Thanks for tuning in for another crime busting episode of Healthy Paranoia. Today, we’ll be getting down and dirty with some actual practitioners to discuss what’s wrong with PCI DSS. Joining me in the secret Healthy Paranoia hideout will be Mr. Stits, an actual PCI QSA. We also have Mrs. Dystie, expert in exploding crypto and smooth getaways. Of course we also have Mr. Java, or Grecs, the Healthy Paranoia enforcer.
In this episode, we’ll cover:
- Is PCI DSS broken?
- How to choose and work with a QSA
- Security vs. compliance
- The love/hate relationship we all have with PCI DSS
- The slippery slope of scoping and compensating controls