Event Calendar

Tuesday, April 30, 2024

PCI Credit Card Security Risk, Readiness & Compliance for FI's Webinar

Start Date: 4/30/2024 9:00 AM MDT
End Date: 4/30/2024 10:30 AM MDT


Event Website: https://financialedinc.com/PCI-Credit-Card-Security-Risk-Readiness-Compliancefor-Financial-Institutions

Organization Name: Independent Community Bankers of Colorado

Contact:
Maelynn Lewis
Email: mlewis@icbcolo.org
Phone: (720) 607-7937

PCI compliance is no joke. This session will describe the latest updates to the compliance standard, present solutions to common adherence challenges, and provide clear strategies for managing the risk and compliance needs related to credit card security. If some of the nuances might be new to you or need refreshing, consider this convenient opportunity to get the latest information. The PCI DSS (Payment Card Industry Data Security Standard) has been in place for over 15 years. In that time, the standard has had three major revisions, including the release of version 4 in the first quarter of 2022. Financial institutions find themselves functioning in multiple roles: card issuers, acquirers, merchants, and service providers. This session will address common misconceptions and challenges seen in financial institutions including:
  • “The card data is all encrypted, so we don’t have to worry about it.”
  • “We outsource to XYZ so we are not responsible for compliance.”
  • “No one has asked us for a compliance report.”
  • “We can’t make the core system compliant so there is no point in the rest of it.”
  • “There is no electronic card holder data in our VoIP system or our data warehouse or….”
AFTER THIS WEBINAR YOU’LL BE ABLE TO:
  • Explain how the core elements of the PCI DSS apply to financial institutions
  • Define key challenges in managing a PCI compliance program
  • Describe how to determine and define the scope of a PCI Cardholder Data Environment (CDE)
  • Distinguish between PCI controls that are the responsibility of third-party service providers (TPSPs) and controls that are the responsibility of the financial institution
  • Explain how a well-functioning PCI compliance program can support and enhance an institution’s risk management program
TAKE-AWAY TOOLKIT
  • Schedule of required periodic PCI compliance activities
  • List of required evidentiary documents for PCI compliance
  • PCI CDE scope analysis flowchart
  • Excel framework mapping tool for alignment of PCI controls with other compliance frameworks such as FFIEC
  • Links to important resources
  • Employee training log
  • Interactive quiz
  • PDF of slides and speaker’s contact info for follow-up questions
  • Attendance certificate provided to self-report CE credits
WHO SHOULD ATTEND?
PCI compliance is a business issue, not solely an IT issue. This informative session is designed for people with responsibility and oversight in the following areas: risk management, internal audit, vendor management, card services, IT and cyber operations, and risk management and compliance.
 
DON’T MISS THIS RELATED WEBINAR!
Credit Card Compliance: Issuance, Changes, Statements, Errors & More, recording available
 
NOTE: All materials are subject to copyright. Transmission, retransmission, or republishing of any webinar to other institutions or those not employed by your institution is prohibited. Print materials may be copied for eligible participants only.
 
MEET THE PRESENTER
Randall J. Romes, CISSP, CRISC, CISA, MCP, PCI-QSA, CLA
Randy Romes has been a cybersecurity consultant at CLA since 1999 and brings a strong background in computer technology, physics, and education.  As a Principal in the Information Security Services and Financial Services Group, Randy leads a team of technology and industry specialists and is responsible for the continuing development of the open-source, Unix, and Windows applications used in security audits. Randy has been involved in developing numerous leading-edge hacking/testing methods and security service offerings.  A featured speaker at national information and security management conferences, Randy holds multiple certifications, a Master’s in Educational Technology from the University of Saint Thomas, and a Bachelor’s in Education from the University of Wisconsin – Madison.  In addition, he is an instructor at the CUNA Management School and Graduate School of Banking at the University of Colorado in Boulder.

 
THREE REGISTRATION OPTIONS – WHAT YOU GET
1. LIVE WEBINAR
  • Unlimited live connections with shareable access within your institution
  • Available to view on desktop, mobile & tablet devices
  • Take-away toolkit
  • Live Q&A session & the presenter's contact info for follow-up questions
  • Access the webinar training from your User Portal
2. ON-DEMAND WEBINAR
  • Unlimited and shareable access to the recording within your institution,
    starting two business days after the live date
  • Available to view 24/7 on desktop, mobile & tablet devices
  • Take-away toolkit
  • Ability to download the webinar video and toolkit items
  • Presenter's contact info for follow-up questions
  • Access the webinar training from your User Portal
3. BUNDLE & SAVE
  • Save when you Bundle the Live + On-Demand Webinar Registration
  • Includes all the items listed above
  • Full registration descriptions can be found here