Have you ever tried to navigate the PCI website and gotten lost and confused?
Are you part of the 99% of companies that must traverse the PCI Compliance landscape as part of the “Self-Assessment” or “do-it-yourself” crowd?
Have you been overwhelmed by vendor claims of “PCI made easy” or “PCI Compliance in 10 minutes” or “PCI in a Box”?
Does it bother you that the answers to your questions are often tied to the product/solution the vendor is selling?
Are you the one with a burning question, but can’t seem to find the right person to ask?
Have you asked the question and gotten the trademark “well, it depends…” response?
Have we got a place for you!
The new Tenable Discussion Forum, Straight Talk about PCI, is a “safe” place where one can ask questions related to any and all aspects of PCI. The Forum is intended to be a resource for accurate information regarding the PCI Data Security Standards, particularly in the areas of defining terminology, scoping your cardholder data environment, properly navigating the compliance process, and providing interpretation, guidance, and advice on the best ways to satisfy the PCI compliance validation requirements faced by your organization. Of course, you can always ask questions about how Tenable’s products can help you satisfy certain PCI DSS requirements such as internal/external vulnerability scanning, vulnerability management, or centralized logging. You might also want to discuss how our products can help you to validate the scope of your cardholder data environment or to audit for compliance with many other PCI DSS technical requirements.
Tenable’s resident PCI expert, Jeff Man, brings nearly ten years of experience as a Qualified Security Assessor (QSA) to his role as moderator of this forum. As a former QSA, Jeff’s goal is to offer his extensive knowledge and experience to the larger segment of the PCI Community that does not ordinarily have access to a QSA.
The overall goal is to make sure your company is meeting its PCI Compliance requirements and can properly demonstrate adherence to the PCI DSS while maintaining the right level of security to mitigate the threats faced by your organization.
The new PCI discussion forum may be found at: https://discussions.nessus.org/community/pci. Feel free to stop by anytime!