PCI DSS Implementation Self-Paced Online Training Course

Provided by

Enquire about this course

SKU: 5858

Format: 1 course with exam

Format: 2 - 4 courses with exam

Format: 5 - 8 courses with exam

Format: 9 - 12 courses with exam

Format: 13 - 16 courses with exam

Format: 17 - 20 courses with exam

Format: 1 course without exam

Format: 2 - 4 courses without exam

Format: 5 - 8 courses without exam

Format: 9 - 12 courses without exam

Format: 13 - 16 courses without exam

Format: 17 - 20 courses without exam

  • Train with the experts and gain the skills to lead and manage a PCI DSS (Payment Card Industry Data Security Standard) implementation project.
  • Industry-leading course developed by our team of PCI QSAs (Qualified Security Assessors).
  • Work at your own pace with self-paced online training – a more affordable, flexible and less disruptive way to study. Find out more .
  • Learn from anywhere with our Self-Paced, Classroom and Live Online options that allow you to study your way, keeping travel and costs to a minimum.
  • Successful completion of the course and exam awards the PCI DSS Implementation (PCI IM) qualification and 21 CPD/CPE points.

  • Training course outline

    This fully accredited, self-paced online course delivers the knowledge and skills needed to implement the technical and business controls required to meet the 12 requirements of PCI DSS v3.2.1.

    By taking this course, you will:

  • Understand the principles and application of PCI DSS scoping;
  • Gain in-depth knowledge of the 12 PCI DSS requirements;
  • Acquire the skills to apply the requirements to your organisation;
  • Find out how to create a PCI DSS implementation readiness programme for SAQ (self-assessment questionnaire) or external audit; and
  • Receive practical advice from an experienced PCI DSS consultant.

  • PCI DSS Implementation Self-Paced Online Training Course benefits:

    Bite-sized learning

    Pre-recorded online course, enabling you to learn in easy, manageable, bite-sized chunks.

    Study at your own pace

    Learn at a time, place and pace that suit you.

    Learning support

    Comes with a learner guide to be read alongside the video modules.

    Test your knowledge

    Knowledge-check questions at the end of each module to help gauge what you’ve learned.

    Designed by experts

    Designed by acknowledged leaders in the cyber and information security industry.

    Delivered by professionals

    Taught by a real-world practitioner with extensive experience of delivering effective cyber security programmes to organisations worldwide.

    Who should attend this course?

    This course is designed for individuals responsible for implementing all or part of the technical and business requirements of the Standard, for example:

  • Information security managers
  • Security engineers
  • IT directors
  • PCI DSS project managers

  • This course is also suitable for consultants seeking to provide PCI implementation advice to their respective client organisations.

    Your Learning Path

    Find out how the PCI DSS Implementation Training Course will help you start or enhance your knowledge and career.

    This course is an essential component of the following learning path:

  • Information Security roles

  • ×

    Why choose IT Governance for your training needs?

  • We’re a QSA (Qualified Security Assessor) – we’re approved by the PCI SCC (Security Standards Council), which means we regularly audit PCI compliance across a wide range of organisations.
  • Trained by industry experts – our trainers are working consultants with years of practical, hands-on experience.
  • Pass first time or train again for free – we have trained more than 17,000 people and we’re confident you’ll pass with us first time. If you don’t, we’ll train you again for free.*
  • Learn from anywhere – as a company that fully embraces flexible and remote working, we have adjusted our delivery methods to allow you to learn from anywhere. Our Classroom / Live Online delivery option enables you to attend either in person or online.
  • Access your training anywhere – all our course materials are provided as a digital copy, allowing you to access them anywhere and at any time. Documents will be made available 20 days before your course.
  • Business solutions to suit you – whether you’re a multinational wanting us to manage all your training needs or a small business wishing to boost your workforce skills, we offer a range of training solutions.

  • * conditions applicable

    Course details

    What does this course cover?

  • Applying PCI DSS scoping to a given environment.
  • Identifying the relationship of each of the 12 PCI DSS requirements to an organisation.
  • How to implement and maintain a firewall.
  • Checking for vendor-supplied defaults for system passwords.
  • Methods of storing cardholder data and assurance to confirm locations.
  • Encryption of transmission of cardholder data across open, public networks.
  • Selecting antivirus solutions for traditional and organisational settings.
  • The OWASP (Open Web Application Security Project) Top 10 and identification of updates to the risk register.
  • Restricting access to cardholder data by users with different job roles.

  • Identifying user accounts where multifactor authentication is required.
  • Constructing a merchant premises that restricts physical access and includes locks, RFID, CCTV, PED storage and PED checks.
  • Analysing and reviewing logs in the Microsoft event viewer to identify access to network resources.
  • Determining appropriate testing methods including penetration testing, vulnerability scanning, ASV scanning and segmentation testing.
  • How to maintain an information security policy for all users.
  • PCI DSS implementation readiness preparation.

  • What’s included in this course?

  • Full course materials (digital copy provided as a PDF file).
  • Access to our LMS (learning management system) for one year.
  • A PCI DSS Implementation (PCI IM) exam voucher (if purchased).
  • A certificate of attendance.
  • A monthly security bulletin from our in-house information security experts to keep you up to date with the latest threats. To see an example, click here .

  • Please note that this course can be purchased with or without the exam as required.

    What equipment do I need?

    You will need a laptop and webcam for the duration of your course and exam.

    Are there any prerequisites for this course?

    There are no formal entry requirements for this course. We will, however, assume that participants have a foundational knowledge of PCI DSS v3.2.1 along with the technical vocabulary to understand systems, technology and processes described by the Standard. We strongly recommend taking the PCI DSS Foundation Training Course before starting this course.

    Is there any recommended reading?

    We recommend that all participants read the PCI DSS , available to download for free from the PCI Security Standards Council website.

    Exams and qualifications

    PCI DSS Foundation exam

    Candidates take the PCI DSS Implementation (PCI IM) exam set by IBITGQ ( International Board for IT Governance Qualifications ) at the end of the course.

  • Delivery method: Online
  • Duration: 90 minutes
  • Questions: 40
  • Format: Multiple choice
  • Pass mark: 65%

  • This course is equivalent to:


    CPD points

    What qualifications will I receive?

    PCI DSS Implementation (PCI IM).


    This course is accredited by IBITGQ (International Board for IT Governance Qualifications).

    IBITGQ (International Board for IT Governance Qualifications) is a personnel certification body that certifies individuals in the field of IT governance.

    IBITGQ is accredited to the ISO/IEC 17024:2012 standard ( Conformity assessment – General requirements for bodies operating certification of persons ) by IAS (International Accreditation Service). ISO 17024 is a global, industry-recognised benchmark, and qualifications accredited to this standard are recognised and highly valued by employers throughout the world.

    You can demonstrate your professional and practical knowledge and expertise by registering your qualification on the IBITGQ/ GASQ successful candidate register .

    How will I receive my exam results and certificates?

  • Provisional exam results will be available immediately on completion of the exam. Confirmed exam results will be issued within ten working days from the date of the exam.
  • Certificates for those who have achieved a passing grade will be issued within ten working days from the date of the exam.
  • Results notifications and certificates are sent directly to candidates by the relevant exam board in electronic format; please note that hard copy exam certificates are not issued.

  • Do I need proof of identity to take the exam?

    Delegates must bring a form of photographic ID with them as the invigilator my request to check it prior to the exam.

    Can exams be retaken?

    Yes, you can retake the exam at an extra cost if you are unsuccessful on the first attempt. You can email us to schedule the retest for the exam.


    Fulfilment of your self-paced online training course

    After you have completed your order, you will receive a sales receipt and a “Thank you for your order” confirmation email. This email will ask you to provide essential participant information and gives instructions on how to access your course. If you don’t receive this email, please check your junk folder.

    Participant information

    You must provide the requested participant information, including a valid email address. This applies whether you have made the booking for yourself or on behalf of someone.

    Please check this information is correct before submitting, as you are unable to change the participant’s email address once it has been added to our system.

    Accessing the course

    If you are a new customer, you will receive an email from noreply@grcelearning.com with instructions on how to access the LMS (learning management system). If you or other participants do not receive this email, please check your junk folders.

    If you have accessed the LMS previously, please log in using your credentials. You can access the LMS at any time from your
    My Account page .

    Once you have logged in to the LMS, you can download the course material immediately.


    Important information: Please read our examination guide before scheduling your exam.

    All exams are delivered online using an automated proctor system managed by GASQ on behalf of IBITGQ ( International Board for IT Governance Qualifications ).

    What you need

    When you’re ready to take your exam, please log in to your My Account page, scroll down to the ‘Self-paced online training courses’ section and click the ‘Course completed’ button. A member of our team will be in touch to provide details of your ex


    Start date Location / delivery
    No fixed date United Kingdom Book now

    Related article

    The Cyber Pulse is QA's new portal to free Cyber content, including on-demand webinars, articles written by leading experts,