Sword & Shield Enterprise Security Contributes to PCI DSS
Knoxville, Tenn. May 10, 2018 – Sword & Shield Enterprise Security, a leading national cybersecurity firm headquartered in Knoxville, Tennessee, announced today the company has been acknowledged for its contributions to the April 2018 PCI SSC Cloud Computing Guidelines Information Supplement.
This is the third time Sword & Shield has been credited with contribution to the PCI Data Security Standard (DSS).
Sword & Shield Vice President of Services Fred Cobb directly credits this year’s acknowledgement to the work of Jack Dempsey, director of Sword & Shield’s PCI compliance practice.
“Jack Dempsey has been representing Sword & Shield as a contributing technical resource within the PCI Council’s PCI SSC Cloud Computing Interest Group,” said Cobb. “Based on Jack’s fine work on this project and commitment to his craft, Sword & Shield is listed as a contributor.”
PCI SSC Cloud Computing Guidelines
PCI SSC Cloud Computing Guidelines defines the security responsibilities of cloud providers and cloud customers in an effort to clarify requirements to protect customers’ credit card information and support PCI DSS compliance.
February 2013 marked the initial publication of PCI DSS v2.0 Cloud Computing Guidelines.
According to the supplement, this update includes the following:
- Restructure of the document for better flow (e.g., consolidation of Sections 6.3 and 6.4, and moving Section 6.5 to Appendix E).
- Updated guidance on roles and responsibilities, scoping cloud environments, and PCI DSS compliance challenges.
- Expanded guidance on incident response and forensic investigation.
- New guidance on vulnerability management, as well as additional technical security considerations on topics such as Software Defined Networks (SDN), Containers, Fog Computing and Internet of Things (IoT).
Sword & Shield Enterprise Security was previously acknowledged for its contributions to the PCI DSS March 2015 Penetration Testing Guidance Information Supplement and the October 2014 Best Practices for Implementing a Security Awareness Program Information Supplement.
To learn about the PCI DSS changes to be enforced soon, click here.
PCI Security Standards Council
The PCI Security Standards Council is an open global forum that is responsible for the development, management, education and awareness of the PCI Data Security Standard (PCI DSS) and other standards that increase payment data security. Founded in 2006 by the major payment card brands American Express, Discover Financial Services, JCB International, Mastercard Worldwide, and Visa Inc., the Council has more than 600 Participating Organizations representing merchants, banks, processors and vendors worldwide.
To learn more about playing a part in securing payment card data globally, please visit pcisecuritystandards.org.
About Sword & Shield Enterprise Security
Securing business for more than 20 years, Sword & Shield Enterprise Security, Inc. partners with customers to meet the needs of their dynamic cybersecurity and compliance landscape in the areas of managed security, risk and compliance, enterprise security consulting, security incident response and forensics, and security training.
Recognized nationally and headquartered in Knoxville, Tennessee, Sword & Shield has offices throughout the US. Sword & Shield services a broad spectrum of industries, including healthcare, retail, media, banking and finance, legal and manufacturing.
For more information about Sword & Shield Enterprise Security, visit www.swordshield.com.