white paper

PCI on Microsoft Azure

Microsoft Azure customers should understand their shared responsibility for PCI DSS compliance. Azure services have been assessed for PCI compliance, but customers have varying responsibilities for compliant use of those services. Above and beyond Azure services, there are compliance responsibilities that do not involve Azure.

About the authors

Allen Mahaffy | Practice Director

Allen’s experience culminates six years as a Security Consultant specializing in PCI DSS assessments and advisory consulting for large financial institutions and service providers. His current focus is “PCI in the Cloud” assessing and/or providing advisory services to major Cloud Service Providers, financial institutions, and merchants.

Dan Stocker | Practice Director

Dan started his career on Wall Street and in the telecommunications industry. He currently specializes in advising and assessing large service providers, with an emphasis on major Cloud Service Providers. His PCI experience also includes large international merchants, both ecommerce and Bricks and Mortar. He has also worked with financial institutions on GLBA and FINRA assessments. In his 11 years at Goldman Sachs, he held lead technical positions in Trading Technology and Tech Risk, including Business Continuity. At AT&T, Dan was a principal SME at the worldwide Frame Relay NOC. He holds an MBA, and a MS in Computer Science.

This White Paper requires registration. Please fill out the form on this page to receive access.

PCI on Microsoft Azure