Certified Payment-Card Industry Security Auditor
Encyclopedia
Certified Payment-Card Industry Security Auditor (CPISA) is an independent payments industry certification
governed by the Society of Payment Security Professionals (commonly known as the SPSP). The CPISA focuses on information technology, information security, and auditing knowledge and skills. This certification is held by members from diverse backgrounds including Level 1 - 4 Merchants, Acquirers, Issuers, QSAs, Processors, Gateways, Service Providers, Consultants, and Auditors. All CPISA holders are members of the SPSP and also hold the CPISM certification.
and Payments Industry
topics. The CPISA examination is based on what a collection of topics relevant to payment industry security professionals. The CPISA Knowledge Domains establishes a common framework of payment industry terms and definitions that allow security professionals to discuss and debate matters pertaining to the profession with a common understanding.
The CPISA Knowledge Domains are:
Certification
Certification refers to the confirmation of certain characteristics of an object, person, or organization. This confirmation is often, but not always, provided by some form of external review, education, assessment, or audit...
governed by the Society of Payment Security Professionals (commonly known as the SPSP). The CPISA focuses on information technology, information security, and auditing knowledge and skills. This certification is held by members from diverse backgrounds including Level 1 - 4 Merchants, Acquirers, Issuers, QSAs, Processors, Gateways, Service Providers, Consultants, and Auditors. All CPISA holders are members of the SPSP and also hold the CPISM certification.
Certification Knowledge Domains
The CPISA curriculum covers subject matter in a variety of Information SecurityInformation security
Information security means protecting information and information systems from unauthorized access, use, disclosure, disruption, modification, perusal, inspection, recording or destruction....
and Payments Industry
Payment card industry
The payment card industry denotes the debit, credit, prepaid, e-purse, ATM, and POS cards and associated businesses.The term is sometimes more specifically used to refer to the Payment Card Industry Security Standards Council, a council originally formed by American Express, Discover Financial...
topics. The CPISA examination is based on what a collection of topics relevant to payment industry security professionals. The CPISA Knowledge Domains establishes a common framework of payment industry terms and definitions that allow security professionals to discuss and debate matters pertaining to the profession with a common understanding.
The CPISA Knowledge Domains are:
- Information Technology and Networking
- Information Security Concepts
- Auditing
Requirements
Candidates for the CPISA must meet several requirements:- First, join the Society of Payment Security Professionals
- Second, provide a resume with current credentials and two letters of reference from industry professionals. Candidates must also have at least three years of information security or payment industry experience.
- Third, one must pass the CPISM and CPISA exams
- Upon completion of the exams with a passing grade, the SPSP will issue the CPISA Certificate
Reference Documents
The SPSP provides several reference documents for studying and preparing for the CPISA certification:- CPISA Overview Document
- CPISA Study Guide
See also
- Certified Payment-Card Industry Security ManagerCertified Payment-Card Industry Security ManagerCertified Payment-Card Industry Security Manager ' is an independent payments industry certification governed by the Society of Payment Security Professionals . The CPISM is the de facto certification for payment security professionals...
(CPISM) - PCI DSSPCI DSSThe Payment Card Industry Data Security Standard is an information security standard for organizations that handle cardholder information for the major debit, credit, prepaid, e-purse, ATM, and POS cards....
- Payment Card IndustryPayment card industryThe payment card industry denotes the debit, credit, prepaid, e-purse, ATM, and POS cards and associated businesses.The term is sometimes more specifically used to refer to the Payment Card Industry Security Standards Council, a council originally formed by American Express, Discover Financial...
External links
- Society of Payment Security Professionals Industry professionals and CPISA industry certification
- Society of Payment Security Professionals Podcast
- PCI DSS Standard
- Payment Card Industry Fact Sheets