Demystifying PCI Software Security Framework: All You Need to Know for Your AppSec Strategy
The Payment Card Industry (PCI) Security Standards Council recently released a new security framework to replace the previous standard (PCI PA-DSS). The new framework is set to better address the changes that the software development industry has seen in the past few years. Agile and DevOps methodologies, cloud and containerized environments and widespread open source usage have become the new normal and with this, present new AppSec challenges. To ensure that users of payment apps remain safe, the new framework aims to lay a substantial value on continuous application security.
Join Alexei Balaganski (Lead Analyst at KuppingerCole) as he discusses:
- the new framework and standards, and the difference between them and the previous version
- the practical steps organizations need to take in order to follow the new framework
- how organizations can leverage automated vulnerability management tools to ensure application security and compliance with the new standards