PCI Compliance Blog : NPTech

Merci & Au Revoir

Bucky Wall — Fri, 24 Apr 2009 14:48:00 GMT

I want to thank you for all of your great questions and input concerning PCI DSS. These inquiries have allowed us to better plan for the releases of Blackbaud's compliant applications this summer and our related services. Many of your questions went straight to become Knowledge Base solutions or became listed in our PCI FAQs, both of which are being constantly updated.

It’s been my pleasure being your point of contact over these past months. However, I will be leaving Blackbaud at the end of this month and want to make sure you continue to receive prompt attention to your questions. Over the last few weeks I have been training our Support team on general and application-specific PCI content. I feel sure they are well-equipped to handle your questions.

You can also contact a couple of other people whio have been instrumental in Blackbaud's PCI efforts: Jake Marcinko, Blackbaud's Information Security Manager and Mary Beth Westmoreland, who has been leading our audit efforts.

My plans are to move to France with my family. It has always been a dream of ours. We plan to spend a the months of August and September travelling and then move to Eygalieres, a small town in Provence we have visited on several occasions.I hope to continue my work with non-profits in France.

I have enjoyed getting to know many of you through our “virtual” meetings and phone conversations. Blackbaud is a great company and will continue to be able stewards of your needs.

Please let me know how your PCI efforts are progressing. Feel free to drop me an email every now and then at buckywall@comcast.net.

Au revoir,
Bucky

"Preparing for the Raiser's Edge 7.91 and NetCommunity 6.10 upgrade" web seminar files

Bucky Wall — Wed, 22 Apr 2009 20:22:00 GMT

On 4/21 & 22 web seminars were held to discuss PCI DSS, the Blackbaud Payment Service and the new versions of The Raiser's Edge and NetCommunity. You can download the presentation or view a recording of the web seminar or the new Raiser's Edge/Blackbaud Payment Service demo!

Blackbaud Listed by MasterCard as a compliant service provider

Bucky Wall — Fri, 20 Mar 2009 17:59:00 GMT

As part of their Site Data Protection program, MasterCard has listed Blackbaud as a service provider compliant with the PCI Standard.

A Service Provider reported to MasterCard to be compliant with the PCI Standard have been provided a Certificate of Validation (COV) by a Qualified Security Assessor (QSA.) Blackbaud’s COV was presented by our QSA, Trustwave. Check out MasterCard's list of compliant service providers.

NOTE: MasterCard does not endorse or make any representation of any kind as to the nature or quality of service or other performance of any QSA, or Service Provider. MasterCard disclaims any liability of any kind directly or indirectly resulting from the use of or reliance on information appearing or not appearing herein and makes no representation as to the accuracy of any such information.

March 24 Virtual Conference on PCI

Bucky Wall — Thu, 19 Mar 2009 20:07:00 GMT

SC Magazine is sponsoring an all-day virtual conference on PCI. Speakers include Steven Peltzman, CIO from the Museum of Modern Art and Troy Leach, Technical Director at the PCI Security Standards Council.

This is billed as " A completely virtual event where registrants can visit vendor booths, hear from industry experts and retrieve valuable information." Should be cool.

Registration was easy. Go to SC Magazine's site to sign up.

PCI SSC Prioritized Approach for DSS 1.2 Webinar

Bucky Wall — Mon, 16 Mar 2009 13:56:00 GMT

The PCI Security Standards Council has created The Prioritized Approach to help merchants and other organizations (including nonprofits) through their PCI DSS compliancy process. This web seminar will introduce the Prioritized Approach and how to put it to use. The Excel tool groups together the requirements of PCI DSS 1.2 into six key milestones to consider in their card data security strategy. The Prioritized Approach offers guidance on how to focus PCI DSS implementation efforts in a way that expedites the security of cardholder data. It also:

Helps identify highest risk targets
Creates a common language around PCI DSS implementation efforts
Enables merchants to demonstrate progress on compliance process to key stakeholders – banks, acquirers, QSAs, others

If you want to learn more, check out one of these web seminars:

Wednesday, March 18, 2009 at 11:30 a.m. ET (register) or 7:30 p.m. ET (register)
Monday, March 23, 2009 at 11:30 a.m. ET (register) or 7:30 p.m. ET (register)