For an organization to comply with Payment Card Industry Data Security Standard (PCI DSS) Requirement 12.6, they must have a formal security awareness program in place. On reviewing a number of these programs over the last few years, I have been surprised to note how many failed to adhere to the guidance outlined in the PCI Security Council’s “Best Practices for Implementing a Security Awareness Program.” … Continue reading PCI DSS Security Awareness Training – The Right Way to Comply with Requirement 12.6