{"id":1367,"date":"2016-05-13T14:50:21","date_gmt":"2016-05-13T13:50:21","guid":{"rendered":"https:\/\/www.retarus.com\/blog\/it\/the-ultimate-pci-checklist-are-you-up-to-date-with-changing-pci-regulations"},"modified":"2024-05-07T20:01:39","modified_gmt":"2024-05-07T18:01:39","slug":"the-ultimate-pci-checklist-are-you-up-to-date-with-changing-pci-regulations","status":"publish","type":"post","link":"https:\/\/www.retarus.com\/blog\/it\/the-ultimate-pci-checklist-are-you-up-to-date-with-changing-pci-regulations\/","title":{"rendered":"The Ultimate PCI Checklist: Are you up to-date with changing PCI regulations?"},"content":{"rendered":"<p>Did you know, PCI DSS Regulations are changing and are due to be in effect as early as June 30th, 2016? After uncovering numerous exploits into the technology, POODLE and Heartbleed for example, the PCI DSS council has dropped SSL (Secure Sockets Layer) from the list of strong cryptography approaches (i.e. encryption) back in early 2015. While initial timelines stated that companies had only a single year to get their security approach in order, revised timelines have extended this complete migration deadline to 2018. The exception is all processing and third party entities, which must provide TLS 1.1 or greater into their offerings by <a href=\"https:\/\/blog.pcisecuritystandards.org\/migrating-from-ssl-and-early-tls\" target=\"_blank\" rel=\"noopener noreferrer\">June 2016<\/a>. As PCI DSS 3.1 takes effect June 30, 2016, Technology Executives like <a href=\"https:\/\/software.dell.com\/whitepaper\/leveraging-security-to-meet-compliance8111288\/\" target=\"_blank\" rel=\"noopener noreferrer\">Tim Brown of Dell<\/a>, argue that these compliance regulations provide the jumping off point for achieving a higher level of security across channels. But, with the initial deadline quickly approaching, what should organizations do to ensure continuing compliance with PCI and information security? <strong>Key points to consider for PCI compliance review:<\/strong> <\/p>\n<ul>\n<li>Identify all system components and data flows relying on and\/or supporting the vulnerable protocols, including third party provider connections<\/li>\n<li>Identify the business and\/or the technical need for using the vulnerable protocol for each system component or data flow<\/li>\n<li>Schedule vendor reviews when necessary to get definitive understanding of risks on their systems and define migration timelines to secure technology<\/li>\n<li>Develop risk mitigation plans where and when third party providers cannot meet PCI timelines and fall out of compliance, jeopardizing business operations<\/li>\n<li>Remove or disable, immediately, all instances of vulnerable protocols that do not have a supporting business or technical need<\/li>\n<li>Identify technologies to replace the vulnerable protocols and document secure configurations to be implemented<\/li>\n<li>Document a migration project plan outlining steps and timeframes for updates<\/li>\n<li>Implement risk reduction controls to help reduce susceptibility to known exploits until the vulnerable protocols are removed from the environment<\/li>\n<li>Perform migrations and follow change control procedures to ensure system updates are tested and authorized<\/li>\n<li>Update system configuration standards as migrations to new protocols are completed<\/li>\n<li>Build a communications element into migration planning. Consider how much leg work it will take to get agreement on changing.<\/li>\n<\/ul>\n<p> Are your specific requirements in line with Retarus\u2019 certifications? <a href=\"https:\/\/www.retarus.com\/it\/why-retarus\/compliance-certifications\/\" target=\"_blank\" rel=\"noopener noreferrer\">Click here to learn more<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Did you know, PCI DSS Regulations are changing and are due to be in effect as early as June 30th, 2016? With the deadline quickly approaching, what should organizations do to ensure continuing compliance with PCI and information security?<\/p>\n","protected":false},"author":16,"featured_media":251,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_et_pb_use_builder":"","_et_pb_old_content":"","_et_gb_content_width":"","footnotes":""},"categories":[78,15],"tags":[230,172,231,232],"dipi_cpt_category":[],"class_list":["post-1367","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-industry","category-security","tag-compliance","tag-it-security","tag-pcidss","tag-regulations"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v24.7 (Yoast SEO v24.7) - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>The Ultimate PCI Checklist: Are you up to-date with changing PCI regulations?<\/title>\n<meta name=\"description\" content=\"PCI DSS Regulations are changing and are due to be in effect as early as June 30th. What should organizations do to ensure continuing compliance?\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.retarus.com\/blog\/it\/the-ultimate-pci-checklist-are-you-up-to-date-with-changing-pci-regulations\/\" \/>\n<meta property=\"og:locale\" content=\"it_IT\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"The Ultimate PCI Checklist: Are you up to-date with changing PCI regulations?\" \/>\n<meta property=\"og:description\" content=\"PCI DSS Regulations are changing and are due to be in effect as early as June 30th. What should organizations do to ensure continuing compliance?\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.retarus.com\/blog\/it\/the-ultimate-pci-checklist-are-you-up-to-date-with-changing-pci-regulations\/\" \/>\n<meta property=\"og:site_name\" content=\"Retarus Corporate Blog - IT\" \/>\n<meta property=\"article:published_time\" content=\"2016-05-13T13:50:21+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2024-05-07T18:01:39+00:00\" \/>\n<meta name=\"author\" content=\"Stella Alvo\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Scritto da\" \/>\n\t<meta name=\"twitter:data1\" content=\"Stella Alvo\" \/>\n\t<meta name=\"twitter:label2\" content=\"Tempo di lettura stimato\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minuti\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.retarus.com\/blog\/it\/the-ultimate-pci-checklist-are-you-up-to-date-with-changing-pci-regulations\/\",\"url\":\"https:\/\/www.retarus.com\/blog\/it\/the-ultimate-pci-checklist-are-you-up-to-date-with-changing-pci-regulations\/\",\"name\":\"The Ultimate PCI Checklist: Are you up to-date with changing PCI regulations?\",\"isPartOf\":{\"@id\":\"https:\/\/www.retarus.com\/blog\/it\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.retarus.com\/blog\/it\/the-ultimate-pci-checklist-are-you-up-to-date-with-changing-pci-regulations\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.retarus.com\/blog\/it\/the-ultimate-pci-checklist-are-you-up-to-date-with-changing-pci-regulations\/#primaryimage\"},\"thumbnailUrl\":\"\",\"datePublished\":\"2016-05-13T13:50:21+00:00\",\"dateModified\":\"2024-05-07T18:01:39+00:00\",\"author\":{\"@id\":\"https:\/\/www.retarus.com\/blog\/it\/#\/schema\/person\/409e15438d24c33b4fd244f975c11337\"},\"description\":\"PCI DSS Regulations are changing and are due to be in effect as early as June 30th. What should organizations do to ensure continuing compliance?\",\"breadcrumb\":{\"@id\":\"https:\/\/www.retarus.com\/blog\/it\/the-ultimate-pci-checklist-are-you-up-to-date-with-changing-pci-regulations\/#breadcrumb\"},\"inLanguage\":\"it-IT\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.retarus.com\/blog\/it\/the-ultimate-pci-checklist-are-you-up-to-date-with-changing-pci-regulations\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"it-IT\",\"@id\":\"https:\/\/www.retarus.com\/blog\/it\/the-ultimate-pci-checklist-are-you-up-to-date-with-changing-pci-regulations\/#primaryimage\",\"url\":\"\",\"contentUrl\":\"\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.retarus.com\/blog\/it\/the-ultimate-pci-checklist-are-you-up-to-date-with-changing-pci-regulations\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.retarus.com\/blog\/it\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"The Ultimate PCI Checklist: Are you up to-date with changing PCI regulations?\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.retarus.com\/blog\/it\/#website\",\"url\":\"https:\/\/www.retarus.com\/blog\/it\/\",\"name\":\"Retarus Corporate Blog - IT\",\"description\":\"Sempre aggiornati\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.retarus.com\/blog\/it\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"it-IT\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.retarus.com\/blog\/it\/#\/schema\/person\/409e15438d24c33b4fd244f975c11337\",\"name\":\"Stella Alvo\",\"url\":\"https:\/\/www.retarus.com\/blog\/it\/author\/stellaa\/\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"The Ultimate PCI Checklist: Are you up to-date with changing PCI regulations?","description":"PCI DSS Regulations are changing and are due to be in effect as early as June 30th. What should organizations do to ensure continuing compliance?","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.retarus.com\/blog\/it\/the-ultimate-pci-checklist-are-you-up-to-date-with-changing-pci-regulations\/","og_locale":"it_IT","og_type":"article","og_title":"The Ultimate PCI Checklist: Are you up to-date with changing PCI regulations?","og_description":"PCI DSS Regulations are changing and are due to be in effect as early as June 30th. What should organizations do to ensure continuing compliance?","og_url":"https:\/\/www.retarus.com\/blog\/it\/the-ultimate-pci-checklist-are-you-up-to-date-with-changing-pci-regulations\/","og_site_name":"Retarus Corporate Blog - IT","article_published_time":"2016-05-13T13:50:21+00:00","article_modified_time":"2024-05-07T18:01:39+00:00","author":"Stella Alvo","twitter_card":"summary_large_image","twitter_misc":{"Scritto da":"Stella Alvo","Tempo di lettura stimato":"2 minuti"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.retarus.com\/blog\/it\/the-ultimate-pci-checklist-are-you-up-to-date-with-changing-pci-regulations\/","url":"https:\/\/www.retarus.com\/blog\/it\/the-ultimate-pci-checklist-are-you-up-to-date-with-changing-pci-regulations\/","name":"The Ultimate PCI Checklist: Are you up to-date with changing PCI regulations?","isPartOf":{"@id":"https:\/\/www.retarus.com\/blog\/it\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.retarus.com\/blog\/it\/the-ultimate-pci-checklist-are-you-up-to-date-with-changing-pci-regulations\/#primaryimage"},"image":{"@id":"https:\/\/www.retarus.com\/blog\/it\/the-ultimate-pci-checklist-are-you-up-to-date-with-changing-pci-regulations\/#primaryimage"},"thumbnailUrl":"","datePublished":"2016-05-13T13:50:21+00:00","dateModified":"2024-05-07T18:01:39+00:00","author":{"@id":"https:\/\/www.retarus.com\/blog\/it\/#\/schema\/person\/409e15438d24c33b4fd244f975c11337"},"description":"PCI DSS Regulations are changing and are due to be in effect as early as June 30th. What should organizations do to ensure continuing compliance?","breadcrumb":{"@id":"https:\/\/www.retarus.com\/blog\/it\/the-ultimate-pci-checklist-are-you-up-to-date-with-changing-pci-regulations\/#breadcrumb"},"inLanguage":"it-IT","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.retarus.com\/blog\/it\/the-ultimate-pci-checklist-are-you-up-to-date-with-changing-pci-regulations\/"]}]},{"@type":"ImageObject","inLanguage":"it-IT","@id":"https:\/\/www.retarus.com\/blog\/it\/the-ultimate-pci-checklist-are-you-up-to-date-with-changing-pci-regulations\/#primaryimage","url":"","contentUrl":""},{"@type":"BreadcrumbList","@id":"https:\/\/www.retarus.com\/blog\/it\/the-ultimate-pci-checklist-are-you-up-to-date-with-changing-pci-regulations\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.retarus.com\/blog\/it\/"},{"@type":"ListItem","position":2,"name":"The Ultimate PCI Checklist: Are you up to-date with changing PCI regulations?"}]},{"@type":"WebSite","@id":"https:\/\/www.retarus.com\/blog\/it\/#website","url":"https:\/\/www.retarus.com\/blog\/it\/","name":"Retarus Corporate Blog - IT","description":"Sempre aggiornati","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.retarus.com\/blog\/it\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"it-IT"},{"@type":"Person","@id":"https:\/\/www.retarus.com\/blog\/it\/#\/schema\/person\/409e15438d24c33b4fd244f975c11337","name":"Stella Alvo","url":"https:\/\/www.retarus.com\/blog\/it\/author\/stellaa\/"}]}},"_links":{"self":[{"href":"https:\/\/www.retarus.com\/blog\/it\/wp-json\/wp\/v2\/posts\/1367","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.retarus.com\/blog\/it\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.retarus.com\/blog\/it\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.retarus.com\/blog\/it\/wp-json\/wp\/v2\/users\/16"}],"replies":[{"embeddable":true,"href":"https:\/\/www.retarus.com\/blog\/it\/wp-json\/wp\/v2\/comments?post=1367"}],"version-history":[{"count":6,"href":"https:\/\/www.retarus.com\/blog\/it\/wp-json\/wp\/v2\/posts\/1367\/revisions"}],"predecessor-version":[{"id":8646,"href":"https:\/\/www.retarus.com\/blog\/it\/wp-json\/wp\/v2\/posts\/1367\/revisions\/8646"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.retarus.com\/blog\/it\/wp-json\/"}],"wp:attachment":[{"href":"https:\/\/www.retarus.com\/blog\/it\/wp-json\/wp\/v2\/media?parent=1367"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.retarus.com\/blog\/it\/wp-json\/wp\/v2\/categories?post=1367"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.retarus.com\/blog\/it\/wp-json\/wp\/v2\/tags?post=1367"},{"taxonomy":"dipi_cpt_category","embeddable":true,"href":"https:\/\/www.retarus.com\/blog\/it\/wp-json\/wp\/v2\/dipi_cpt_category?post=1367"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}