The Payment Card Industry Data Security Standard has a bad rap with the security community and for good reason. We’re doing it wrong. Penetration Testers in particular can play a key role in the effectiveness of PCI, but most have never read the Standard and even fewer really understand it. In this talk we’ll cover how testing should be performed, give you the tools to drive the engagement and take this from being a checkbox test to the best pen test your client has ever had.
