17th PCI London, 5 July 2018, London, UK
This is a turning point for the role of PCI DSS and related compliance professionals
Radical changes to the business signficance of data and compliance will transform your jobs and the way in which senior management view you
Compliance is a business differentiator, and if you are good, you will be seen as a valuable business asset, not a back-room cost
We will look at the three new truths that will define PCI DSS and the job of PCI compliance personnel in the future. We believe that data privacy and the ability to demonstrate competence in compliance are becoming critical business differentiators and that that responsibility will fall increasingly on departments - like PCI - that were separate, but which will come together into larger compliance organisations
Compliance says yes: how business-oriented compliance will be the difference between success and failure.
The key issue most companies face is digital transformation. Most companies are really struggling with online commerce, digital payments, digitalization of manual processes, legacy systems, the Cloud. All these things cost money, suck up management time, and represent as much a threat as an opportunity. As well as just the complication of trying to satisfy customer demands for digital offerings and getting the technology in place to do that, companies face an ever growing problem of compliance and security.
These days, with compliance being a high-profile necessity, the best compliance professionals will be those who understand how to comply while not impacting the business, who understand how to present compliance externally as a governance 'win'.
The accelerating merger of PCI DSS compliance and GDPR compliance: your job is getting bigger, but done well it will also be better
It's clear that PCI staff have been sucked into GDPR processes. Why? Well company managements will have looked across their organisations for people who understand the control processes for sensitive data – and naturally they come across PCI DSS. Senior management do not necessarily care about the distinction between data security and data privacy (reasoning that to be private data has first to be secure) and so they have understandably often pushed the burden of GDPR compliance onto PCI teams.
Understanding new technology is critical. How does the development of new payment (and other) technologies impacts PCI / GDPR compliance?
The world of e-payments and e-commerce is one of almost continuous and rapid technological change. From new payment platforms for business, to the competition for consumers' digital wallets, to the possibility of blockchain solutions that get round many of today's data privacy issues, data privacy, PCI and compliance specialists need to keep on top of new developments. We understand that these may not have any concrete impact immediately, but the history of tech development suggests that theory becomes practice extremely rapidly. Keeping up to speed on the latest tech is crucial.
The 17th PCI London will look at the latest in the processes and technologies used to protect payment and personal data. There will be real-life case studies, strategic talks and technical break-out sessions from PCI teams behind some of the world’s most admired brands, who know, just like you, that payment security is now more important to business than ever.