BLOGS

Certify as a Payment Security Compliance Manager with
CPSCM Workshop

Join our CPSCM Workshop for comprehensive training on the entire PCI DSS Suite including PCI DSS, PCI PIN, PCI 3DS, PCI SAQ, UPI, Mobile Wallets and beyond.

Certified Payment Security Compliance Manager (CPSCM)
This comprehensive workshop, in partnership with ISACA and ISC2 chapters, shapes professionals to unlock expertise in payment security compliance. Secure your role as a leader in the evolving landscape of payment security.

Course Fee:

$130

REGULAR PARTICIPANTS

$100

ISACA & ISC2 MEMBER

$80

RETURNING PARTICIPANTS
Fill the form to Register!
Please Select the Batch: *
CPSCM Fees: *
If you are a member of ISACA and/or ISC2, you must mention your ISACA or ISC2 Chapter Name, Membership Number or below. Please mention "NA" if you are not a member of any chapter.
CAPTCHA

Certified Payment Security Compliance Manager Workshop

In an ever-evolving digital landscape, the security of payment transactions is of paramount importance. As the number of cyberattacks targeting payment data increases, the demand for payment security compliance professionals who can help organizations protect this data is also increasing.

The Certified Payment Security Compliance Manager (CPSCM) training program is meticulously designed to empower security professionals with the knowledge and skills necessary to navigate the complexities of the payment industry and ensure robust security measures.

CPSCM, a True Payment Security Workshop covering the security & compliance around all Digital Payments - Certified Payment Security Compliance Manager (CPSCM). A Training beyond the learning of PCI DSS, but the entire PCI Suite of compliances (PCI DSS, PCI PIN, PCI 3DS, PCI P2PE, PCI SSF, PCI SAQ, etc.) including various forms of payment and payment channels (Cards, UPI, Mobile Wallets, QR Codes, Payment Gateways, Internet Banking, Palm Payments, and more).


What to Expect from Certified Payment Security Compliance Manager Training Program?

The CPSCM certification demonstrates that you have the knowledge and skills to help organizations comply with the Payment Card Industry Data Security Standard
(PCI DSS) and understand various other forms of payment and payment channels.

01

Building the Foundation

Dive into the background and evolution of the payment industry, understanding the intricacies of payment transaction flows, and exploring the roles and responsibilities of entities within the payment ecosystem. Get acquainted with the various form factors for payment and payment channels, staying up to date with the latest changes in PCI DSS v4.0.

02

Understanding the PCI Suite of Standard

Delve into the details of PCI DSS requirements, from data discovery to compensating controls. Explore a unified compliance approach, and gain insights into the broader suite of payment standards beyond PCI DSS, including PCI PIN, PCI 3DS, PCI P2PE, PCI CP, SSF, and SWIFT.

03

Emerging Payment Technologies

Uncover the intricacies of SWIFT, UPI, Mobile Payments, QR Codes, and Contactless Payments. Learn their architectures, security measures, transaction flows, and global adaptability, ensuring a comprehensive understanding of the diverse landscape of modern payment technologies.

04

Maintaining Compliance

Grasp the nuances of maintaining compliance, the frequency of activities for PCI DSS annual revalidation, and the crucial aspects of report review. Explore the PCI DSS resources and knowledge library, culminating in a practical case study to reinforce your understanding.

Why CPSCM Training Program Is Important?


In the dynamic landscape of the payment industry, the Certified Payment Security Compliance Manager (CPSCM) training program emerges as an essential asset for professionals seeking to thrive in this complex domain. Here's why CPSCM is vital for participants:

  • Comprehensive Understanding: CPSCM provides participants with a comprehensive understanding of the payment industry's intricacies, covering everything from the evolution of payment methods to the latest standards like PCI DSS v4.0.
  • Risk Mitigation and Compliance: By combining risk assessment methodologies and in-depth discussions on control requirements, participants gain the expertise to implement robust security measures. This knowledge is crucial for mitigating risks and ensuring compliance in an ever-evolving regulatory landscape.
  • Adaptability to Emerging Technologies: The program goes beyond traditional payment methods, delving into emerging technologies such as mobile payments, QR codes, and contactless payments. This knowledge is essential for professionals who need to stay ahead of the curve in a rapidly changing industry.
  • Industry-Relevant Insights: Led by industry experts, CPSCM offers insights into the roles and responsibilities of entities within the payment ecosystem. Participants gain practical knowledge that is directly applicable to their professional roles, making them valuable assets to their organizations.
  • Global Perspective: Understanding the global adaptability of payment technologies is crucial in today's interconnected world. CPSCM equips participants with insights into different payment channels, ensuring they can navigate the complexities of both local and international payment ecosystems.
  • Practical Application: CPSCM doesn't just impart theoretical knowledge; it includes case studies and discussions from a Qualified Security Assessor (QSA) standpoint. This practical application ensures participants are not only well-versed in theory but also equipped to apply their knowledge in real-world scenarios.

In essence, CPSCM is not just a payment security training program; it's a transformative experience that equips participants with the skills, knowledge, and confidence to navigate the complexities of payment security and compliance successfully.

Benefits of Joining CPSCM (Certified Payment Security Compliance Manager):

learning

You will learn from experienced instructors who are experts in payment security compliance.

learning

You will have the opportunity to network with other professionals in payment security compliance.

learning

You will receive access to the latest resources and information on payment security compliance.

Who Should Attend?

CPSCM is designed for a diverse audience – whether you're a seasoned IT professional, a security analyst, or someone with a keen interest in cybersecurity. This workshop caters to all skill levels, offering a progressive learning path that benefits both beginners and experienced practitioners looking to upskill and stay at the forefront of cybersecurity trends.

The CPCSM certification will give you the skills you need to manage a payment security program. The course will teach you how to develop, implement, and maintain a comprehensive payment security program. This will help you protect your organization's payment data from unauthorized access, use, or disclosure.

What will you learn over 4 days in
Certified Payment Security Compliance Manager (CPSCM) Workshop?

Day 1

Background and Evolution of the Payment Industry
  • Elements of the card and importance of card data (Track data, CCV, PAN, PIN)
  • Payment transaction flow (Card present and Card not present)
  • Stages of payment processing (Authentication, Authorization, Clearing and Settlement)
  • Roles and Responsibilities of various entities involved in payment ecosystem
  • PCI SSC and responsibilities/differences b/w ISA, QSA, PCI SSC and ASV
Various form factors for payment and Payment Channels
  • Cards
  • Mobile Money
  • Wearables – Digital Devices
  • Contactless
  • QR Codes
What’s new with PCI DSS v4.0
  • Transition timelines – v3.2.1 to v4.
  • Goals and summary of changes
PCI DSS – On-Prem, Cloud, Shared – What’s Different?
  • Type of PCI DSS environments
  • What to look for when hosting system components in the different types of cloud environment
  • Shared Responsibility Matrix
Risk Assessment
  • Combination of NIST, OCTAVE, and ISO Risk assessment
  • TRA – Targeted Risk Analysis as part of PCI DSS v4.0
Self-Assessment Questionnaire (SAQ)
  • Merchant and service provider levels
  • Applicability and different types of SAQ
Implementing PCI DSS requirements
  • Detailed discussion on Requirement 1 To 3 of PCI DSS and sub-requirements
  • Best practices from a QSA standpoint
  • Importance of Data Discovery and other tools to implement PCI DSS requirements

Day 2

Implementing PCI DSS requirements
  • Detailed discussion on Requirement 4 To 12 of PCI DSS and sub-requirements
  • Best practices from a QSA standpoint
  • Compensating controls
  • Differences b/w Defined and Customized approach
  • Unified compliance approach for PCI DSS
Overview of all the other Payment and PCI suite of standards
  • PCI PIN, PCI 3DS, PCI P2PE, PCI CP, SSF and SWIFT
  • Are these standards interrelated?
PCI 3DS
  • PCI 3DS data flow – Architecture review
  • ACS, DS and 3DSS
  • Overview of the PCI 3DS requirements and dependency on PCI DSS
PCI SSF
  • Transition timelines b/w PA DSS and SSF
  • Changes b/w PA DSS and SSF
  • SSF – S3 and SSLC Applicability
PCI CP – Logical and Physical
  • Architecture review – Layout (Physical and Logical)
  • Overview of requirements

Day 3

SWIFT
  • Different architectures and applicability of SWIFT
  • SWIFT - CSCF 2023 framework
UPI – Unified Payment Interface
  • What is UPI, and what are the advantages of using UPI
  • Security behind UPI vs. other form factors of payment
  • Sample UPI transaction flow
  • Adaptability of UPI as a form factor of payment across the world
Mobile Payments
  • What are mobile payments
  • Advantages of mobile payments
  • Security of mobile payments
  • Sample mobile payment transaction flow
  • Global Adaptability of mobile payments
QR Codes
  • What are QR Code payments
  • Advantages of QR code
  • Security of QR code payments
  • Sample QR payment transaction flow
  • Global Adaptability of QR code payments
Contactless Payments
  • What are Contactless payments
  • Advantages of Contactless payments
  • Security of Contactless payments
  • Sample Contactless payment transaction flow
  • Global Adaptability of Contactless payment

Day 2

Implementing PCI DSS requirements
  • Detailed discussion on Requirement 4 To 12 of PCI DSS and sub-requirements
  • Best practices from a QSA standpoint
  • Compensating controls
  • Differences b/w Defined and Customized approach
  • Unified compliance approach for PCI DSS
Overview of all the other Payment and PCI suite of standards
  • PCI PIN, PCI 3DS, PCI P2PE, PCI CP, SSF and SWIFT
  • Are these standards interrelated?
PCI 3DS
  • PCI 3DS data flow – Architecture review
  • ACS, DS and 3DSS
  • Overview of the PCI 3DS requirements and dependency on PCI DSS
PCI SSF
  • Transition timelines b/w PA DSS and SSF
  • Changes b/w PA DSS and SSF
  • SSF – S3 and SSLC Applicability
PCI CP – Logical and Physical
  • Architecture review – Layout (Physical and Logical)
  • Overview of requirements

Day 4

Maintaining compliance
  • Requirements overview and summary
  • PCI DSS Annual Revalidation – Frequency of activities to be performed
  • Report review – ROC and AOC. What to look for?
  • PCI DSS resources and knowledge Library
  • Case study – PCI DSS

The Certified Payment Security Compliance Manager (CPSCM) certification is a valuable credential for anyone who wants to work in payment security compliance. The skills acquired in this workshop will not only fortify your career in payment security but will also position you as a key player in safeguarding the digital world.

So, are you ready to become a Certified Payment Security Compliance Manager? Join our CPSCM Workshop Today!

Don't miss out on this opportunity to elevate your cybersecurity skills. Register for the CPSCM Workshop today and secure your spot in a transformative learning experience.

Register Now