IT security professionals to get head start on PCI compliance at comprehensive and educational boot camp
Stafford, VA/Louisville, CO – The Petroleum Convenience Alliance for Technology Standards (PCATS) and the National Association of Convenience Stores (NACS) today announced they will partner with Coalfire Systems, Inc., an information technology (IT) audit and compliance firm, to deliver an intensive 1-1/2 day boot camp to streamline payment card industry (PCI) compliance for retailers that are managing multiple stores. The chief information officer (CIO) data security boot camp is part of the data security track, held on January 19-20, during the PCATS 2010 Annual Conference in New Orleans, Louisiana.
“Merchants are demanding a more efficient process to validate their PCI compliance. NACS and PCATS are meeting that demand by sponsoring this PCI boot camp and providing a vendor-neutral program that should accelerate compliance and reduce costs. A streamlined PCI compliance program is possible, and demonstrating this is what we hope to accomplish with the hands-on boot camp,” said Rick Dakin, president at Coalfire.
At the boot camp, attendees will learn about PCI Compliance requirements, including deadlines, merchant levels and reporting; including completing a self assessment questionnaire (SAQ). The training will also cover details about cardholder data and where it resides. The PCI compliance report and audit scope will be reviewed, as well as a complete overview of the 12-step process to validate compliance. This session is intended to empower CIOs within the c-store industry by reviewing the processes and practices currently in place to support the flow of information and providing them with the steps necessary to protect customer data and better support their enterprise goals.
“Payment Card Industry (PCI) compliance is a complex and ever evolving subject affecting millions of businesses. There is a vast need for better information about what level of evidence must be provided to demonstrate PCI compliance in our marketplace. It is a relatively new standard and there is a lack of vendor-neutral information available,” said Scott Wood, executive director of PCATS.
The real cost of a data breach is more than most retailers think—and they’re more at risk than they know. Merchants that do not comply with the Payment Card Industry Data Security Standard (PCI DSS) may be subject to fines, card replacement costs, costly forensic audits, and brand damage should a breach event occur. The cost of guessing wrong about the meaning of any PCI requirement is high. This boot camp will help merchants understand the compliance requirements accurately and get advice on various approaches they can take to achieve compliance. To obtain additional details, view the agenda or register for the CIO data security boot camp, visit http://www.pcats.org/ciobootcamp.
# # #
The Petroleum Convenience Alliance for Technology Standards (PCATS) was founded in September 2003 to continue the development and maintenance of standards work initiated under the NACS Technology Standards Project. PCATS’ mission is to develop, maintain and assist members in the implementation of a variety of technology standards. With over 150 members, the group’s membership represents more than 22,000 convenience stores. Membership is open to any petroleum marketer, convenience store owner/operator, other retail channels, or any of their suppliers or vendors. For additional information regarding PCATS, please visit www.pcats.org/discover.
NACS, the association for convenience and petroleum retailing, is an international trade association representing more than 2,200 retail and 1,800 supplier member companies. The U.S. convenience store industry, with over 146,000 stores across the country, posted $577.4 billion in total sales in 2007, with $408.9 billion in motor fuels sales.
Coalfire Systems, Inc. is a leading IT audit and compliance firm that provides IT audit, security, and compliance solutions throughout North America. Customers are in the financial services, government, healthcare, education, legal, public electric utility, and retail industries. Coalfire's solutions are adapted to requirements under emerging data privacy legislation including PCI, GLBA, HIPAA, NERC CIP, SOX, and FISMA. Coalfire is a Qualified Security Assessor (QSA) that conducts 750 assessments annually. For more information, visit www.coalfiresystems.com.