PCI Security Standards Council®

Special Interest Groups

PCI SSC Special Interest Groups (SIGs) are community-driven initiatives that focus on payment security challenges related to PCI Security Standards.

Beginning 8 August through 5 September 2019, PCI SSC stakeholders are invited to propose ideas for 2020 Special Interest Groups. Given that PCI SSC has begun efforts on PCI Data Security Standard version 4.0 (PCI DSS v4.0), the 2020 SIG proposals will focus on topics unrelated to the PCI DSS or PA-DSS. This will prevent a SIG creating guidance that would be associated with a previous version of the PCI DSS. To ensure continued stakeholder involvement in PCI DSS, we will be conducting additional RFC periods for PCI DSS v4.0 over the next 12 months. Information about the RFCs will be posted on PCI SSC website, and PCI SSC stakeholders will receive communications with additional information on how to participate. Click here to submit a proposal.

2020 Special Interest Group (SIG) Proposals FAQ

Who can form a SIG? How can I propose one?

Any Participating Organization (PO) Qualified Security Assessor (QSA), Approved Scanning Vendor (ASV), or PCI Council Member* are invited to propose a Special Interest Group during the open proposal period that runs between 8 August and 5 September 2019.

To propose a SIG, stakeholders must complete the web-based form found here. If you have any specific questions about the SIG proposal process, please email [email protected].

* PCI Council Members is defined as PCI SSC Staff, Payment Brands, Affiliate Members or Strategic Members.

What are some of the areas that SIGs have covered in the past? What topics are appropriate for SIG projects?

Special Interest Group (SIG) initiatives focus on specific payment security challenges that the PCI community wants guidance on addressing. Recent SIG topics include: Cloud Computing, Best Practices for Securing E-Commerce, Third-Party Security Assurance, Best Practices for Maintaining PCI DSS Compliance, and Protecting Telephone-based Payment Card Data

SIG work may provide clarification on specific requirements within a PCI Security Standard, examine how PCI Security Standards work within any given industry or environment, or any other area that supports PCI SSC’s mission of raising awareness and increasing adoption of PCI Security Standards. Since the PCI SSC is focused on providing tools and resources to secure payment card data within the current payment system, and must also operate within a strict anti-trust framework, a focus outside of the current payment system is beyond our scope and would not be an appropriate topic for a PCI SSC SIG project.

Note: Given that PCI SSC has begun efforts on PCI Data Security Standard version 4.0 (PCI DSS v4.0), proposal topics related to PCI DSS and PA-DSS will not be considered for 2020 projects.

Who will lead the SIGs?

A PCI SSC representative will chair, lead and project manage SIG work. This collaboration will free SIG volunteers to focus on contributing subject matter expertise, without responsibility for logistical matters. This also ensures greater alignment between SIG volunteer contributions and PCI SSC direction.

How will SIGs be chosen?

SIGs will be chosen directly by the Participating Organization membership that represents merchants, financial institutions, vendors, associations, and payment processors. This is designed to ensure that our stakeholders involved in implementing and supporting the PCI Security Standards are the focus of an election that will give them the direct choice of which projects would be most beneficial to their needs.

At the close of the submission period on 5 September, the PCI SSC will review and consolidate proposals, and SIG candidates will provide presentations for Participating Organization review via the PO portal.

An election via the PO portal will open Monday 14 October and run through Friday 25 October 2019. Participating Organizations will be able to select and prioritize at least two and maximum of three SIG proposals.  The PCI SSC will share results on 8 November 2019, after the voting concludes, and work with the selected groups to create charters prior to the commencement of the new SIGs.

Our website uses both essential and non-essential cookies to analyze use of our products and services. This agreement applies to non-essential cookies only. By accepting, you are agreeing to third parties receiving information about your usage and activities. If you choose to decline this agreement, we will continue to use essential cookies for the operation of the website. View Policy