CHAPTER 1. About PCI and This Book CHAPTER 2. Introduction to Fraud, Data Theft, and Related Regulatory Mandates CHAPTER 3. Why Is PCI Here? CHAPTER 4. Determining and Reducing the PCI Scope CHAPTER 5. Building and Maintaining a Secure Network CHAPTER 6. Strong Access Controls CHAPTER 7. Protecting Cardholder Data CHAPTER 8. Using Wireless Networking CHAPTER 9. Vulnerability Management CHAPTER 10. Logging Events and Monitoring the Cardholder Data Environment CHAPTER 11. PCI for the Small Business CHAPTER 12. Managing a PCI DSS Project to Achieve Compliance CHAPTER 13. Don't Fear the Assessor CHAPTER 14. The Art of Compensating Control CHAPTER 15. You're Compliant, Now What? CHAPTER 16. Emerging Technology and Alternative Payment Schemes CHAPTER 17. Myths and Misconceptions of PCI DSS
Branden R. Williams (CISSP, CISM, CPISA, CPISM) leads an information security practice in a Global Security Consulting group at a major security firm in Flower Mound, TX and teaches in the NSA Certified Information Assurance program at the University of Dallas's Graduate School of Management. Branden has been involved in information technology since 1994, and focused on information security since 1996. He started consulting on payment security in 2004, assessing companies against the Visa CISP and Mastercard SDP programs. He has a Bachelors of Business Administration in Marketing from the University of Texas, Arlington, and a Masters of Business Administration in Supply Chain Management and Market Logistics from the University of Dallas.Branden publishes a monthly column in the ISSA Journal entitled "Herding Cats," and authors a blog at http://www.brandenwilliams.com/. Dr. Anton Chuvakin is a recognized security expert in the field of logmanagement and PCI DSS compliance. He is an author of the books "Security Warrior" and "PCICompliance" and has contributed to many others, while also publishing dozens of papers on log management, correlation, data analysis, PCI DSS, and security management. His blog(http://www.securitywarrior.org) is one of the most popular in the industry.Additionaly, Anton teaches classes and presents at many security conferences across the worldand he works on emerging security standards and serves on the advisory boards ofseveral security start-ups. Currently, Anton is developing his security consulting practice, focusing on logging and PCI DSS compliance for security vendors and Fortune 500 organizations.Anton earned his Ph.D. from Stony Brook University.
"Williams and Chuvakin provide background on Version 2.0 of the Payment Card Industry Data Security Standard (PCI DSS), the minimum standard with which vendors must comply to ensure data security. They also provide instruction on how to implement security that is in compliance with industry guidelines and successfully ensures the safety of sensitive and personally identifiable information." --Reference and Research Book News, August 2013