Training
Visa is committed to helping all payment system participants better understand their responsibilities related to securing cardholder data. As part of this commitment, Visa offers educational webinars and seminars on data security topics throughout the year.
| Session | Date | Location | Audience |
|---|---|---|---|
| Key Management | February 17, 2010 | Miami, FL | Visa Clients, Agents, Merchants |
| Key Management | April 22, 2010 | Foster City, CA | Visa Clients, Agents, Merchants |
| PIN Security Compliance | Sept 14-16, 2010 | Foster City, CA | Visa Clients, Agents, Merchants |
| Key Management | October 7, 2010 | Foster City, CA | Visa Clients, Agents, Merchants |
Visa PCI PIN Security and Key Management Training Sessions
Visa is offering a series of one-day Visa Key Management Training sessions as well as a three-day Visa PIN Security Compliance Validation Training session that will provide up-to-date information on the secure management of cryptographic keys used in ATMs, point-of-sale (POS) PIN pads, encrypting PIN pads and hardware security modules. These sessions are for staff involved in the management or operation of devices that accept PINs, and for personnel who need practical knowledge about the elements of Data Encryption Standard (DES) cryptography and the management of secret encryption keys. In addition to the material covered in the one-day Visa Key Management Training session, the three-day Visa PIN Security Compliance Validation Training session offers an in-depth review of the Payment Card Industry (PCI) PIN Security Requirements, providing internal and external assessors with the tools necessary to complete a PCI PIN security compliance review.
Visa Key Management Training (One-Day)
In 2010, one-day Visa Key Management Training sessions will be held on February 17, April 22 and October 7. These Visa Key Management Training sessions will review proper key management techniques for Triple Data Encryption Standard (TDES) cryptography. Visa clients and their agents, including merchants, Independent Sales Organizations (ISOs), processors, third party agents (TPAs) and Encryption and Support Organizations (ESOs) are encouraged to enroll personnel involved with the management, deployment and/or operation of ATMs or POS PIN-Entry devices (PEDs) that accept cardholder PINs. This training is also encouraged for staff requiring practical knowledge of the elements of DES cryptography, approved key management methodologies and the secure management of secret encryption keys, as well as information security specialists responsible for ensuring compliance with the PCI PIN Security Requirements. Visa will provide updates to the PCI PED testing program, Visa’s global TDES mandates, and the new PCI Unattended Payment Terminal and PCI Hardware Security Module Requirements. For more information, please download the complete registration packet.
Visa PIN Security Compliance Validation Training (Three-Day)
The three-day Visa PIN Security Compliance Validation Training sessions will be held
September 14 – 16, 2010, in Foster City, California. This training will include the same topics covered in the one-day Visa Key Management Training session, as well as information on current and future threats and an in-depth review of the 32 PCI PIN Security Requirements. This training also covers the PCI requirements for Remote Key Establishment and Distribution using the asymmetric techniques described in the PCI PIN Security Normative Annex A. During this course, teams will complete an in-depth case study, enabling participants to put the information to immediate practical use. Discussions among team members will add further value to this interactive seminar. For more information, please download the complete registration packet.
