Team Education & AMA Session

FREE training for your entire project team on the eSkimming requirements in PCI DSS 4.0.

You’ve got questions – we’ve got answers! 

As a PCI Principal Participating Organization and the pioneer in eSkimming security, Source Defense is committed to supporting the entire PCI Community with the tools it needs to be successful. 

We’ve held hundreds of education sessions for QSAs, merchants, PSPs, eCommerce Platform providers – let us help you get your entire team up to speed on all things 6.4.3 and 11.6.1 

Key Takeaways:

    • The Exposure: Gain a comprehensive understanding of eSkimming tactics and the vulnerabilities present in your website properties. Dig deep into your specific use case and expose any other lingering compliance concerns related to 3rd party data sharing. 
    • True Scope: Learn what requirements 6.4.3 and 11.6.1 mean for you. Get a complete understanding of what is in scope; where your responsibility ends and that of your partners begins; gain an understanding of intent in PCI DSS 4.0 – it is about payment flows not just “payment pages” 
    • Free Pre-Project Website Assessment: Let us shed light on the specific make up of your web properties – giving you an inventory of all scripts, of their locations and behaviors – and of any risk to security that exists today. 
    • Pros and Cons of Various Controls Approaches: We’ll walk through different approaches to mitigating eSkimming risks and how to implement them effectively – including a review of the Source Defense platform. 
    • What to Expect in your RoC or SAQ: We’ve talked with hundreds of QSAs around the world – we have a solid understanding of what they’re going to expect to see and when they’re going to expect to see it. We are happy to include your QSA (if applicable) in this or subsequent conversations. Don’t need a QSA/use a SAQ? We can give you insights on what you’ll need to report. 

Contact us about training your team

Why You Should Sign up for team training

✔ Gain a Clear Understanding of Scope

We’ll help remove any confusion related to the scope of 6.4.3 and 11.6.1 – it is about payment flows! 

✔ Get Your Entire Team on the Same Page

Bring as many players in the project as you want to this session. We’ve worked with compliance, security, web development, marketing – we can help each party understand the requirements. 

✔ Chart a Roadmap for Success

Get guidance on ways to approach the eSkimming security requirements found in 6.4.3 and 11.6.1 

About Source Defense

As a PCI Participating Organization and the pioneer in eSkimming security, Source Defense played a role in the development of new requirements for web security found in PCI DSS 4.0.

We’ve helped thousands of the world’s leading brands address these issues. We’ve also been educating merchants, QSAs, PSPs, eCommerce Platform providers and virtually every stakeholder in PCI compliance on the vulnerabilities in modern website design that make eSkimming attacks possible. We’ve made it our misison to provide guidance around ambiguity in the standard; advise on the pros and cons of approaches provided by the council and we recently launched a free assessment, monitoring and management solution for both merchants and their QSAs.