PCI DSS V3.2 Is Almost Here!

Robert Spivak : Apr 6, 2016 12:00:00 AM

PCI DSS V3.2 Is Almost Here!

The PCI Security Standards Councils confirmed last week that the updated version of PCI DSS (v3.2) will be released at the end of April 2016. The current version (v3.1) will expire in October 2016. Organizations currently assessing under PCI DSS (v3.1) will be allowed a transition period.

All key dates and milestones to be aware of for this year’s updates are shared in this article.

An earlier high level discussion covering the new update can be found here.

Some of the significant high level changes: • The SSL and early TLS sunset extension • Multifactor administrative access to cardholder data environments • The inclusion of the Designated Entity Supplemental Validation (DESV) requirements • New reporting requirements for service providers

We will conduct our usual detailed page-by-page word-by-word analysis of the changes and impacts as soon as the standard is published. Stay tuned.
A Misadventure on THE AIRLINE THAT SHALL NOT BE NAMED | blog,humour | Control Gap

A Misadventure on THE AIRLINE THAT SHALL NOT BE NAMED | blog,humour | Control Gap

David Gamey David Gamey : Aug 27, 2017 12:00:00 AM

Whether you embrace or eschew the label of Road Warrior, if you've traveled extensively for...

Read More
The Panama Papers - a new kind of breach? | blog | Control Gap

The Panama Papers - a new kind of breach? | blog | Control Gap

David Gamey David Gamey : Apr 6, 2016 12:00:00 AM

In the world of data breaches, it’s not often that we see something totally new. This last week...

Read More
Our Offensive Security Hiring Process

Our Offensive Security Hiring Process

Ben Rediboim Ben Rediboim : Aug 18, 2021 10:07:00 PM

Control Gap is expanding our Offensive Security team and looking for talented individuals. To...

Read More