Even as another PCI deadlines looms, questions are being raised about what it means to be PCI compliant. Not only is there confusion about what it takes to become compliant, there is also a lack of confidence that stored customer data will be safe from internal and external threats once PCI requirements are met.

The confusion on the subject of PCI is exacerbated by varying technologies that claim to be the silver bullet for compliance. Hoping to reverse that trend, Tizor Systems invites you to a teleconference event designed to provide straightforward answers to pressing questions about some of the grey areas of PCI compliance. Specific areas that we will be covering during the teleconference include:

• Data security and how it relates to cardholder data protection,
  
• PCI requirements 10 and 3, when and where to use encryption,
  
• Compensating controls for encryption,
• Today's approach to database logging and why it doesn't work for compliance or more importantly, for catching internal and external threats

We invite you to submit your questions online then get the answers to those questions during a one hour teleconference on Thursday, December 6th at 12:00 eastern time.

Answers to questions submitted in advance will be provided by industry experts including representatives of the PCI vendor alliance, assessor and consulting communities, credit card companies and card issuers. This event features James DeLuccia, IV, CIA, MBA, CISA, CISSP, QDSP and PCI DSS Auditor along with Prat Moghe, CTO and Founder of Tizor Systems and PCI Security Vendor Alliance, Vice Chair. James and Prat will answer your questions and present answers gathered from other industry experts.

Register and submit your PCI DSS Compliance questions here, and receive a complimentary PCI white paper: "Effective cardholder data security and PCI compliance strategy".