atsec information security provides PCI training in Shanghai
2011-08-23Shanghai, China – atsec information security is proud to have provided a successful Payment Card Industry Data Security Standard (PCI DSS) training course, which took place on August 11th and 12th in Shanghai. The training course focused on analyzing some typical cases, as well as sharing atsec’s knowledge and experience in the field of PCI DSS and related technology. This training attracted many organizations and academic experts in the payment card industry, including banks, service providers, merchants, and testing laboratories.
PCI DSS has gained a lot of attention from different roles in the industry since the PCI Security Standards Council (SSC) was established in 2006. As a Qualified Security Assessment Company (QSAC) and Approved Scanning Vendor (ASV) accredited by PCI SSC, atsec has completed many PCI compliance assessment projects and accumulated abundant practical experience.
The two lecturers for this training are experienced Qualified Security Assessors (QSAs) from atsec. During the training, they not only raised technical questions and described the important content of this standard, but they also built a cardholder data environment to simulate a small assessment project. They then discussed and produced the remediation recommendations and optimized the network infrastructure. Upon completion of the course, trainees were familiar with the basic requirements of the standard and proposed constructive suggestions and advice based on their personal PCI compliance experiences. Furthermore, atsec introduced the risk management in Common Criteria and the related security requirements in FIPS 140-2, and presented the approach on how to integrate different standards. At the end of the training, atsec lead the participants in a simulated risk assessment activity. The trainees expressed that the training they received was very beneficial and look forward to more training opportunities with atsec.
About atsec information security
atsec information security is an independent, standards-based information technology security services company with offices in the U.S., Germany, Sweden, and China. atsec's services include formal laboratory testing and evaluation of information assurance (IA) and IA-enabled commercial off the shelf (COTS) information technology, as well as information security consultancy.
atsec offers evaluation and testing services leading to formal certification for IT security, including evaluations under Common Criteria schemes in the U.S., Germany, and Sweden. This is supported by cryptographic module and algorithm testing under the Cryptographic Module Validation Program of the National Institute of Standards and Technology (NIST) in the U.S. and Communications Security Establishment Canada (CSEC) in Canada.
atsec is also an experienced Payment Card Industry (PCI) Security Standards Council Qualified Security Assessor (QSA), Approved Scanning Vendor (ASV), and Payment Application Qualified Security Assessor (PA-QSA) and accredited as a third-party auditor for the North American Security Products Organization (NASPO).
We work with leading global companies such as Apple, IBM, Hewlett-Packard, Honeywell, Quantum Corporation, Red Hat, NationZ, Huawei, and ZTE Corporation.
