- If your AI-generated code becomes faulty, who faces the most liability exposure?
- These discoutned earbuds deliver audio so high quality, you'll forget they're mid-range
- This Galaxy Watch is one of my top smartwatches for 2024 and it's received a huge discount
- One of my favorite Android smartwatches isn't from Google or OnePlus (and it's on sale)
- The Urgent Need for Data Minimization Standards
Bridge the Gap with Knowledge Training
This week, the Council hosted the North America Community Meeting in Toronto, Canada. During the meeting, it was announced that the Council will be launching a new program called Knowledge Training. We sit down with Tracey Long, VP of Programs, to discuss this announcement.
The Council has just announced the launch of Knowledge Training- can you tell me a bit about what these trainings are?
Tracey Long: We’re excited to announce the upcoming launch of Knowledge Training this week at the Community Meeting. This program is designed to support feedback related to our Assessor Training offering and how we might better recognize individuals who have completed the training and prepare learners to bridge the knowledge gap between their organization and assessors. Interested students can register for these trainings beginning on 5 October.
You mentioned that these trainings “bridge the knowledge gap” can you talk a bit more about what that means?
Tracey Long: We’ve received a tremendous amount of feedback on our ISA program and how it helps a QSA when they show up for the PCI DSS assessment. Having an individual in an organization who can speak the same language as the Assessor, guide their organization through an assessment and any pre-work and work alongside the Assessor during an engagement makes for a much smoother, more efficient process for all involved. Knowledge Training fills this gap by providing learning opportunities for individuals to take the same training and exam as the Assessor. Thus, bridging the knowledge gap and teaching them the language and goals of an Assessment.
How are these trainings different from Informational Trainings?
Tracey Long: Knowledge Training is different in that learners will now have the option to not only take the same training as Assessors, but to also sit the same exam as Assessors for a given PCI standard. Once the learner has successfully completed the training and passed the exam, an acknowledgement will be issued indicating their success on a specific version of a standard. This acknowledgment can be used as evidence with their organization’s Assessor showing they can speak the same language and have a grasp of what the standard and an assessment against the standard entails. This training also fulfills the requirements for an Assessor Company to have their quality assurance staff trained to support QA reviews of applicable programs.
Who should take Knowledge Training?
Tracey Long: The typical audience would be non-assessors, merchants, service providers, solution providers, acquirers and vendors in the payment industry. However, Knowledge Training is open to anyone who wishes to obtain additional knowledge of our programs.
Does the Knowledge Training acknowledgement allow the learner to perform assessments or services for their organization?
Tracey Long: No. A learner receiving a Knowledge Training acknowledgment are not qualified to perform PCI SSC related assessment or services. They now have demonstrated they have the knowledge and language to speak internally and externally to their organization about a specific version of a standard and program.
Does a learner have to take the Knowledge Training exam?
Tracey Long: No. A learner does not have to take the corresponding exam, however, they will only receive a training completion notification and CPEs instead of a Knowledge Training acknowledgement and Credly badge. The acknowledgement and Credly badge are ways to verify an individual’s knowledge and a way for the individual to show they have achieved a level of knowledge for a specific version of a PCI SSC standard and program.
Are all PCI SSC standards available for Knowledge Training?
Tracey Long: Almost all of them! They are P2PE, Secure Software, Secure SLC, PIN Security, 3DS Core, Card Production – Physical and Card Production – Logical. Those interested in learning about PCI DSS v4.0 may be interested in the ISA or PCIP training.
Where can someone find more information and register for these trainings?
Tracey Long: More information can be found starting on 5 October our website under “Knowledge Training” on the Training & Qualifications dropdown on the PCI SSC website.
(function(d, s, id) {
var js, fjs = d.getElementsByTagName(s)[0];
if (d.getElementById(id)) return;
js = d.createElement(s); js.id = id;
js.src = “//connect.facebook.net/en_US/all.js#xfbml=1&status=0”;
fjs.parentNode.insertBefore(js, fjs);
}(document, ‘script’, ‘facebook-jssdk’));
Source link