2019 SecurityMetrics Guide to PCI DSS Compliance

A Resource for Merchants and Service Providers to Become Compliant

The 2019 SecurityMetrics Guide to PCI DSS Compliance will help you understand current PCI requirements and trends, so that you can better protect data from inevitable future attacks.

What's new in this year's guide?

• Information about PCI DSS 3.2.1
• New tips from auditors
• New breach investigation stats

"The SecurityMetrics Guide to PCI DSS Compliance is a one-stop guide to ensuring your organization is PCI DSS compliant. This is the best comprehensive guide I've found."

- Brenda Clark, Compliance and Security Manager, NTT America, Inc.

"The most comprehensive guide to PCI DSS compliance."

- Ana Tremblay, Managing Director, Algonquin Travel TravelPlus

"SecurityMetrics PCI DSS guide provides a very pragmatic method to understand and implement PCI DSS compliance."

- Thierry Bricman, Head of Implementation, MFTEL Services

Guide Foreword:

No matter the advances in cyber security technology and despite government initiatives and regulations, attackers will continue to steal unprotected payment card data.

Some organizations have simple, easy-to-correct vulnerabilities that lead to data breaches. In other instances, organizations with intricate IT defenses and processes are overridden by an employee opening a phishing email.

Our guide was specifically created to help merchants and service providers address the most problematic issues within the 12 PCI DSS requirements, including auditors’ best practices and IT checklists. Rather than reading this guide cover to cover, we recommend using it as a resource for your PCI compliance efforts.

Ultimately, our goal is to help you better protect your data from inevitable future attacks.

MATT HALBLEIB
SecurityMetrics Audit Director
QSA (P2PE) | PA-QSA (P2PE) | CISSP | CISA