Want to Stand Out from the Crowd and Land a Job in GRC? Learning this PCI Framework will help you become Priceless in the Cyber Security industry.
Many years ago, I was working a contract with a large chain retailer (one many of us have shopped at) as a Security Administrator. I wore many hats including both offense and defense. This was way before I even knew what GRC was.
I remember when I started, they were being audited for this thing called PCI. The stress of my peers that were involved in the audit were extremely high. This was their first time in a PCI engagement and had no understanding of it.
Even though I knew nothing about it, I threw my hat into the ring to help. If business or organization is handling credit cards, they must be PCI compliant.
There are 12 Requirements that you must learn to help an organization become compliant:
1️⃣ Install and Maintain a Firewall Configuration to Protect Cardholder Data
2️⃣ Do not use Vendor Supplied defaults for System Passwords
3️⃣ Protect Cardholder Data
4️⃣ Encrypt Transmission of Cardholder Data across Open Public Networks
5️⃣ Protect all Systems Against Malware and Viruses
6️⃣ Develop and Maintain Secure Systems and Applications
7️⃣ Restrict access to Cardholder Data by Business Need to Know
8️⃣ Identify and Authenticate Access to System Components
9️⃣ Restrict Physical Access to Cardholder Data
1️⃣0️⃣ Track and Monitor Access to Network Resources and Cardholder Data
1️⃣1️⃣Regularly Test Security Systems and Processes
1️⃣2️⃣Maintain a Policy that Addresses Information Security for all Personnel
If you can learn and understand these requirements as well as the technologies behind them, you will be a golden asset.
Anyone can have a career in GRC. All you have to do is learn as much as you can and work extremely hard. It is a level playing field for everyone.
If you want to learn a little more about the PCI requirements, you can learn more here lnkd.in/gAbYNQBM.
What are some of the soft skills that go along with working in GRC?
Mike Miller - Break in Cyber
Want to Stand Out from the Crowd and Land a Job in GRC? Learning this PCI Framework will help you become Priceless in the Cyber Security industry.
Many years ago, I was working a contract with a large chain retailer (one many of us have shopped at) as a Security Administrator. I wore many hats including both offense and defense. This was way before I even knew what GRC was.
I remember when I started, they were being audited for this thing called PCI. The stress of my peers that were involved in the audit were extremely high. This was their first time in a PCI engagement and had no understanding of it.
Even though I knew nothing about it, I threw my hat into the ring to help. If business or organization is handling credit cards, they must be PCI compliant.
There are 12 Requirements that you must learn to help an organization become compliant:
1️⃣ Install and Maintain a Firewall Configuration to Protect Cardholder Data
2️⃣ Do not use Vendor Supplied defaults for System Passwords
3️⃣ Protect Cardholder Data
4️⃣ Encrypt Transmission of Cardholder Data across Open Public Networks
5️⃣ Protect all Systems Against Malware and Viruses
6️⃣ Develop and Maintain Secure Systems and Applications
7️⃣ Restrict access to Cardholder Data by Business Need to Know
8️⃣ Identify and Authenticate Access to System Components
9️⃣ Restrict Physical Access to Cardholder Data
1️⃣0️⃣ Track and Monitor Access to Network Resources and Cardholder Data
1️⃣1️⃣Regularly Test Security Systems and Processes
1️⃣2️⃣Maintain a Policy that Addresses Information Security for all Personnel
If you can learn and understand these requirements as well as the technologies behind them, you will be a golden asset.
Anyone can have a career in GRC. All you have to do is learn as much as you can and work extremely hard. It is a level playing field for everyone.
If you want to learn a little more about the PCI requirements, you can learn more here lnkd.in/gAbYNQBM.
What are some of the soft skills that go along with working in GRC?
#cybersecurity #informationsecurity #infosec #grc
1 year ago | [YT] | 9