Press Release

New Opportunities for Brazil to Impact Global Payment Security

Payment Security Forum in Brazil Highlights Opportunities for Collaboration on Data Security Standards and Resources for the Global Payment Card Industry

SAO PAULO, 16 August 2019 — More than 350 payment card industry leaders from Brazil and Latin America convened in Sao Paulo this week for the annual PCI Security Standards Council (PCI SSC) Latin America Forum. The event provides a venue for regional stakeholders to discuss payment security challenges and solutions, share their experiences and insights, and learn about opportunities to participate in the development and evolution of data security standards and solutions for the global payment card industry.

“We are very pleased with Brazil’s growing involvement in our global effort to help secure payment data. More than 60% of PCI SSC Participating Organizations in the Latin America region are now in Brazil. We also have a dedicated and active Regional Engagement Board in Brazil, and Brazil is represented on the PCI SSC Board of Advisors,” said PCI SSC Association Regional Director for Brazil, Carlos Caetano. “A key focus for the Latin America Forum and our efforts in Brazil is to leverage this participation to help increase payment security through broad awareness, understanding and implementation of PCI Security Standards in the Latin America region.”

“Latin America, especially Brazil, continues to be a target for global cybercrime. It is also a region with tremendous experience and insights into the changing payments landscape and the challenges posed by new technologies, channels and the threats. As such, Brazil is well positioned to lead in helping improve global security standards and solutions,” said PCI SSC Executive Director Lance Johnson. “With new standards planned, the next version of the PCI Data Security Standard under development, and a new Regional Engagement Board in 2020, now is an excellent time for companies in the region to get involved.”

Key industry participation opportunities highlighted at the forum included:

  • Brazil Regional Engagement Board – Nomination Period Opens in November
    PCI SSC announced the dates for the nomination process for the 2020-2021 Brazil Regional Engagement Board, whose role is to represent the perspectives of PCI Participating Organizations and PCI constituents in Brazil, advising and providing feedback and guidance to the PCI SSC on standards and programs development and adoption in Brazil. Members of the current Brazil Regional Engagement Board played a lead role in the Latin America Forum agenda, including development of case study presentations with real-world tips on implementing PCI DSS programs and maximizing PCI Professional and Internal Security Assessor training and certification. Visit the PCI SSC website to view the case studies and to learn more about the REB nomination process.
  • PCI Data Security Standard Version 4.0 – Request for Comments Opens in October
    PCI SSC provided an update on PCI Security Standards and upcoming opportunities for PCI SSC stakeholders to review and provide feedback on draft standards being developed, which include PCI DSS v4.0. Participating Organizations, Qualified Security Assessors (QSAs) and Approved Scanning Vendors (ASVs) are invited to review a draft of PCI DSS v4.0 and provide feedback during the first of two request for comments (RFC) periods, scheduled for October 2019. For more information, read PCI Perspectives Blog: 3 Things to Know About PCI DSS v4.0 Development.
  • Special Interest Groups – Proposal Period Now Open
    SIGs are industry-led initiatives that focus on developing practical payment security resources that support understanding and implementation of PCI Standards. PCI SSC invited Brazilian Participating Organizations and Assessors to submit topics for 2020 Special Interest Groups during the proposal period that runs through 5 September 2019. For more information on SIGs and the proposal process, visit the PCI SSC website.

For additional highlights from the Latin America Forum, read PCI Perspectives Blog: Regional Update: PCI Latin America Forum.

About the PCI Security Standards Council
The PCI Security Standards Council (PCI SSC) leads a global, cross-industry effort to increase payment security by providing industry-driven, flexible and effective data security standards and programs that help businesses detect, mitigate and prevent cyberattacks and breaches. Connect with the PCI SSC on LinkedIn. Join the conversation on Twitter @PCISSC. Subscribe to the PCI Perspectives Blog.

###