- Training
- Training Live Events
- Training Without Travel
- Security Courses
- Security Curricula
- Certified Instructors
- Training Calendars
- SANS vLive! / SANS @Home
- SANS OnDemand
- Community SANS
- SANS Mentor Program
- Coins
- SANS Onsite
- SANS SelfStudy
- SANS Summit Series
- SANS Partnership Series
- Webcasts
- Work Study
- Events Archive
- DoD 8570
- Voucher Credit Program
- group discounts
- Certification
- Resources
- List of Resources
- Top 20 List
- Top 25 Programming Errors
- 20 Coolest Jobs
- Application Security Procurement Language
- Top 10 Security Trends
- Top 5 Essential Log Reports
- Reading Room
- Webcasts
- AudioCasts
- WhatWorks
- Newsletters
- RSS Feeds
- Calendar Feeds
- Security Thought Leaders
- Security Policy Project
- Security+ Study Guide
- SANS Buyers Guide
- Security Tool Demos
- 2008 Salary Survey
- Vendor
- Portal
- Storm Center
- College
- Developer
- About
The most trusted source for computer security training, certification and research.
select a course
Tokyo, Japan - July 15 - 17, 2009
- Event Location & Info
- Faculty
- Vendor Expo
- General Info
- Vendor Events
- Special Events
- SANS @Night
- Brochure (PDF)
SANS training gives me the tools I need to do my job.
-Michael Hiramoto, NCI
Audit 521
2 Day Course
(Portal Account Required)
(SelfStudy Available)
For GIAC STAR
If you register for the full course, you may register to seek your STAR .
Online exam issued with 4-month deadline 7-10 days following conference.
Additional information:
STAR Information
GIAC FAQ
Fee Information
For OnDemand Bundles
You can bundle SANS OnDemand online training and assessment package for an additional $1.00 US when registering for the full course. Additional information can be found at the OnDemand Bundles page and the OnDemand FAQ.
Meeting the Minimum: PCI/DSS 1.2: Becoming and Staying Compliant
Wednesday, July 15, 2009 - Thursday, July 16, 2009Dave Shackleford, SANS Certified Instructor
6 CPE Credits Per Day
The payment card industry has been working over the past several years to formalize a standard for security practices that are required for organizations who process or handle payment card transactions. The fruit of this labor is the Payment Card Industry Data Security Standard (currently at version 1.2).
This standard, which started life as the Visa Digital Dozen, is a set of focused comprehensive controls for managing the risks surrounding payment card transactions, particularly over the Internet. Of course, compliance validation is one of the requirements. This course was created to allow organizations to exercise due care by performing internal validations through a repeatable, objective process. While the course will cover all of the requirements of the standard, the primary focus is on the technical controls and how they can be measured. Every student will leave the class with a toolkit that can be used to validate any PCI/DSS environment technically and the knowledge of how to use it.
WebScarab demo by David Hoelzer. Download will take several minutes. http://enclaveforensics.com/page6/files/page6-1000-pop.html
- Who Should Attend
- Managers overseeing PCI/DSS compliance
- External auditors performing PCI/DSS validation
- Security professionals operating in a PCI/DSS compliant environment
- Internal auditors desiring to validate interim compliance
- Sampling of Topics
- Requirements for compliance
- Compliance guidance for each control
- Suite of tools for validating technical compliance
- Explanation of alternative controls
- Discussion of determining scope for compliance requirements
- © 2000-2009 The SANS™ Institute
- Web Privacy Policy | Web Contact |
- Press Room | Trademark Usage Policy