has advised several domestic and international companies on a range of compliance issues.

He carries wide experience in PCI QSA Certification & Training, SAS 70 audits, ISO 27001 implementation, PKI audits, Web Trust Certification and Audits under Indian Information Technology Act 2000. He has executed over one hundred PCI-DSS audits

He was a former member of Southern India Regional Council of the Institute of chartered Accountants of India and headed the student’s committee. He has also served as a Director of ISACA chapter, Chennai.