2020 SecurityMetrics Guide to PCI DSS Compliance

A Resource for Merchants and Service Providers to Become Compliant

The 2020 SecurityMetrics Guide to PCI DSS Compliance will help you understand current PCI requirements and trends, so that you can better protect data from inevitable future attacks.

What's new in this year's guide?

• Information about PCI DSS 4.0
• New tips from auditors
• New breach investigation stats

"The guide all should follow."

- Steven Cilento, Owner, Jersey's Best Home Inspection LLC

"SecurityMetrics is our trustworthy partner when we have to make our annual PCI compliance process successful. They are dedicated in the PCI realm and always provide the detailed information, trainings and assistance that make achieving compliance simple and easy."

- Georgi Kirov, CEO, SWICS Ltd

"If you want to cut through the complicated descriptions and consultant-ese explanations, this is the guide to read."

- Rodolfo Peña García, Senior Security Consultant, Energywise

Guide Foreword:

No matter the advances in cyber security technology and despite government initiatives and regulations, attackers will continue to steal unprotected payment card data.

Some organizations have simple, easy-to-correct vulnerabilities that lead to data breaches. In other instances, organizations with intricate IT defenses and processes are overridden by an employee opening a phishing email.

Our guide was specifically created to help merchants and service providers address the most problematic issues within the 12 PCI DSS requirements, including auditors’ best practices and IT checklists. Rather than reading this guide cover to cover, we recommend using it as a resource for your PCI compliance efforts.

Ultimately, our goal is to help you better protect your data from inevitable future attacks.

MATT HALBLEIB
SecurityMetrics Audit Director
QSA (P2PE) | PA-QSA (P2PE) | CISSP | CISA