Published: May 8, 2018

Engage In Learning Launches PCI DSS eLearning Program To Prevent Card Fraud

Opportunities for card fraud are being minimized by the Payment Card Industry Data Security Standard (PCI DSS) and by related learning materials, such as those launched recently by Engage in Learning.

Engage in Learning

Chris Horseman

chrishorseman@engageinlearning.com

+44 (0)333 259 9012

http://engageinlearning.com

PCI DSS eLearning Program Launched By Engage In Learning

Some £58bn was spent via credit and debit cards in the UK in April last year—some 6.8% more than was spent in April 2016—according to the UK’s Office for National Statistics.

While this might appear to offer increasing opportunities for card fraud, these opportunities are being minimized by the Payment Card Industry Data Security Standard (PCI DSS) and by related learning materials, such as those launched recently by Engage in Learning.

The worldwide PCI DSS, which aims to help prevent card fraud and enable organizations process card payments securely, is the result of collaboration between the major credit card brands American Express, Discover, JCB, Mastercard, and Visa. Complying with PCI DSS means that an organization is doing its best to keep its customers’ information safe, secure and out of the hands of those who could use that data in a fraudulent way.

“Anyone accepting a card payment is responsible for looking after that customer’s card data, regardless of who processes the data for that person’s organization”, explained Engage in Learning’s Managing Director, Chris Horseman.

“Moreover, those accepting card payments must comply with PCI DSS. It isn’t optional”.

What The PCI DSS eLearning Program Entails

“The Engage in Learning PCI DSS eLearning program explains how the payment card system works; sets out the PCI’s requirements for organizations that process card payments, and outlines what those who handle payment card details need to know to ensure that they handle payment card data securely”.

Intended to protect sensitive cardholder data, the PCI DSS has 12 high-level requirements, encompassed in six categories:

1. Build and Maintain a Secure Network - install and maintain a firewall configuration to protect data. Don’t use vendor-supplied defaults for system passwords and other security parameters.

2. Protect Cardholder Data - protect stored data via encryption. Encrypt the transmission of cardholder data and sensitive information across the public net.

3. Maintain a Vulnerability Management Program – use, and regularly update, anti-virus software. Develop and maintain secure systems and applications.

4. Implement Strong Access Control Measures - restrict access to data by business on a need-to-know basis. Assign a unique ID to each person with computer access. Restrict physical access to cardholder data.

5. Regularly Monitor and Test Networks - track and monitor all access to network resources and cardholder data. Regularly test security systems and processes.

6. Maintain an Information Security Policy - maintain a policy that addresses Information Security.

ECSC, the UK's longest running full-service information and cyber security service provider, has commented, “This Engage in Learning course has been reviewed and verified by ECSC, a leading expert in PCI DSS compliance”.

For further details of the Engage in Learning PCI DSS programme, visit this website.

About Engage In Learning

A UK-based supplier of eLearning courses and solutions focusing on helping organizations improve their safety, compliance, and performance, Engage in Learning aims to provide engaging and affordable learning that’s practical and effective in an organizational setting.

Further information from:

Chris Horseman, Engage in Learning, +44 (0)20 3758 9530, chrishorseman@engageinlearning.com

Bob Little, Bob Little Press & PR, +44 (0)1727 860405, bob.little@boblittlepr.com