PAYMENT CARD INDUSTRY REMEDIATION PROJECT Cheryl Wenezenki-Yolland, PCI Project Owner Nicholas Krischanowsky, PCI Project Director Public Sector Payment.

Slides:

Advertisements

Similar presentations

ISACA January 8, IT Auditor at Cintas Corporation Internal Audit Department Internal Security Assessor (ISA) Certification September 2010 Annual.

Advertisements

National Bank of Dominica Ltd Merchant Seminar Facilitator: Janiere Frank Fraud & Compliance Analyst June 16, 2011.

Navigating the New SAQs (Helping the 99% validate PCI compliance)

Complying With Payment Card Industry Data Security Standards (PCI DSS)

2014 PCI DSS Meeting OSU Business Affairs Process Improvement Team (PIT) Robin Whitlock & Dan Hough 10/28/2014.

This refresher course will:

JEFF WILLIAMS INFORMATION SECURITY OFFICER CALIFORNIA STATE UNIVERSITY, SACRAMENTO Payment Card Industry Data Security Standard (PCI DSS) Compliance.

Property of CampusGuard Compliance With The PCI DSS.

Credit Card Compliance Regulations Mandated by the Payment Card Industry Standards Council Accounting and Financial Services.

Payment Card PCI DSS Compliance SAQ-D Training Accounts Receivable Services, Controller’s Office 7/1/2012.

Presented by : Vivian Eberhardt, Supervisor Cash and Credit Operations

WTS and PCI Nelson Lah Chief Technology Officer Workplace Technology Services May 27, 2009.

Data Security Standard. What Is PCI ? Who Does It Apply To ? Who Is Involved With the Compliance Process ? How We Can Stay Compliant ?

Jeff Williams Information Security Officer CSU, Sacramento

Credit Card Changes that Impact You! Changes to Accounts Receivable, Cash Receipts and Student Billing 7.77 Wanda Mahon & Bucky Wall Corporate Readiness.

Payment Card Industry (PCI) Data Security Standard (DSS) Compliance Commonwealth of Massachusetts Office of the State Comptroller March 2007.

© 2003 IBM Corporation Privacy 12 th CACR Workshop Yim Y. Chan Chief Privacy Officer & CIO IBM Canada Ltd. w3.ibm.com/Privacy.

August 9, 2005 UCCSC IT Security at the University of California A New Initiative Jacqueline Craig. Director of Policy Information Resources and.

Canadian Public Procurement Council Canadian Forum on Public Procurement September 30 – October 3, 2007.

GPUG ® Summit 2011 November 8-11 Caesars Palace – Las Vegas, NV Payment Processing Online and Within Dynamics GP PCI Compliance and Secure Payment Processing.

CSE 4482, 2009 Session 21 Personal Information Protection and Electronic Documents Act Payment Card Industry standard Web Trust Sys Trust.

Around the World, Around the Corner WorldPay for Small Business.

Why Comply with PCI Security Standards?

Data Protection in Higher Education: Recent Experiences in Privacy and Security Institute for Computer Law and Policy Cornell University June 29, 2005.

Application Security Management Functional Project Manager (s) ERP Project Director ERP Campus Executive University & Campus Administration Security Policy.

Ferst Center Incident Incident Identification – Border Intrusion Detection System Incident Response – Campus Executive Incident Response Team Incident.

Information Security Research Program Henry Lee Manager, Security Policy and Research Office of the Chief Information Officer December 2007.

The Right Choice for Call Recording OAISYS and PCI DSS Compliance Managing Payment Card Industry Compliance with OAISYS Call Recording Solutions.

The influence of PCI upon retail payment design and architectures Ian White QSA Head of UK&I and ME PCI Team September 4, 2013 Weekend Conference 7 & 8.

The Payment Card Industry (PCI) Data Security Standard: What it is and why you might find it useful Fred Hopper, CISSP TASK - 27 March 2007.

PCI requirements in business language What can happen with the cardholder data?

A NASSCOM ® Initiative DSCI-KPMG Survey 2010 State Of Data Security and Privacy in the Indian Banking Industry Vinayak Godse Director- Data Protection,

Date goes here PCI COMPLIANCE: What’s All the Fuss? Mark Banbury Vice President and CIO, Plan Canada.

PCI DSS Readiness Presented By: Paul Grégoire, CISSP, QSA, PA-QSA

Payment Card PCI DSS Compliance SAQ-A Training Accounts Receivable Services, Controller’s Office 7/1/2012.

Photo by Karl Steinbrenner Purchase & Travel Card Programs Be A Visionary! Presented By Valerie J Smith, CPCP.

1 1 BRANCH: CORPORATE AFFAIRS 1. CORPORATE MANAGEMENT SERVICES To provide financial and strategic support services that enhance service delivery by the.

Introduction to Payment Card Industry Data Security Standard

North Carolina Community College System IIPS Conference – Spring 2009 Jason Godfrey IT Security Manager (919)

Introduction To Plastic Card Industry (PCI) Data Security Standards (DSS) April 28,2012 Cathy Pettis, SVP ICUL Service Corporation.

PCI Compliance: The Gateway to Paradise PCI Compliance: The Gateway to Paradise.

Mark Estberg, John Howie Senior Directors Microsoft Corporation SESSION CODE: SIA317.

Information for New Members of Crown Entity Boards Crown copyright: State Services Commission, February

Data Security and Payment Card Acceptance Presented by: Brian Ridder Senior Vice President First National September 10, 2009.

CIVILIAN SECRETARIAT FOR POLICE STATUS REPORT ON IMPLEMENTATION OF THE CIVILIAN SECRETARIAT FOR POLICE SERVICE ACT 2 OF 2011 PORTFOLIO COMMITTEE ON POLICE.

Payment Card PCI DSS Compliance SAQ-B Training Accounts Receivable Services, Controller’s Office 7/1/2012.

CAURA Ontario 2013 November 25, 2013 Presented by: Susan Munro, Assistant Director, Research Finance, McMaster University Annie Rémillard, Team Leader,

ESTABLISHING A MANUFACTURING ENTERPRISE Can you create and run a manufacturing enterprise?

ThankQ Solutions Pty Ltd Tech Forum 2013 PCI Compliance.

The Payment Card Industry (PCI) Data Security Standard (DSS) was developed to encourage and enhance cardholder data security and facilitate the broad.

Public Sector Payment Card Industry (PCI) - Working Forum Nicholas Krischanowsky BC Provincial Treasury LDB Training Centre, Burnaby, BC, May 27, 2009.

1 Financial Management - A Provincial Perspective Cheryl Wenezenki-Yolland Comptroller General Province of BC.

Sicherheitsaspekte beim Betrieb von IT-Systemen Christian Leichtfried, BDE Smart Energy IBM Austria December 2011.

Standards in Use. EMV June 16Caribbean Electronic Payments LLC2.

By: Matt Winkeler.  PCI – Payment Card Industry  DSS – Data Security Standard  PAN – Primary Account Number.

WHAT NEW, WHAT NEXT IN PAYMENT PROCESSING. EMV WHAT IS EMV? 3  An acronym created by Europay ®, MasterCard ® and Visa ®  The global standard for the.

Payment Card Industry Data Security Standards

Summary of Changes PCI DSS V. 3.1 to V. 3.2

Burton Group Take 5! The PCI Half-Dozen: 6 Recommendations for PCI Compliance Diana Kelley, VP & Service Director March,

Payment Card Industry (PCI) Data Security Standard (DSS) Compliance

Payment card industry data security standards

Internet Payment.

Payment Card Industry (PCI) Data Security Standard (DSS) Compliance

Infrastructural Support – Enabling CTS

Payment Card Industry (PCI) Data Security Standard (DSS) Compliance

Governance, Risk, and Compliance Systems in Higher Education

IT Audit Capacity Building

CORPORATE MANAGEMENT presentation to Portfolio Committee: April 2016

UD PCI GUIDELINES A guide for compliance with PCI DSS and the University of Delaware Payment Card Program ALWAYS Process payments immediately using a solution.

Presentation transcript:

PAYMENT CARD INDUSTRY REMEDIATION PROJECT Cheryl Wenezenki-Yolland, PCI Project Owner Nicholas Krischanowsky, PCI Project Director Public Sector Payment Card Industry Working Forum May 27, 2009

Corporate Governance Framework Minister of Finance Financial Administration Act Electronic Transactions Act Comptroller General Provincial Treasury Workplace Technology Services Office of Chief Information Officer Liaison, Guidance, Support PCI Compliance Program New Payment Systems Existing Payment Systems Ministries

PCI Master Project Plan  Corporate Master Project Plan and Sub-Projects:  Corporate Policy Framework  Training and Awareness  Service Contacts Liability Monitoring  Vulnerability Management  Network Segmentation  Incident Reporting  Compliance Monitoring

PCI Project Status  Executive Commitment in Place  Resources Attained  Master Project Plan and Project Teams  IT Tools Purchased

PCI Project Status  Policy Developed and Ready for Publishing  Two Payment Entities Audit Ready (LDB and BC Express Pay)  Core PCI Security Infrastructure Design Underway

Compliance Deadlines  September 2009 – Must not Store Track Data  October Chip/Pin Compliant  October 2010 – Must be Fully Compliant with Payment Card Industry (PCI) Standards

Attestations to Our Acquirers  Sensitive Authentication Data  Province signed attestation February 2009  Cardholder Data  Conducting a survey of payment streams with business owners (May 2009)  Province to sign attestation September 2009

Questions?  Contact  See also Banking/Cash Management Branch PCI DSS Resource Centre at: