PCI Security Standards Council

📢 New PCI SSC Industry Bulletins Published The PCI Security Standards Council has announced the initiation of sunset periods for several standards as the portfolio continues to evolve. 🔹 PCI SPoC Standard 🔹 PCI CPoC Standard 🔹 PCI 3DS SDK Standard Organizations are encouraged to review the full bulletins for details. 👉 Read the full bulletins: https://brnw.ch/21x276f

🏢 Strengthen PCI compliance from within with ISA Training The Internal Security Assessor (ISA) program equips professionals with the knowledge to support and manage PCI DSS compliance within their organization. From understanding PCI DSS requirements to working alongside QSAs during assessments, ISA training helps teams improve internal processes, streamline assessments, and maintain ongoing compliance. Empower your organization with in-house expertise and greater confidence in your security posture. Learn more: https://brnw.ch/21x24UF

🎙️ New episode: Coffee with the Council What’s the real value of becoming a Principal Participating Organization (PPO)? In this episode, leaders from BT Group, Reflectiz, and Salesforce share firsthand perspectives on: • Why they joined the PPO program • How collaboration is shaping the future of payment security • The benefits of early visibility into standards and strategic direction • The power of engaging directly with industry peers and experts Hear how PPOs are helping drive meaningful progress across the global payments ecosystem. 🎧 Listen now: https://brnw.ch/21x22nX

🤖 New on the blog: The AI Exchange – Innovators in Payment Security In this edition, Himanshu Kumar Das, CISO at Dreamplug Technologies (CRED) shares how AI is driving smarter, more adaptive payment security. Key insights include: • Using AI for fraud detection and anomaly identification • Enabling faster, data-driven decision-making across teams • The importance of governance, transparency, and explainability • Emerging trends like privacy-enhancing technologies and explainable AI Explore how CRED is balancing innovation with strong security foundations in an AI-driven ecosystem. Read the full blog: https://brnw.ch/21x20ra

🔍 Advance your career in payment security with QSA Training The Qualified Security Assessor (QSA) program prepares professionals to assess merchants and service providers against the PCI Data Security Standard (PCI DSS). Gain the expertise to evaluate security controls, validate compliance, and produce Reports on Compliance (RoC) required across the payment ecosystem. QSA Training equips you with the knowledge to support organizations in meeting PCI DSS requirements and strengthening their overall security posture. Learn more: https://brnw.ch/21x1Y0x

💳 Deepen your expertise in payment card security with CPSA Training The Card Production Security Assessor (CPSA) program prepares professionals to assess card production and provisioning environments against PCI standards. Covering both logical and physical security, this training equips you to evaluate everything from key management and personalization processes to facility security and fulfillment operations. Strengthen your ability to support secure card production across the payments ecosystem and gain a recognized industry credential. Learn more: https://brnw.ch/21x1VF5

🎓 Bridge the gap between your team and assessors with Knowledge Training Give your team the insight and confidence to navigate PCI assessments more effectively. PCI SSC Knowledge Training is designed to help learners: • Speak the same language as assessors • Guide their organization through assessments and pre-work • Collaborate more efficiently during engagements By completing the same training and exam as assessors, participants gain a strong working knowledge of PCI standards—helping assessments run more smoothly from start to finish. Available across programs including 3DS, CPSA, P2PE, QPA, Secure Software, and more. Learn more: https://brnw.ch/21x1TWs

🌍 PCI SSC launches redesigned language microsites The PCI Security Standards Council has introduced newly enhanced language microsites to better support its global community—making payment security resources more accessible, structured, and user-friendly. Now available in Chinese, French, German, Japanese, Spanish, and Portuguese, these updates deliver: • Improved navigation and filtering in the Document Library • A consistent experience across all supported languages • Expanded access to translated PCI resources • Streamlined navigation for key content and tools These enhancements reflect PCI SSC’s continued commitment to making security standards more accessible for organizations worldwide. Explore the updated experience via the language selector on the PCI SSC website: https://brnw.ch/21x1RAN

🎙️ Join PCI SSC’s Lauren Holloway on the upcoming Conexxus.org webinar! With PCI DSS v4.0.1 now in effect, organizations are navigating evolving expectations around vulnerability management. In this upcoming session, Lauren Holloway, Director of Data Security Standards at the PCI Security Standards Council, will help cut through the complexity and provide clarity on: • PCI DSS v4.0.1 vulnerability management requirements • The impact of AI on the vulnerability landscape • Practical implementation strategies for fuel and convenience retailers • Live Q&A with PCI SSC perspective Register now: https://brnw.ch/21x1Pil

💥REGISTRATION OPEN!💥 Are you joining us for #PCINACM26?! We'll see you in Vancouver, BC, Canada this year for three days of connection, insight, and celebration as we mark the Council’s 20th Anniversary. Be one of the first to register: https://brnw.ch/21x1NSn