Speak to an Expert Emergency

Blackfoot are Participating in the PCI SSC 2024 Community Meetings

PCI Logo

We are excited to announce that Blackfoot are participating in the PCI Security Standards Council (PCI SSC) Community Meetings in North America (Boston) on 10-12 September 2024 and Europe (Barcelona) on 8-10 October 2024. The PCI Community Meetings provide an invaluable opportunity for payment security industry professionals to meet, collaborate, and learn about the latest developments in payment security and evolving PCI security standards.

 

Our Principal Information Security Consultant, Peter O’Sullivan, will be presenting at both events. We will share the stage in collaboration with the PCI Security Standards Council. Using our practical QSA experience in the field, we will focus on the key topic of managing Infrastructure-as-Code within a PCI DSS compliance program. Our presentation will provide insights into how the use of Infrastructure-as-Code impacts across various requirement to ensure securely built, managed, and maintained solutions deployed using this technology.

 

The session will provide participants with the knowledge and awareness of the challenges associated with Infrastructure-as-Code, as its use grows in popularity within modern infrastructure and cloud implementations, in the context of PCI DSS. We look forward to collaborating with other experts and contributing to the ongoing dialogue on improving payment security around the world.

 

A note from Peter:

‘’Hi folks, I can’t wait to see you at this autumn’s North American and European community meetings, where Lauren Holloway in Boston and John Bloomfield in Barcelona from the Standards Council and I will be discussing the relationship between PCI DSS and Infrastructure-as-Code.


There’s no doubt Infrastructure-as-Code is growing in popularity, and I think rightly so. But in adopting this route, have you covered all of your bases? This can be hugely intertwined, so we’ll discuss a few key areas of the DSS, and you can think about what this might mean for your role within an environment – whether as an assessor, a solution architect, a system admin, or a member of security.


We’ll touch on scope, business-as-usual governance and assessment, and avoiding common pitfalls such as scope blind spots and significant change. The aim here is to ensure that how you’re using Infrastructure-as-Code not only fulfils your business objectives but also positively contributes to the security of the CDE. You’ll then be in the best position to look at processes and implement necessary changes with your customers and stakeholders to set a strong framework for continual compliance.” 

 

You can read more about North America here.

You can read more about Europe here.

Countdown to North America

Days
Hours
Minutes

Countdown to Europe

Days
Hours
Minutes
Share this Article:

Related Articles

Newsletters

Summer 2024 Newsletter

In this edition, we delve into the multifaceted world of cybersecurity, the persistent ransomware threat and the latest requirements for e-commerce websites.

Read More

Speak to an Expert

Call us on +44 (0) 203 393 7795

We value what our customers think of us

Get The Latest Industry News

We’ll keep you informed about potential risks and vulnerabilities that could impact your digital assets.