Today the Security Standards Council (PCI) published the PCI Data Security Standard 3.0 (PCI DSS v3.0). Third Party Risk is now a focus. Version 3.0 will become effective on January 1, 2014.
Per the PCI Press Release, Version 3.0 will help organizations make payment security part of their business-as-usual activities by introducing more flexibility, and an increased focus on education, awareness and security as a shared responsibility.
Overall updates include specific recommendations for making PCI DSS part of everyday business processes and best practices for maintaining ongoing PCI DSS compliance; guidance from the Navigating PCI DSS Guide built in to the standard; and enhanced testing procedures to clarify the level of validation expected for each requirement.
To read the full press release click here
To download PCI DSS v3.0 click here