CypherCon 2023

PCI DSS v4.0 Is Here – Now What?

Kyle Hinterberg


As the deadline for implementing the Payment Card Industry Security Standards Council’s (PCI SSC) latest version of the PCI Data Security Standard (DSS) rapidly approaches, organizations are feeling the pressure to comply. With only until April 2025 to get up to speed with all the new requirements, it’s essential to have a clear understanding of what’s required to be ready.
In this informative presentation, we’ll explore compliance with PCI DSS v4.0 from a technical perspective, providing concrete and actionable advice to help organizations prepare for the transition. We’ll give a brief overview of the PCI SSC and PCI DSS, charting their evolution over the years, and provide an in-depth look at the key changes in v4.0.
Instead of getting bogged down in marketing jargon, we’ll focus on the big-ticket items that organizations need to be working on to ensure a smooth transition to v4.0. By the end of the presentation, you’ll have a clear understanding of the steps you need to take to be compliant with the latest standards and secure your payment card information.

Kyle Hinterberg

Credit Card Standards!

Kyle is a seasoned IT professional with over a decade of experience on the blue team. Currently serving as a manager at LBMC, Kyle leverages his extensive knowledge of Payment Card Industry (PCI) compliance to deliver exceptional consulting and assessment services.
Starting his career as a systems administrator, Kyle honed his skills in server administration, networking, software development, and vulnerability management. This hands-on experience gave him a strong foundation for his transition into security and compliance.
With a wealth of experience, Kyle understands the delicate balance between the technical and political aspects of compliance. He uses this insight to deliver valuable and strategic solutions to clients, particularly those seeking to implement scope reduction or data devaluation.
With a curious mind and non-judgmental approach, Kyle is an invaluable asset to anyone looking to improve their security posture and meet industry standards.