Andy, I think this is a really good question. I am not aware of any
comprehensive non-proprietary materials that are available, although I know
lots of companies have developed this sort of thing either internally or with
the help of a consultancy (full disclosure: I'm a consultant). I would a
Hi SC-L,
We put out a little freebie here that you might find useful in your dev shop if
you are subject to PCI. Feedback is welcome:
Foundstone Professional Services, a Division of McAfee, has recently released a
free 2-hour computer based training entitled "PCI DSS v1.1 Compliance for
Devel