Explain the purpose of PCI DSS. Analyze business factors that influence PCI DSS compliance. Describe potential consequences of failing to demonstrate PCI DSS compliance.

PCI DSS Compliance Requirements

To complete the project, you will need the following:
1. Course textbook
2. Access to the Internet to perform research for the project

1.  PCI Security Standards Council:
   https://www.pcisecuritystandards.org
   
2. Important PCI Compliance Information for Merchants:
   http://www.pciassessment.org/pci-dss-framework/merchants
   
3. COSO Internal Control—Integrated Framework Executive Summary (2013):
   http://www.coso.org/documents/990025P_Executive_Summary_final_may20_e.pdf
   
4. COSO Internal Control—Integrated Framework PowerPoint (2013):
   http://www.coso.org/documents/COSOOutreachDeckMay2013.pptx
   
5. COSO Internal Control—Integrated Framework (2013) whitepaper:
   http://www.kpmg.com/Ca/en/External%20Documents/Final-New-COSO-2013-
   Framework-WHITEPAPER-web.pdf
   

Note: The 2013 version of the framework is also available for purchase, or you may be able
to retrieve it through your school.

Learning Objectives and Outcomes
You will be able to:

• Explain the purpose of PCI DSS.
  
• Analyze business factors that influence PCI DSS compliance.
  
• Describe potential consequences of failing to demonstrate PCI DSS compliance.
  
• Apply standards and frameworks to the development of information security internal control
  systems.
  
• Analyze the use of information security controls within IT infrastructure domains.