1. Contracting
    1. General
      1. Brexit
    2. Business / Contracts
      1. Coronavirus Assistance
    3. Accounting / Legal
      1. Umbrella Companies
      2. HMRC Scheme Enquiries
      3. The Future of Contracting
      4. IR35 Reform
    4. Technical
    5. Welcome / FAQs
  2. Social
    1. Light Relief
    2. Social / Events
  • Visitors can check out the Forum FAQ by clicking this link. You have to register before you can post: click the REGISTER link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below. View our Forum Privacy Policy.
  • Want to receive the latest contracting news and advice straight to your inbox? Sign up to the ContractorUK newsletter here. Every sign up will also be entered into a draw to WIN £100 Amazon vouchers!

Reply to: PCI Compliance Projects?

Collapse

You are not logged in or you do not have permission to access this page. This could be due to one of several reasons:

  • You are not logged in. If you are already registered, fill in the form below to log in, or follow the "Sign Up" link to register a new account.
  • You may not have sufficient privileges to access this page. Are you trying to edit someone else's post, access administrative features or some other privileged system?
  • If you are trying to post, the administrator may have disabled your account, or it may be awaiting activation.

Previously on "PCI Compliance Projects?"

Collapse
  • portseven
    replied
    Originally posted by ratewhore
    My point is none of that is rocket science and given the correct technical and managerial resources, pretty straightforward to deliver. Wait until you get into the secure application development - that's fun!!

    That aside, make hay while the sun still shines...

    Yes very true, all the requirements are very sensible things you should do. It's the retro-fitting to a non-compliant architecture thats the 'hard' bit.

    making hay!!

    Leave a comment:

  • ratewhore
    replied
    Originally posted by portseven
    Erm, think not. My current gig has a lot of work ahead to become compliant, full upgrade of EPOS software (2800 tills), segmentation and firewall installation into all store networks (200 of the buggers!!), and all that before we look at all the log analysis infrastructure, intrusion detection systems, file integrity monitoring bollox.

    Apparently they are not the worst retailer out there, there are others in worse positions
    My point is none of that is rocket science and given the correct technical and managerial resources, pretty straightforward to deliver. Wait until you get into the secure application development - that's fun!!

    That aside, make hay while the sun still shines...

    Leave a comment:

  • portseven
    replied
    Originally posted by ratewhore
    If you look at PCI compliance it's a piece of p1ss.
    Erm, think not. My current gig has a lot of work ahead to become compliant, full upgrade of EPOS software (2800 tills), segmentation and firewall installation into all store networks (200 of the buggers!!), and all that before we look at all the log analysis infrastructure, intrusion detection systems, file integrity monitoring bollox.

    Apparently they are not the worst retailer out there, there are others in worse positions

    Leave a comment:

  • ratewhore
    replied
    Originally posted by ContractIn
    Not if you are non-compliant as some of my clients are not. Especially legacy systems. Is a costly exercise to become compliant.
    Sorry, I meant from a security professionals point of view, not the clients.

    Leave a comment:

  • ContractIn
    replied
    Originally posted by ratewhore
    If you look at PCI compliance it's a piece of p1ss. T
    Not if you are non-compliant as some of my clients are not. Especially legacy systems. Is a costly exercise to become compliant.

    Leave a comment:

  • ratewhore
    replied
    If you look at PCI compliance it's a piece of p1ss. There's not much contract work around because it's the larger companies with x number of transactions who really need to knuckle down so they are calling in the big consultancies.

    It's the same as Mifid. All this compliance stuff is the same old sh1t in a different wrapper, that's all...

    Leave a comment:

  • wendigo100
    replied
    Originally posted by portseven
    Anyone seeing much activity in regards to PCI compliance projects?
    Oh, I've nearly finished it all. Sorry.

    Leave a comment:

  • ContractIn
    replied
    Originally posted by portseven
    Anyone seeing much activity in regards to PCI compliance projects?

    Given then latest deadline is June 2007, I would like to think there are a few projects out there, but then again I wouldn't mind a few years of this work. Sounds like another Y2K / Chip + Pin thing.
    Yes a lot of work being done, but not seen much in demand for contractors with PCI experience.

    I know a lot of big consultancies have jumped on the band wagon and offering a compliance service for this.

    Leave a comment:

  • portseven
    started a topic PCI Compliance Projects?

    PCI Compliance Projects?

    Anyone seeing much activity in regards to PCI compliance projects?

    Given then latest deadline is June 2007, I would like to think there are a few projects out there, but then again I wouldn't mind a few years of this work. Sounds like another Y2K / Chip + Pin thing.
    Tags: None

Advertisers

  1. Contracting
    1. General
      1. Brexit
    2. Business / Contracts
      1. Coronavirus Assistance
    3. Accounting / Legal
      1. Umbrella Companies
      2. HMRC Scheme Enquiries
      3. The Future of Contracting
      4. IR35 Reform
    4. Technical
    5. Welcome / FAQs
  2. Social
    1. Light Relief
    2. Social / Events
Working...
X