sisa institute
training & Security
Payment Data Security Programs
CPISI-D
CPISI-D
Certified Payment Industry Security Implementer – Developer
What is the CPISI-D Training Program?
With the increase in the demand for digital transactions, application developers are innovating payment features continually. In today’s digital evolution, a simple error in software code can create a vulnerability that can result in a data breach. This brings up the need to incorporate resilient secure application development practices right from the first line of the application.
About CPISI-D
CPISI-D is a Secure Application Development Training workshop aimed at developers and architects to build secure applications. The workshop revolves around the two best application security practices, PCI-SSF, and OWASP to train participants on an in-depth security implementation during design, development, testing, and deployment.
Why CPISI-D?
Secure Application Development Training can ensure that security controls are established at every stage of the Software Development Life Cycle and helps to secure payment applications from possible vulnerabilities and remove any redundant codes and functionality.
Who can participate?
The intended audience for this workshop is application developers, architects, application testing teams, and the payment application security enthusiasts with the zeal of learning payment security concepts.
Who Should Attend
CPISI
Alumni
GRC
Specialists
Network
Engineers
SOC Managers
& Analysts
Database
Managers
Database
Managers
Senior Software
Engineerss
Risk Management Specialists
CPISI-D Agenda
- Information Security Principles
- Data classification and Technology
- Corporate Governance
- Understanding payment ecosystem
- PCI DSS Family of Standards
- Network Engineering, Segmentation & Scoping - Req 1
- Apply Secure Configurations to All System Components - Req 2
- Protect stored Account Data - Req 3
- Protect Cardholder Data with Strong Cryptography During Transmission Over Open, Public Networks - Req 4
- Protect All systems and Networks from Malicious Software - Req 5
- Email Comprise and Learnings (Case Study)
- Develop and Maintain Secure Systems and Software - Req 6
- Restrict Access to System Components and Cardholder Data by Business Need to Know - Req 7
- Identify Users and Authenticate Access to System Components - Req 8
- Restrict Physical Access to Card Holder Data - Req 9
- Log and Monitor All Access to System Components and Cardholder Data - Req 10
- Test Security of Systems and Networks Regularly - Req 11
- Support Information Security with Organizational Policies and Programs-Req 12
- Targeted Risk Analysis
- Wallet application Comprise and Learnings (Case Study)
Key Takeaways
Understand the in-depth concepts of payments ecosystems and payment transaction flow
Gain knowledge on PCI-SSF requirements and respective security control implementations
Learn from use cases of recent payment application breaches
Learn about secure coding and some of the common coding vulnerabilities
Who can participate?
Payment application Developers
Code reviewers
Application head
Application architects
Software Developers
Website Developers
Mobile App Developers
CPISI-D Exclusive
CPISI-D is a comprehensive course covering holistic approaches to build a secure payment application
Provided by trainers with expertise in source code review and experience in handling PCI-SSF compliance
The 2-day session covers a broad scope of major risks and vulnerabilities that the developer needs to be vigilant while building secure payment applications
Workshop Participants Testimonial
Trainers stress on participation by candidates made the session lively and enjoyable.
Very useful information and relevant to today’s status.
The training was very useful to understand the payment card industry standard.
The trainer was very knowledgeable and the workshop helped us to gain knowledge necessary for both personal and business development.
Trainers are SME’s, competent and knowledgeable enough to understand, respond and clarify participants queries.
My second CPISI and this was the best.
Request a Call
Validate your certificate
Please Note: Certified Payment-Card Industry Security Implementer (CPISI) is an independent payments industry certification offered by SISA for payment security professionals, relating to the Payment Card Industry Data Security Standard (PCI DSS).
The PCI DSS is managed and developed by the PCI Security Standards Council (PCI SSC), who provides its own PCI DSS training and certification programs. SISA is not affiliated with or endorsed by PCI SSC.
For more information about PCI DSS, kindly check PCI SSC’s website at https://www.pcisecuritystandards.org.