• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Skip to footer
  • About
    • Secure360
    • UMSA
    • Get Involved
  • Events
    • Secure360 2021
    • Student360
    • Past Events
      • 2020 Secure360 Twin Cities
      • 2020 Student360
      • 2019 Secure360 Twin Cities
      • 2019 Student360
      • 2018 Secure360 Twin Cities
      • 2018 Secure360 Wisconsin
      • 2018 Student360
      • 2017 Secure360 Twin Cities
      • 2017 Student360
      • 2016 TC Secure360 Conference
      • 2015 Secure360 Conference
      • 2014 Secure360 Conference
      • 2013 Secure360 Conference
        • 2013 Secure360 Conference Speaker Presentations
      • 2012 Secure360 Conference
  • For Sponsors
    • Secure360 Twin Cities
    • Student360 Sponsors
  • For Speakers
    • Secure360 Speaker Details
    • Student360 Speaker Details
  • Blog
  • Nav Social Menu

    • Facebook
    • LinkedIn
    • Twitter
    • Vimeo

Secure360

Performing the PCI Scope Disappearing Act

One of the most interesting sessions from the 2013 PCI Community Meeting was the presentation given by the PCI Council on network segmentation and isolation, as a way of reducing the surface and the cost of compliance. This presentation was responsible for majority of the questions asked during the Q/A section of the conference… and this is the conference where the new PCI DSS was announced!

This presentation will cover all different mechanisms for reducing the scope of the PCI environment, including:
• Network Segmentation vs. Isolation
• Tokenization
• Redaction
• Outsourcing (avoidance)
Each technique will be discussed in detail, including real-world examples of effective implementation. Additionally, since the network segmentation vs. network isolation caused so much confusion during the conference, this topic will be discussed in detail, and include specific examples of common mistakes as well as effective scope reduction techniques.

PCI DSS Scope reduction benefits all types and sizes of organizations, and should be reviewed for opportunities for further reduction every year. This presentation will provide the information necessary to perform this review.

Key learning points:
  • How to reduce PCI scope to the minimum necessary
  • Understand differences and impact between network segmentation and isolation
  • Learn to avoid common PCI scope reduction mistakes

About Yan Kravchenko

Yan Kravchenko is passionate about finding ways for organizations to balance their business objectives with the ever-growing cybersecurity and regulatory challenges. Today, Kravchenko is focused on one of the latest frontiers in the field of security: application security. In this role, he is creating innovative tools and services for complex enterprises to understand their application security risks and optimize their security investments. In dealing with the ever-changing cybersecurity threat landscape, he brings the ability to interpret and apply technical, legal and business information to enable his clients to make informed decisions.

Over the past 20+ years, Kravchenko has worked through many IT and security evolutionary trends, learning different ways to evaluate, understand and remediate cybersecurity risks.

Primary Sidebar

Details

Wednesday May 14, 2014
2:50 PM - 3:50 PM
Room 14
Level: Intermediate
Focus: Cybersecurity,

Share this page

Share on Facebook
Facebook
Tweet about this on Twitter
Twitter
Share on LinkedIn
Linkedin
Buffer this page
Buffer
Email this to someone
email

Footer

Contact

For more information about UMSA events, contact: Marie Strawser

Email List Signup

Join our email list for monthly Secure360 news and updates!




Join our tradeshow email list for updates on sponsorship opportunities and upcoming exhibitor deadlines.

Sponsored by:
© 2021 Secure360. All rights reserved.