PCI Awareness Training

PCI Awareness Training – Data Security Standards

This PCI Awareness Training course develops awareness and best-practice behaviors for protecting payment card data. As breach upon breach reveals, there are real limits to technology’s ability to protect an organization’s sensitive data. Consequently, the greatest return on your information security investment now lies with your people—the most vulnerable endpoint of all. The PCI data security standards reflect this fact. That’s why the most recent update of the PCI-DSS emphasizes user awareness training—it’s absolutely essential to making PCI security work.

The PCI-DSS Emphasizes Awareness Training

MediaPro’s PCI Security Awareness Training is a foundational component of your PCI compliance program. Security awareness training—mandated by the PCI-DSS 3.2 standard (regulation 12.6.1)—will not only position your organization to avoid or mitigate breaches, but will boost your trustworthiness overall, yielding greater customer loyalty—and profitability.

White Paper: PCI Compliance by MediaProRole-Specific PCI Training – All For One Price

Our award-winning interactive courses are focused on role-specific PCI awareness training. MediaPro’s role-based PCI content is part of the Adaptive Security Library™, which allows you to select just the training content you want in order to deploy the right training to the right people. Using our unique role-based selector, you can assign or allow employees to select the role that applies to them. Make sure your employees are properly trained on how to safeguard and protect payment card data, and in the process, help keep your organization safe and secure.

MediaPro's PCI Awareness Training develops awareness and best-practice behaviors for protecting payment card data.

Based on Proven Adult Learning Principles

The PCI awareness courses are designed according to state-of-the-art adult learning principles for online learning. The courses are customizable and use a stimulating instructional approach that engages the learner and increases retention. Context-relevant examples not only ensure satisfying learning experiences, they help drive real, measurable, and sustainable behavioral change. The four role-based PCI-DSS courses include:

PCI-DSS Training for Point-of-Sale (more …)
This course provides a short learning experience in protecting card holder data at the point-of-sale. These employees typically handle payment card transactions in person and are typically in a cashier’s role to facilitate a transaction. Employees who handle in-person transactions may be targeted with fraudulent card use, social engineering scams, or be the first to notice device tampering.

Understanding card and device tampering is critical for these employees. They need to be able to identify and react properly to these threats and protect cardholder data. Using MediaPro’s adaptive courseware platform, this content can be specifically filtered and delivered to those in this role.

PCI-DSS Training for Managers (more …)
This course provides detailed information on PCI Data Security Standards specifically for business line managers. Every business unit that touches payment card data needs to be properly trained in the handling of payment card data and personally identifiable information (PII). Business line managers may also be responsible for instilling and maintaining these PCI competencies across their departments or business units. Understanding and reinforcing key PCI-DSS concepts to the workforce is critical for the PCI program’s overall success.

The goal of this course is to inform business line managers of the importance of their role in supporting a data protection culture that lowers risk and increases customer trust. Using MediaPro’s adaptive courseware platform, this content can be specifically filtered and delivered to those in a leadership role.

PCI-DSS Training for Phone and Online (more …)
This course provides detailed information on PCI Data Security Standards specifically for those employees who support phone and online business transactions. These employees typically don’t see a payment card in person, but may act as customer service or sales agents to facilitate a transaction. Employees who handle phone or online transactions may be targeted with social engineering scams much more than those at the point-of-sale because the risk of getting caught is much lower than with an in-person transaction.

Understanding key social engineering tactics is critical for these employees. They need to be able to identify and react properly to various types of social engineering threats. The goal of this course is to inform those who handle payment card transactions over the phone or online of the importance of their role in fighting fraud and protecting PII and cardholder data. Using MediaPro’s adaptive courseware platform, this content can be specifically filtered and delivered to those in this role.

PCI-DSS Training for IT and Back Office (more …)
This course provides targeted information on PCI Data Security Standards specifically for members of the IT staff and those who work handling payment card data in the back office. The course provides more depth that the front-line “point-of-sale” course and covers topics such as vendor relationships and the retention, access, and distribution of PII. It is important for members of the IT or Back Office teams to handle PII correctly and ensure that vendors who have access to such data do the same.

Additionally, MediaPro offers a secure web application development course available for IT team members. This engaging, interactive course will increase awareness of secure coding practices, assist developers in improving application delivery, and allow you to meet PCI-DSS and other industry and regulatory compliance requirements. The course is closely aligned with OWASP standards for application security. The intended audience includes system architects, designers, developers, and IT risk managers.

Deliver these courses in stand-alone fashion for select employee groups or combine them all into a single course for all employees.

PCI Awareness Training Topics (varies by course):

  • The PCI Data Security Standards
  • Common Fraudulent Practices
  • Identifying Payment Card Security Features
  • Processing Payment Card Transactions in Person
  • Processing Payment Card Transactions Online
  • Working with Vendors (optional)
  • Reporting an Incident
  • Threats to Cardholder Data
  • Incidents Involving Cardholder Data

PCI Awareness Course Features:

  • Compliant with PCI-DSS 12.6.1 guidelines
  • Targeted PCI role-based content
  • Easy to update security content from our adaptive security and privacy libraries
  • Highly engaging and interactive training content
  • Full of real-life examples and applications
  • SCORM and AICC compliant for easy LMS integration
  • Easily tailored or customized
  • Award-winning design