[Owasp-pci-project] About "Should OWASP work directly withPCI-DSS?" Working session
James McGovern
JMcGovern at virtusa.com
Thu Mar 10 10:36:42 EST 2011
Previous versions of the PCI spec referenced OWASP which was a positive first step. However, the biggest gap I see is that the vast majority of PCI QSA's honestly wouldn't recognize whether someone was even literate in OWASP vs those who are great storytellers. In talking with a few PCI QSA's, they did mention that in their training, they at best only spend 10 minutes on section 6...
James McGovern
http://twitter.com/mcgoverntheory
-----Original Message-----
From: owasp-pci-project-bounces at lists.owasp.org [mailto:owasp-pci-project-bounces at lists.owasp.org] On Behalf Of Tom Brennan
Sent: Wednesday, March 09, 2011 7:49 PM
To: Ed Bellis
Cc: owasp-leaders; owasp-pci-project at lists.owasp.org; Jason Li; mauro.flores at owasp.org; lorna.alamri at owasp.org; JuanJose RiderJimenez; ford.trey at gmail.com
Subject: Re: [Owasp-pci-project] About "Should OWASP work directly withPCI-DSS?" Working session
Christian welcome back!
Are you a current PCI QSA ?
Virtusa was recently ranked and featured in 2010 Deloitte Technology Fast 500, 2010 Global Services 100, IAOP's 2010 Global Outsourcing 100 sub-list and 2010 FinTech 100 among others.
---------------------------------------------------------------------------------------------
This message, including any attachments, contains confidential information intended for a specific individual and purpose, and is intended for the addressee only. Any unauthorized disclosure, use, dissemination, copying, or distribution of this message or any of its attachments or the information contained in this e-mail, or the taking of any action based on it, is strictly prohibited. If you are not the intended recipient, please notify the sender immediately by return e-mail and delete this message.
---------------------------------------------------------------------------------------------
More information about the Owasp-pci-project
mailing list