PCI Compliance in Drupal
Building e-commerce apps with Drupal can be lucrative, but how do you
deal with the regulatory compliance that affects credit card data?
E-commerce has become such a staple of online development that most
developers will encounter it at some point or another, but few
developers truly understand the ins and outs of PCI-DSS compliance.
This session will provide an overview of the Payment Card Industry Data
Security Standard, with a focus on the security controls required from a
hosting perspective. We'll also dive into the business considerations
around compliance, namely how C-level decision makers view their
compliance burden and financial risk.
Compliance rules can be confusing and there is plenty of misinformation
out there. This talk should cut through the clutter and offer
plain-english explanations of:
* What PCI-DSS is and who it applies to
* What are your requirements for PCI-DSS
* How you validate your compliance
* What consequences exist for non-compliance and security breaches
* What's the bare minimum you can get by with
Presenter: Jim Ciampaglio and Brian Skowron of NeoSpire Managed Hosting