AWS Customers should understand their shared responsibility for PCI DSS compliance. AWS services have been assessed for PCI compliance, but customers have varying responsibilities for compliant use of those services. Above and beyond AWS services, there are compliance responsibilities that do not involve AWS.
About the authors
Allen Mahaffy | Practice Director
Allen’s experience culminates six years as a Security Consultant specializing in PCI DSS assessments and advisory consulting for large financial institutions and service providers. His current focus is “PCI in the Cloud” assessing and/or providing advisory services to major Cloud Service Providers, financial institutions, and merchants.
Dan Stocker | Practice Director
Dan started his career on Wall Street and in the telecommunications industry. He currently specializes in advising and assessing large service providers, with an emphasis on major Cloud Service Providers. His PCI experience also includes large international merchants, both ecommerce and Bricks and Mortar. He has also worked with financial institutions on GLBA and FINRA assessments. In his 11 years at Goldman Sachs, he held lead technical positions in Trading Technology and Tech Risk, including Business Continuity. At AT&T, Dan was a principal SME at the worldwide Frame Relay NOC. He holds an MBA, and a MS in Computer Science.
This White Paper requires registration. Please fill out the form on this page to receive access.