PCI Perspectives

Welcome to the PCI Security Standards Council’s blog series, The AI Exchange: Innovators in Payment Security. This special, ongoing feature of our PCI Perspectives blog offers a resource for payment security industry stakeholders to exchange information about how they are adopting and implementing artificial intelligence (AI) into their organizations.

  This episode of Coffee with the Council is brought to you by our podcast sponsors, Feroot and Jscrambler. Ryoji Ihara: Hello, everyone! Welcome to this very special edition of the Coffee with the Council podcast. This podcast will be in Japanese only. For non-Japanese-speaking audience, this podcast will be transcribed and translated to English on the PCI SSC webpage. Now, let me switch over to Japanese. 

  WestJet has always worked to maintain PCI compliance across a complex environment that spans over 20 payment channels and 40 different internal teams. As part of its PCI DSS v4.0 readiness program, the company launched group ISA Training to operationalize the way it manages and operates its PCI environment.

The countdown is on for this year’s Europe Community Meeting! We’re thrilled to share an early look at some of the exceptional sessions coming your way in Amsterdam, Netherlands, 14–16 October. Get ready for insights, innovation, and inspiration! This year promises expertly crafted sessions that are imperative to securing payments worldwide. Register now and secure your place at a PCI SSC Europe Community Meeting!

Artificial intelligence (AI) systems are increasingly being used within businesses to help in the creation, management, and operation of payment systems and environments. Their use is expanding beyond systems directly managed by humans, to agentic AI systems, which have a level of agency to perform actions on their own behalf. The rapid pace of change in AI systems means it can be difficult to understand the potential risk posed by these systems, and how to best securely deploy their use.

Welcome to the PCI Security Standards Council’s blog series, The AI Exchange: Innovators in Payment Security. This special, ongoing feature of our PCI Perspectives blog offers a resource for payment security industry stakeholders to exchange information about how they are adopting and implementing artificial intelligence (AI) into their organizations.

The PCI Security Standards Council (PCI SSC) is often asked whether compliance certificates are acceptable to demonstrate an organization’s validation to the PCI Data Security Standard (PCI DSS).  

The PCI Security Standards Council (PCI SSC) is pleased to welcome its newest team member, Úna Dillon, Regional Director, Europe. As Regional Director, Úna serves as the primary liaison with European payment security stakeholders. In this role, she will drive awareness and growth of the Council with an emphasis on educating stakeholders on the importance of data security for payments and supporting the adoption of PCI SSC standards within the European region.  

Authentication and cryptography are two essential security controls that protect sensitive data and systems. Authentication helps verify who can access information, while cryptography protects data whether it is stored or transmitted over networks. Nearly every security measure depends on these two fundamental controls in some way. However, both authentication methods and cryptographic standards are constantly evolving, making it challenging for organizations to keep up with current best practices.

  We are pleased to welcome the newest organizations that have joined as Associate Participating Organizations of the PCI Security Standards Council (PCI SSC). These organizations play a crucial role in supporting the evolution of the PCI security standards and programs and promoting the implementation of PCI security standards worldwide to protect payment data. We look forward to their involvement with the Council as we help secure the future of payments.