• TREND MICRO
  • ABOUT
Search:
  • Latest Posts
  • Categories
    • Android
    • AWS
    • Azure
    • Cloud
    • Compliance
    • Critical Infrastructure
    • Cybercrime
    • Encryption
    • Financial Services
    • Government
    • Hacks
    • Healthcare
    • Internet of Everything
    • Malware
    • Microsoft
    • Mobile Security
    • Network
    • Privacy
    • Ransomware
    • Security
    • Social Media
    • Small Business
    • Targeted Attacks
    • Trend Spotlight
    • Virtualization
    • Vulnerabilities
    • Web Security
    • Zero Day Initiative
    • Industry News
  • Our Experts
    • Ed Cabrera
    • Rik Ferguson
    • Greg Young
    • Mark Nunnikhoven
    • Jon Clay
    • William “Bill” Malik
  • Research
Home   »   Cloud   »   Need to Know Now: New Cloud PCI DSS Guidelines

Need to Know Now: New Cloud PCI DSS Guidelines

  • Posted on:February 14, 2013
  • Posted in:Cloud
  • Posted by:
    Dave Asprey
0

Big Cloud Security News

If you are using cloud computing, some major news just came out. PCI released the DSS Guidelines for Cloud Computing on Feb 7th. This is really important because the new document provides “guidance on the use of cloud technologies and considerations for maintaining PCI DSS controls in cloud environments.” While it’s meant for organizations already using (or planning to use) cloud as part of a cardholder data environment (CDE), it applies to nearly every cloud user, as the PCI DSS cloud guidance is sure to influence cloud security standards even for non-CDE environments.

Why you should care?

The guidance includes responsibilities for cloud service providers and for cloud users, but – as with existing PCI standards – the ultimate responsibility for compliance with PCI DSS is on the manager of the cardholder data environment. Whether or not you use cloud, you’re still on the hook for ultimately being compliant. The bottom line is that if you are or are planning to leverage the cloud, then you need to understand the implications of this new guidance, especially when PCI compliance is relevant to you.

Want to learn more?

PCI Cardholder Data Environments tend to be run on IaaS, so we’ll be hosting a webinar with experts from Amazon Web Services and Accuvant to review the Guidelines and help decode what you need to focus on in the new guidance and identify some best practices to address it.

To ensure you get the full picture, especially in leveraging Amazon Web Services and PCI DSS, Amazon Web Services will detail their PCI compliance and Trend Micro will discuss remaining actions you need to take using best practice examples.

Leveraging its seven-plus years as a leading Qualified PCI Security Assessment company, Accuvant will help participants understand these Guidelines in the context of an overall PCI Compliance program.

What you need to do:

  • Register now for the webinar at 10am Pacific Time on Tuesday, Feb 19th.
  • Between now and then, check out the new blog series kicked off yesterday with a detailed examination of best practices in securing your AWS cloud deployments.

Related posts:

  1. PCI council introduces tokenization guidelines
  2. PCI Council issues new guidelines for the cloud
  3. Government cloud security guidelines slated for release
  4. The Cloud’s Shared Risk Model

Security Intelligence Blog

  • Our New Blog
  • How Unsecure gRPC Implementations Can Compromise APIs, Applications
  • XCSSET Mac Malware: Infects Xcode Projects, Performs UXSS Attack on Safari, Other Browsers, Leverages Zero-day Exploits

Featured Authors

Ed Cabrera (Chief Cybersecurity Officer)
Ed Cabrera (Chief Cybersecurity Officer)
  • Ransomware is Still a Blight on Business
Greg Young (Vice President for Cybersecurity)
Greg Young (Vice President for Cybersecurity)
  • Not Just Good Security Products, But a Good Partner
Jon Clay (Global Threat Communications)
Jon Clay (Global Threat Communications)
  • This Week in Security News: Ransomware Gang is Raking in Tens of Millions of Dollars and Microsoft Patch Tuesday Update Fixes 17 Critical Bugs
Mark Nunnikhoven (Vice President, Cloud Research)
Mark Nunnikhoven (Vice President, Cloud Research)
  • Twitter Hacked in Bitcoin Scam
Rik Ferguson (VP, Security Research)
Rik Ferguson (VP, Security Research)
  • The Sky Has Already Fallen (you just haven’t seen the alert yet)
William
William "Bill" Malik (CISA VP Infrastructure Strategies)
  • Black Hat Trip Report – Trend Micro

Follow Us

Trend Micro In The News

  • 80% of Global Organizations Expect to Experience a Breach of Customer Records in the Next Year
  • Trend Micro Demonstrates Threat Expertise at Virtual Black Hat USA 2021
  • Cybersecurity Leader Trend Micro Joins Scamadviser as Foundation Partner
  • Nearly a Quarter of Exploits Sold on Cybercriminal Underground Are More Than Three Years Old
  • 84% of Organizations Experienced Phishing & Ransomware Type Threats in the Past 12 Months
  • Home and Home Office
  • |
  • For Business
  • |
  • Security Intelligence
  • |
  • About Trend Micro
  • Asia Pacific Region (APAC): Australia / New Zealand, 中国, 日本, 대한민국, 台灣
  • Latin America Region (LAR): Brasil, México
  • North America Region (NABU): United States, Canada
  • Europe, Middle East, & Africa Region (EMEA): France, Deutschland / Österreich / Schweiz, Italia, Россия, España, United Kingdom / Ireland
  • Privacy Statement
  • Legal Policies
  • Copyright © 2017 Trend Micro Incorporated. All rights reserved.