PCI DSS Requirements and Documentation

Hi all, we are in the final stage of implementing PCI DSS in our organization. We have been following the various documents made by PCI Security Standard Council (primarily all PCI PA-DSS related docs) and Tessitura Network (Tessitura PA-DSS Implementation Guide) in addition to other related documents available from Visa, Master Card etc. while working on this project. Now we would like to make sure that we have covered all possible areas and met all the requirements to become PCI compliant. Is there anyone out there who became/soon will become PCI compliant and is willing to share their documentation with us? It will be great if you have a custom checklist and a general guideline used by your organization. I know the requirements may vary wildly depending on individual organization’s size, IT setup, business practice and client base. That’s why we are mostly interested in the documentation made by other NA based arts organizations and Tessitura licensees since most of us will have the similar setup. Anyway, anything – any general comment, direction or link to any other helpful doc in addition to the above – anyone can share will also be very helpful .

Thanks in advance for your any help.

Mo

Business Analyst
The National Ballet of Canada 

This message was sent automatically to you by www.tessituranetwork.com because you subscribed to the Tessitura Technical Forum. You may reply to this message to post to the Technical forum or visit the site to search, read and post to the forums. In the interest of keeping the forum posts from becoming cluttered, we encourage you to delete previous message text from your reply before sending. Thank you!

Hi all, we are in the final stage of implementing PCI DSS in our organization. We have been following the various documents made by PCI Security Standard Council (primarily all PCI PA-DSS related docs) and Tessitura Network (Tessitura PA-DSS Implementation Guide) in addition to other related documents available from Visa, Master Card etc. while working on this project. Now we would like to make sure that we have covered all possible areas and met all the requirements to become PCI compliant. Is there anyone out there who became/soon will become PCI compliant and is willing to share their documentation with us? It will be great if you have a custom checklist and a general guideline used by your organization. I know the requirements may vary wildly depending on individual organization’s size, IT setup, business practice and client base. That’s why we are mostly interested in the documentation made by other NA based arts organizations and Tessitura licensees since most of us will have the similar setup. Anyway, anything – any general comment, direction or link to any other helpful doc in addition to the above – anyone can share will also be very helpful .

Thanks in advance for your any help.

Mo

Business Analyst
The National Ballet of Canada 

This message was sent automatically to you by www.tessituranetwork.com because you subscribed to the Tessitura Technical Forum. You may reply to this message to post to the Technical forum or visit the site to search, read and post to the forums. In the interest of keeping the forum posts from becoming cluttered, we encourage you to delete previous message text from your reply before sending. Thank you!

Kjersten,

We would appreciate receiving a copy also.

Thank you,

Lee Schlosser

IT/Business Manager

Florida Studio Theatre, Inc.

1241 North Palm Avenue

Sarasota, FL  34236

Phone: 941-366-9017 ext 328

Fax: 941-955-4137

email: lschlosser@floridastudiotheatre.org

website: www.floridastudiotheatre.org

From: Tessitura Technical Forum [mailto:forums-technical@tessituranetwork.com] On Behalf Of Kjersten Schladetzky
Sent: Thursday, May 12, 2011 12:57 PM
To: Lee Schlosser
Subject: Re: [Tessitura Technical Forum] PCI DSS Requirements and Documentation

Hi Mo,

We've been hard at work on PCI Compliance as well.  I can send you the (20 page mammoth) policy we've come up with.  I'll email it separately because I'm not comfortable putting it in the forum directly.  As for a checklist we just used the PCI SAQ and made a Microsoft Project plan with the items we weren't currently compliant on so we could figure out how to get there.  Our scale is larger than many because we're a level 3 merchant and we accept credit cards through avenues other than just Tessitura so there was a lot to do.

Best of luck!  We're nearly there and planning a fun party once we finish this up.

Hi all, we are in the final stage of implementing PCI DSS in our organization. We have been following the various documents made by PCI Security Standard Council (primarily all PCI PA-DSS related docs) and Tessitura Network (Tessitura PA-DSS Implementation Guide) in addition to other related documents available from Visa, Master Card etc. while working on this project. Now we would like to make sure that we have covered all possible areas and met all the requirements to become PCI compliant. Is there anyone out there who became/soon will become PCI compliant and is willing to share their documentation with us? It will be great if you have a custom checklist and a general guideline used by your organization. I know the requirements may vary wildly depending on individual organization’s size, IT setup, business practice and client base. That’s why we are mostly interested in the documentation made by other NA based arts organizations and Tessitura licensees since most of us will have the similar setup. Anyway, anything – any general comment, direction or link to any other helpful doc in addition to the above – anyone can share will also be very helpful .

Thanks in advance for your any help.

Mo

Business Analyst
The National Ballet of Canada 

This message was sent automatically to you by www.tessituranetwork.com because you subscribed to the Tessitura Technical Forum. You may reply to this message to post to the Technical forum or visit the site to search, read and post to the forums. In the interest of keeping the forum posts from becoming cluttered, we encourage you to delete previous message text from your reply before sending. Thank you!

This message was sent automatically to you by www.tessituranetwork.com because you subscribed to the Tessitura Technical Forum. You may reply to this message to post to the Technical forum or visit the site to search, read and post to the forums. In the interest of keeping the forum posts from becoming cluttered, we encourage you to delete previous message text from your reply before sending. Thank you!

Here you go!

Kjersten,

Could I also receive a copy?

Thanks

Dave

Kjersten,

We would appreciate receiving a copy also.

Thank you,

Lee Schlosser

IT/Business Manager

Florida Studio Theatre, Inc.

1241 North Palm Avenue

Sarasota, FL  34236

Phone: 941-366-9017 ext 328

Fax: 941-955-4137

email: lschlosser@floridastudiotheatre.org

website: www.floridastudiotheatre.org

From: Tessitura Technical Forum [mailto:forums-technical@tessituranetwork.com] On Behalf Of Kjersten Schladetzky
Sent: Thursday, May 12, 2011 12:57 PM
To: Lee Schlosser
Subject: Re: [Tessitura Technical Forum] PCI DSS Requirements and Documentation

Hi Mo,

We've been hard at work on PCI Compliance as well.  I can send you the (20 page mammoth) policy we've come up with.  I'll email it separately because I'm not comfortable putting it in the forum directly.  As for a checklist we just used the PCI SAQ and made a Microsoft Project plan with the items we weren't currently compliant on so we could figure out how to get there.  Our scale is larger than many because we're a level 3 merchant and we accept credit cards through avenues other than just Tessitura so there was a lot to do.

Best of luck!  We're nearly there and planning a fun party once we finish this up.

Hi all, we are in the final stage of implementing PCI DSS in our organization. We have been following the various documents made by PCI Security Standard Council (primarily all PCI PA-DSS related docs) and Tessitura Network (Tessitura PA-DSS Implementation Guide) in addition to other related documents available from Visa, Master Card etc. while working on this project. Now we would like to make sure that we have covered all possible areas and met all the requirements to become PCI compliant. Is there anyone out there who became/soon will become PCI compliant and is willing to share their documentation with us? It will be great if you have a custom checklist and a general guideline used by your organization. I know the requirements may vary wildly depending on individual organization’s size, IT setup, business practice and client base. That’s why we are mostly interested in the documentation made by other NA based arts organizations and Tessitura licensees since most of us will have the similar setup. Anyway, anything – any general comment, direction or link to any other helpful doc in addition to the above – anyone can share will also be very helpful .

Thanks in advance for your any help.

Mo

Business Analyst
The National Ballet of Canada 

This message was sent automatically to you by www.tessituranetwork.com because you subscribed to the Tessitura Technical Forum. You may reply to this message to post to the Technical forum or visit the site to search, read and post to the forums. In the interest of keeping the forum posts from becoming cluttered, we encourage you to delete previous message text from your reply before sending. Thank you!

This message was sent automatically to you by www.tessituranetwork.com because you subscribed to the Tessitura Technical Forum. You may reply to this message to post to the Technical forum or visit the site to search, read and post to the forums. In the interest of keeping the forum posts from becoming cluttered, we encourage you to delete previous message text from your reply before sending. Thank you!

This message was sent automatically to you by www.tessituranetwork.com because you subscribed to the Tessitura Technical Forum. You may reply to this message to post to the Technical forum or visit the site to search, read and post to the forums. In the interest of keeping the forum posts from becoming cluttered, we encourage you to delete previous message text from your reply before sending. Thank you!

This message was sent automatically to you by www.tessituranetwork.com because you subscribed to the Tessitura Technical Forum. You may reply to this message to post to the Technical forum or visit the site to search, read and post to the forums. In the interest of keeping the forum posts from becoming cluttered, we encourage you to delete previous message text from your reply before sending. Thank you!

Here you go!

Kjersten,

Could I also receive a copy?

Thanks

Dave

Kjersten,

We would appreciate receiving a copy also.

Thank you,

Lee Schlosser

IT/Business Manager

Florida Studio Theatre, Inc.

1241 North Palm Avenue

Sarasota, FL  34236

Phone: 941-366-9017 ext 328

Fax: 941-955-4137

email: lschlosser@floridastudiotheatre.org

website: www.floridastudiotheatre.org

From: Tessitura Technical Forum [mailto:forums-technical@tessituranetwork.com] On Behalf Of Kjersten Schladetzky
Sent: Thursday, May 12, 2011 12:57 PM
To: Lee Schlosser
Subject: Re: [Tessitura Technical Forum] PCI DSS Requirements and Documentation

Hi Mo,

We've been hard at work on PCI Compliance as well.  I can send you the (20 page mammoth) policy we've come up with.  I'll email it separately because I'm not comfortable putting it in the forum directly.  As for a checklist we just used the PCI SAQ and made a Microsoft Project plan with the items we weren't currently compliant on so we could figure out how to get there.  Our scale is larger than many because we're a level 3 merchant and we accept credit cards through avenues other than just Tessitura so there was a lot to do.

Best of luck!  We're nearly there and planning a fun party once we finish this up.

Hi all, we are in the final stage of implementing PCI DSS in our organization. We have been following the various documents made by PCI Security Standard Council (primarily all PCI PA-DSS related docs) and Tessitura Network (Tessitura PA-DSS Implementation Guide) in addition to other related documents available from Visa, Master Card etc. while working on this project. Now we would like to make sure that we have covered all possible areas and met all the requirements to become PCI compliant. Is there anyone out there who became/soon will become PCI compliant and is willing to share their documentation with us? It will be great if you have a custom checklist and a general guideline used by your organization. I know the requirements may vary wildly depending on individual organization’s size, IT setup, business practice and client base. That’s why we are mostly interested in the documentation made by other NA based arts organizations and Tessitura licensees since most of us will have the similar setup. Anyway, anything – any general comment, direction or link to any other helpful doc in addition to the above – anyone can share will also be very helpful .

Thanks in advance for your any help.

Mo

Business Analyst
The National Ballet of Canada 

This message was sent automatically to you by www.tessituranetwork.com because you subscribed to the Tessitura Technical Forum. You may reply to this message to post to the Technical forum or visit the site to search, read and post to the forums. In the interest of keeping the forum posts from becoming cluttered, we encourage you to delete previous message text from your reply before sending. Thank you!

This message was sent automatically to you by www.tessituranetwork.com because you subscribed to the Tessitura Technical Forum. You may reply to this message to post to the Technical forum or visit the site to search, read and post to the forums. In the interest of keeping the forum posts from becoming cluttered, we encourage you to delete previous message text from your reply before sending. Thank you!

This message was sent automatically to you by www.tessituranetwork.com because you subscribed to the Tessitura Technical Forum. You may reply to this message to post to the Technical forum or visit the site to search, read and post to the forums. In the interest of keeping the forum posts from becoming cluttered, we encourage you to delete previous message text from your reply before sending. Thank you!

This message was sent automatically to you by www.tessituranetwork.com because you subscribed to the Tessitura Technical Forum. You may reply to this message to post to the Technical forum or visit the site to search, read and post to the forums. In the interest of keeping the forum posts from becoming cluttered, we encourage you to delete previous message text from your reply before sending. Thank you!