What is PCI Compliance?

Randy Bartels of KirkpatrickPrice on PCI Compliance Learn more at https://kirkpatrickprice.com/pci-dss/ PCI Compliance – what is it? We get this question a lot. PCI stands for the Payment Card Industry and they have a number of different standards. One of those standards is the Data Security Standard or the DSS. Nine times out of ten, when we’re talking to somebody about PCI compliance we’re talking to them about the Data Security Standard. The Data Security Standard was born out of an initial effort by Visa and MasterCard, and was then joined by American Express, Discover and JCB. This is a set of nearly 300 requirements that reads kind of like a best practice document. So, these requirements are broken out into twelve domains, and those domains cover everything from firewall and having a secure network, to systems hardening and managing system configurations, to encryption in transit or in storage, antivirus, and all the way through to the very last domain covering information security policy and having an information security program.