SOURCE: Society of Payment Security Professionals

Society of Payment Security Professionals

August 06, 2009 09:00 ET

CPISM/A Bridges Gap Between PCI DSS Compliance and Security Education

With the Payments Industry Under Fire, Security Training Is Necessary

PARK CITY, UT--(Marketwire - August 6, 2009) - As scrutiny from the government, media, and general public increases, securing private data has become a very real concern to companies in all industries. The continuous focus on security breaches has led to an aggressive examination of security practices within the payment card industry.

The recent rash of data breaches has illustrated once again that compliance with the PCI DSS is certainly necessary and important, but addressing security with technology and standards alone is insufficient. Security education has been quickly gaining momentum and generating a buzz within the payment card industry.

One of the original authors of PCI DSS, former QSA, PCI SSC member and Qualified Security Assessor (QSA) Trainer, Chris Mark has stated, "Security is everyone's business and encompasses more than knowledge of the PCI DSS or any standard. Ensuring that stakeholders are appropriately educated and have a sound level of understanding of security principles is critical to managing risk within the payment card industry."

In response to the high demand driven by the industry, the Society of Payment Security Professionals has announced that the Certified Payment Card Industry Security Manager (CPISM) and Certified Payment Card Industry Security Auditor (CPISA) certification training courses and exams will be offered quarterly.

The CPISM/A certifications were created by the Society of Payment Security Professionals (SPSP), with the collaboration of industry and educational experts to address the need for a standard level of security, compliance, fraud, and industry knowledge rather than only delivering information on the Payment Card Industry Data Security Standard (PCI DSS). Since the CPISM/A certifications debuted in May 2008, more than 500 professionals have been trained worldwide. Training courses have included merchants, acquirers, Qualified Security Assessors (QSAs), CTOs, CFOs and CEOs. Recently a top 10 acquiring bank hosted a CPISM training event for their largest merchants and a prominent QSA firm certified all of their auditors.

The Society of Payment Security Professionals held a CPISM/A course in June which quickly sold out. Due to the high demand for these courses they have announced a training seminar August 18-21, 2009 in Denver, Co. An additional course is in the process of being planned for Fall 2009. For more information on CPISM/A training dates please visit

About the Society of Payment Security Professionals

The Society of Payment Security Professionals' objective is to provide individuals and organizations involved in payment security with an online community to share information and access education and certification opportunities. Society members come from a variety of businesses including card brands, merchants, acquirers, ISOs, and more. Though their organizations may vary, they all share one purpose: to protect sensitive customer data using the most current, viable technologies and processes. The SPSP is managed by The Aegenis Group.

Contact Information

  • Media Contact:
    Tracie Byron
    Email Contact
    888-616-3330 ext. 15
    Society of Payment Security Professionals
    Director of Business Development