Qualys Publishes “PCI Compliance for Dummies”

Slough, UK, - 27 January 2009 - Qualys, Inc., the leading provider of on demand IT security risk and compliance management solutions, today announced that the company has published PCI Compliance for Dummies in conjunction with publisher John Wiley & Sons.

PCI Compliance for Dummies is the first accessible, easy-to-read written guide designed to educate merchant organizations about Payment Card Industry (PCI) Data Security Standard (DSS) which is now a mandatory requirement for companies that store, processes, or transmits payment cardholder data. PCI Compliance for Dummies provides the need to know information about PCI DSS and how merchants can best comply with its requirements for secure results. This book is co-authored by Qualys’ Sumedh Thakar and Terry Ramos.

Within its five succinct parts, the PCI compliance guide leads readers through a primer on security risks faced by merchants who accept payment cards and also looks at the PCI requirements themselves and how each applies specifically to the merchant. Further, readers will become familiar with best practices and outlined steps to ensure compliance to prevent cardholder data breaches.

“Gartner surveyed 4,500 consumers who experienced payment card fraud and about a third said they were unsure where the theft occurred,” said Avivah Litan, VP and distinguished analyst, Gartner Inc. “Today, data breach at a retailer or other third party is the largest category for known points of cardholder data theft. Through the PCI DSS specifications, merchants are able to better understand the requirements and tools available to prevent these types of senseless cardholder data breaches.”

PCI Compliance For Dummies represents the company’s second publication following the successful and informative Vulnerability Management for Dummies which explains the essentials of vulnerability management by educating readers on the available tools to manage vulnerabilities automatically, best practices, the pros and cons of automated vulnerability management as well as a valuable 10-point checklist for removing existing vulnerabilities in the network.

To download an electronic, no cost, version of either publication please visit:

• PCI Compliance For Dummies: https://www.qualys.com/pcifordummies
• Vulnerability Management for Dummies: https://www.qualys.com/dummies

About the Authors

Sumedh Thakar leads Qualys’ efforts to provide security solutions based on Payment Card Industry (PCI) requirements. He is the architect of the QualysGuard PCI, Software-as-a-Service, PCI compliance solution. Sumedh and his team engage with large enterprises helping them in their PCI compliance efforts. Sumedh works closely with the members of the PCI Council for development and enhancement of the DSS.
Terry Ramos is an IT industry veteran who as vice president of strategic development helps drive the strategic direction, market alignment, partnerships and integrated technologies for Qualys. Terry has 15 years experience in the IT industry with the last seven specifically focused on information security. Terry is CISSP certified and is a sought after conference speaker and panel participant.

About John Wiley & Sons

Wiley’s Scientific, Technical, Medical, and Scholarly business, also known as Wiley-Blackwell, is one of the world’s foremost academic and professional publishers and the largest society publisher. The business was created in February 2007 by merging Blackwell Publishing with Wiley’s global Scientific, Technical, and Medical business. Wiley-Blackwell publishes around 1,400 scholarly peer-reviewed journals and an extensive collection of books, major reference works, databases, and laboratory manuals, in print and electronically, in the life and physical sciences, medicine and allied health, engineering, the humanities, and the social sciences. Wiley-Blackwell has operations in the United States, the United Kingdom, Europe, Asia, and Australia

About Qualys

Qualys, Inc. is the leading provider of on demand IT security risk andcompliance management solutions – delivered as a service. Qualys’Software-as-a-Service solutions are deployed in a matter of hours anywhere inthe world, providing customers an immediate and continuous view of theirsecurity and compliance postures. The QualysGuard® service is used today bymore than 3,500 organizations in 85 countries, including 35 of the FortuneGlobal 100 and performs more than 200 million IP audits per year. Qualys hasthe largest vulnerability management deployment in the world at a FortuneGlobal 50 company. Qualys has established strategic agreements with leadingmanaged service providers and consulting organizations including BT, Etisalat,Fujitsu, IBM, I(TS)2, LAC, SecureWorks, Symantec, TELUS and VeriSign. For moreinformation, please visit www.qualys.com.

###

Qualys, the Qualys logo and QualysGuard are proprietary trademarks of Qualys, Inc. All other products or names may be trademarks of their respective companies.

For media inquiries or to find the appropriate spokesperson
Contact: Jane Folwell
Folwell PR
+44 (0)1344 845132
jane@folwellpr.co.uk

For all other matters
Contact: pr@qualys.com

Media Contact:
Tami Casey
Qualys
media@qualys.com