PCI DSS 4.0 Client-Side Security Requirements: Experts Address Urgent Compliance Deadline
Security Boulevard, Monday, December 16th, 2024
With less than four months until the compliance deadline for new eSkimming security controls in PCI DSS, Source Defense, a pioneer in client-side security, hosted a critical roundtable discussion featuring leading Qualified Security Assessors (QSAs).
The webinar brought together top industry experts to address requirements 6.4.3 and 11.6.1, which organizations must implement by Q1 2025. The panel included Ron Tosto from Servadus, KJ Sedjro from RSM US, Daniel Baron from Protiviti, and Matt McGuirk from Source Defense.
The New Frontier: Client-Side Security
Ron Tosto, Principal Security Consultant at Servadus, emphasized that these requirements emerged directly from documented security incidents. 'This requirement didn't come out of the blue. It's really based on things that you've seen from PCI forensics investigations actually happen in the real world,' Tosto said.