• TREND MICRO
  • ABOUT
Search:
  • Latest Posts
  • Categories
    • Android
    • AWS
    • Azure
    • Cloud
    • Compliance
    • Critical Infrastructure
    • Cybercrime
    • Encryption
    • Financial Services
    • Government
    • Hacks
    • Healthcare
    • Internet of Everything
    • Malware
    • Microsoft
    • Mobile Security
    • Network
    • Privacy
    • Ransomware
    • Security
    • Social Media
    • Small Business
    • Targeted Attacks
    • Trend Spotlight
    • Virtualization
    • Vulnerabilities
    • Web Security
    • Zero Day Initiative
    • Industry News
  • Our Experts
    • Rik Ferguson
    • Christopher Budd
    • Raimund Genes
    • Mark Nunnikhoven
  • Research
Home   »   Cloud   »   Need to Know Now: New Cloud PCI DSS Guidelines

Need to Know Now: New Cloud PCI DSS Guidelines

  • Posted on:February 14, 2013
  • Posted in:Cloud
  • Posted by:
    Dave Asprey
0

Big Cloud Security News

If you are using cloud computing, some major news just came out. PCI released the DSS Guidelines for Cloud Computing on Feb 7th. This is really important because the new document provides “guidance on the use of cloud technologies and considerations for maintaining PCI DSS controls in cloud environments.” While it’s meant for organizations already using (or planning to use) cloud as part of a cardholder data environment (CDE), it applies to nearly every cloud user, as the PCI DSS cloud guidance is sure to influence cloud security standards even for non-CDE environments.

Why you should care?

The guidance includes responsibilities for cloud service providers and for cloud users, but – as with existing PCI standards – the ultimate responsibility for compliance with PCI DSS is on the manager of the cardholder data environment. Whether or not you use cloud, you’re still on the hook for ultimately being compliant. The bottom line is that if you are or are planning to leverage the cloud, then you need to understand the implications of this new guidance, especially when PCI compliance is relevant to you.

Want to learn more?

PCI Cardholder Data Environments tend to be run on IaaS, so we’ll be hosting a webinar with experts from Amazon Web Services and Accuvant to review the Guidelines and help decode what you need to focus on in the new guidance and identify some best practices to address it.

To ensure you get the full picture, especially in leveraging Amazon Web Services and PCI DSS, Amazon Web Services will detail their PCI compliance and Trend Micro will discuss remaining actions you need to take using best practice examples.

Leveraging its seven-plus years as a leading Qualified PCI Security Assessment company, Accuvant will help participants understand these Guidelines in the context of an overall PCI Compliance program.

What you need to do:

  • Register now for the webinar at 10am Pacific Time on Tuesday, Feb 19th.
  • Between now and then, check out the new blog series kicked off yesterday with a detailed examination of best practices in securing your AWS cloud deployments.

Related posts:

  1. PCI Council issues new guidelines for the cloud
  2. PCI council introduces tokenization guidelines
  3. Government cloud security guidelines slated for release
  4. Where to store cloud encryption keys? Adhere to compliance guidance.

Security Intelligence Blog

  • Leaking Beeps: Here’s A Reason to Kick Pagers out of Hospitals
  • From RAR to JavaScript: Ransomware Figures in the Fluctuations of Email Attachments
  • A Show of (Brute) Force: Crysis Ransomware Found Targeting Australian and New Zealand Businesses

Featured Authors

Christopher Budd (Global Threat Communications)
Christopher Budd (Global Threat Communications)
  • Data Protection Risks of Using Pagers in Healthcare
Dustin Childs (Zero Day Initiative Communications)
Dustin Childs (Zero Day Initiative Communications)
    Ed Cabrera (Chief Cybersecurity Officer)
    Ed Cabrera (Chief Cybersecurity Officer)
    • BEC Scams – An Exploitation of Trust
    Elisa Lippincott (TippingPoint Global Product Marketing)
    Elisa Lippincott (TippingPoint Global Product Marketing)
    • TippingPoint Threat Intelligence and Zero-Day Coverage – Week of September 19, 2016
    Mark Nunnikhoven (Vice President, Cloud Research)
    Mark Nunnikhoven (Vice President, Cloud Research)
    • Automate Vulnerability Scanning With Amazon Inspector and Deep Security
    Raimund Genes (Chief Technology Officer)
    Raimund Genes (Chief Technology Officer)
    • Is “Next Gen” patternless security really patternless? What the changes to VirusTotal’s Terms of Service Really Mean
    Rik Ferguson (VP, Security Research)
    Rik Ferguson (VP, Security Research)
    • PoS Malware: Old Dog Learns New Tricks

    Trend Micro Twitter Feed

    Tweets by @trendmicro

    Follow Us

    Trend Micro in the News

    • Yahoo Breach: It’s Time to Keep Those Password Safe
    • Why Trend Micro Will be on Fire at Microsoft Ignite This Week
    • Trend Micro Experts Provide Cloud Security Insights at Microsoft Ignite

    Trend Micro Blogs

    • Internet Safety for Kids
    • CounterMeasures
    • CTO Insights
    • Home and Home Office
    • |
    • For Business
    • |
    • Security Intelligence
    • |
    • About Trend Micro
    • Asia Pacific Region (APAC): Australia / New Zealand, 中国, 日本, 대한민국, 台灣
    • Latin America Region (LAR): Brasil, México
    • North America Region (NABU): United States, Canada
    • Europe, Middle East, & Africa Region (EMEA): France, Deutschland / Österreich / Schweiz, Italia, Россия, España, United Kingdom / Ireland
    • Privacy Statement
    • Legal Policies
    • Copyright © 2016 Trend Micro Incorporated. All rights reserved.