Gwen's workshop was very valuable in showing how to translate the DCSS to z/OS terms, but also on how to educate the QSA. Most QSA are not mainframe literate, and so approach things from the LUW perspectives of single server for a purpose and the separation of applications. Use of compensating controls will be important.
Jerry Whitteridge Lead Systems Engineer Safeway Inc. 925 738 9443 Corporate Tieline - 89443 If you feel in control you just aren't going fast enough. -----Original Message----- From: IBM Mainframe Discussion List [mailto:[email protected]] On Behalf Of Staller, Allan Sent: Thursday, July 23, 2015 8:21 AM To: [email protected] Subject: Re: PCI DSS compliance question There was a "workshop" given by Gwen Dente of IBM ATS a couple of years back. "PCI COMPLIANCE with z/OS Communications Server and System Z" It should be of immeasurable help. HTH, <snip> > We have a customer who is exploring how to achieve PCI DSS compliance > in their z/OS environment. Their perception (I deliberately do not use > the word > "conviction", as they are by no means convinced of this) is that they > need to > move the CDE applications to a separate Sysplex. This seems excessive > to me, but I am not a QSA by any means; my competing perception is > based on not having seen other customers do that, including banks and issuers. </snip> ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN "Email Firewall" made the following annotations. ------------------------------------------------------------------------------ Warning: All e-mail sent to this address will be received by the corporate e-mail system, and is subject to archival and review by someone other than the recipient. This e-mail may contain proprietary information and is intended only for the use of the intended recipient(s). If the reader of this message is not the intended recipient(s), you are notified that you have received this message in error and that any review, dissemination, distribution or copying of this message is strictly prohibited. If you have received this message in error, please notify the sender immediately.. ============================================================================== ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
