Penetration Testing: Navigating PCI DSS Compliance

Join our webcast with Derek Rush, Managing Senior Consultant II, as we explore achieving PCI DSS compliance using targeted penetration testing. Discover vital strategies for securing payment environments against cyber threats through tests on applications, networks, and cloud services.

Join Derek Rush, Managing Senior Consultant II at Bishop Fox, in an enlightening webcast that aims to demystify the intricacies of proper penetration testing for the Payment Card Industry Data Security Standard (PCI DSS). With extensive experience as both a security consultant performing penetration testing and a Qualified Security Assessor, Derek has firsthand insight into the challenges and opportunities organizations face in achieving PCI DSS compliance. 

This session will provide an in-depth exploration of how comprehensive penetration testing services, including application, network, social, and cloud penetration testing can serve as pivotal tools in not only meeting the mandatory requirements of the PCI DSS, including the Self-Assessment Questionnaire (SAQ) and Report on Compliance (ROC), but also in adhering to its non-mandatory guidance recommendations.

Ideal for IT and cybersecurity professionals alike, this session promises to be an indispensable resource for anyone interested in strengthening their defenses for their segmented networks, such as cardholder data environments, by leveraging penetration testing against the evolving landscape of cyber threats.


Derek Rush BF Headshot

About the speaker, Derek Rush

Managing Senior Consultant

Derek Rush, a Managing Senior Consultant, brings vast proficiency in application penetration testing and network penetration testing, both static and dynamic, to the table. With a wealth of experience, Derek has successfully performed dynamic testing for a range of high-profile clients in the healthcare, government, and logistics sectors.

His expertise is backed by a list of impressive certifications, including Certified Information Systems Security Professional (CISSP), Offensive Security Certified Professional (OSCP), Practical Web Application Penetration Testing (PWAPT), eLearnSecurity Web Application Penetration Tester (eWPT), and eLearnSecurity Certified Professional Penetration Tester (eCPPT).

More by Derek

This site uses cookies to provide you with a great user experience. By continuing to use our website, you consent to the use of cookies. To find out more about the cookies we use, please see our Privacy Policy.