Many healthcare organizations are beginning to realize that they need to comply with not just HIPAA, but also the Payment Card Industry’s Data Security Standard (DSS). This requirement may seriously influence your information security strategy as well as priorities and initiatives.
So what exactly is PCI DSS?
Payment Card Industry (PCI) is the industry group of payment card brands – Visa, MasterCard, American Express, Diners Club, JCB, and Discover. They defined the Data Security Standard (DSS) and administer compliance and assessment.
The core objective of the PCI DSS standard was to reduce large scale credit card compromises in e-commerce web-sites, acquiring organizations and merchants.
In 2006 the PCI compliance program was moved to a separate organization called the PCI Security Council (www.pcisecuritystandards.org). All of the resources and requirements for PCI DSS are described on the PCI Security Council web site.
The Payment Card Industry (PCI) Data Security Standard (DSS) enables merchants and service providers to assess their security status by using a single set of security requirements for all payment organizations. 12 information security requirements have been defined.
The requirements apply to all members, merchants, and service providers that store, process, or transmit cardholder data.
THE CERTIFIED SECURITY COMPLIANCE SPECIALIST (CSCS) PROGRAM
To attend the only certification program in the industry that addresses PCI DSS, ISO, HIPAA, FISMA, and other information security regulations, please contact Lorna Waggoner at 1.877.899.9974 x17 or Lorna.Waggoner@ecfirst.com.
For more information visit www.aha-solutions.org, contact Lorna Waggoner at 1.877.899.9974 x17 or visit www.HIPAAAcademy.net
HIPAA Tip
COMPLIMENTARY 2-DAY CSCS PROGRAM DELIVERED AT YOUR SITE
Acquire knowledge about PCI DSS, HIPAA, ISO and other information security regulations at your site. For a complimentary 2-day Certified Security Compliance Specialist (CSCS) program delivered at your site, please contact Lorna Waggoner at 1.877.899.9974 x17 or Lorna.Waggoner@ecfirst.com or visit www.ecfirst.com. Only qualified organizations will be considered. Session will be confirmed after review by ecfirst.com. Certain terms and conditions apply.
INFORMATION SECURITY POLICY TEMPLATES
For a complete set of information security policy templates to address compliance and security requirements, please visit www.ecfirst.com. Hundreds of organizations have downloaded these templates to create tailored policies for their organization. To discuss your requirements, please contact Lorna.Waggoner@ecfirst.com or call her at 1.877.899.9974 x17.
